Choc Chip EU Cookie Plugin Security & Risk Analysis
wordpress.org/plugins/choc-chip-eu-cookie-pluginGet in line with the law and add an 'Accept Cookies' button to your website
Is Choc Chip EU Cookie Plugin Safe to Use in 2026?
Generally Safe
Score 85/100Choc Chip EU Cookie Plugin has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The choc-chip-eu-cookie-plugin v1 exhibits a mixed security posture. On the positive side, it has no known CVEs, no external HTTP requests, no file operations, and all SQL queries are properly prepared. This suggests a generally cautious approach to handling sensitive operations. However, there are significant concerns, particularly in its handling of output and code execution. The low percentage of properly escaped output (6%) indicates a high risk of Cross-Site Scripting (XSS) vulnerabilities, where malicious scripts could be injected and executed in users' browsers. Furthermore, the presence of the `create_function` function is a critical red flag, as it can be exploited for arbitrary code execution if not handled with extreme care and proper sanitization, which appears to be lacking given the taint analysis results. The taint analysis revealing a flow with unsanitized paths, despite no critical or high severity findings here, warrants further investigation as it points to potential weaknesses in data handling.
Key Concerns
- Low output escaping (6%)
- Dangerous function: create_function used
- Taint flow with unsanitized paths
- No nonce checks on potential entry points
- Limited capability checks on entry points
Choc Chip EU Cookie Plugin Security Vulnerabilities
Choc Chip EU Cookie Plugin Code Analysis
Dangerous Functions Found
Output Escaping
Data Flow Analysis
Choc Chip EU Cookie Plugin Attack Surface
WordPress Hooks 10
Maintenance & Trust
Choc Chip EU Cookie Plugin Maintenance & Trust
Maintenance Signals
Community Trust
Choc Chip EU Cookie Plugin Alternatives
Cookie Notice & Compliance for GDPR / CCPA
cookie-notice
Cookie Notice allows you to you elegantly inform users that your site uses cookies and helps you comply with GDPR, CCPA and other data privacy laws.
WP Consent API
wp-consent-api
Simple Consent API to read and register the current consent category.
Adapta RGPD
adapta-rgpd
La solución completa para el cumplimiento del RGPD y la LOPD GDD en español: Crea los textos legales, el banner de cookies y documenta los consentimie …
Asesor de Cookies RGPD para normativa europea
asesor-cookies-para-la-ley-en-espana
Este plugin le facilita la adaptación a la RGPD de su web a la política de cookies mostrando el aviso a los visitantes de su página y proporcionándole …
Cookies for Comments
cookies-for-comments
Sets a cookie on a random URL that is then checked when a comment is posted. If the cookie is missing the comment is marked as spam.
Choc Chip EU Cookie Plugin Developer Profile
2 plugins · 20 total installs
How We Detect Choc Chip EU Cookie Plugin
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/choc-chip-eu-cookie-plugin/css/choc-chip-eu-cookie-plugin.cssHTML / DOM Fingerprints
allowcookiemore<!--custom styling set through the admin panel-->id="cookie-allow"id="removecookie"class="allow"id="more"class="cookiemore"SetCookie$<div id="cookie-allow" ><a id="removecookie" class="allow">ACCEPT</a><a id="more" class="cookiemore" href="" target="_blank">Find out more</a>