Disclaimer Popup Security & Risk Analysis
wordpress.org/plugins/disclaimer-popupDisclaimer Popup is a free plugin that will help you to quickly create a disclaimer popup complete with texts and images
Is Disclaimer Popup Safe to Use in 2026?
Generally Safe
Score 92/100Disclaimer Popup has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.
The static analysis of the 'disclaimer-popup' plugin v1.1.3 reveals a mixed security posture. On the positive side, there are no detected AJAX handlers, REST API routes, shortcodes, or cron events, resulting in a minimal attack surface. Furthermore, the plugin does not make external HTTP requests and has no known historical CVEs, indicating a potentially stable and secure codebase in terms of known vulnerabilities and external dependencies. The absence of dangerous functions and the consistent use of prepared statements for SQL queries are also strong security indicators.
However, significant concerns arise from the lack of output escaping. With 15 total outputs analyzed and 0% properly escaped, there is a high risk of Cross-Site Scripting (XSS) vulnerabilities. Any user-supplied data that is displayed on the frontend without proper sanitization and escaping could be exploited to inject malicious scripts. Additionally, the absence of nonce and capability checks on entry points, though minimal in this case, is a general concern for secure WordPress development. The presence of a bundled library (Select2) also warrants a check for its version and potential vulnerabilities, although no specific issues are detailed here.
Key Concerns
- No output escaping
- Missing capability checks
- Bundled library (Select2)
Disclaimer Popup Security Vulnerabilities
Disclaimer Popup Code Analysis
Bundled Libraries
Output Escaping
Disclaimer Popup Attack Surface
WordPress Hooks 11
Maintenance & Trust
Disclaimer Popup Maintenance & Trust
Maintenance Signals
Community Trust
Disclaimer Popup Alternatives
Popup Box – Easily Create WordPress Popups
popup-box
Popup Box lets you create responsive, customizable WordPress popups with live preview, flexible triggers, and smart targeting to boost engagement and …
I Agree! Popups
i-agree-popups
Create T&C and disclaimer popups for use across your entire WordPress site or on individual posts and pages.
Result Popups for CF7
result-popups-for-cf7
Modernize your Contact Form 7 messages with clean, customizable SweetAlert2 popups. No config needed. Just activate and enjoy.
Hello Popup
hello-popup
A lightweight and customizable popup plugin to engage visitors, highlight offers, and boost conversions with ease.
Lightbox & Modal Popup WordPress Plugin – FooBox
foobox-image-lightbox
A responsive image lightbox for WordPress galleries, WordPress attachments & FooGallery
Disclaimer Popup Developer Profile
3 plugins · 2K total installs
How We Detect Disclaimer Popup
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/disclaimer-popup/public/css/wp-disclaimer-popup-public.css/wp-content/plugins/disclaimer-popup/public/css/wp-disclaimer-popup-public.gen.css/wp-content/plugins/disclaimer-popup/public/js/wp-disclaimer-popup-public.js/wp-content/plugins/disclaimer-popup/admin/css/wp-disclaimer-popup-admin.css/wp-content/plugins/disclaimer-popup/admin/js/wp-disclaimer-popup-admin.js/wp-content/plugins/disclaimer-popup/public/js/wp-disclaimer-popup-public.js/wp-content/plugins/disclaimer-popup/admin/js/wp-disclaimer-popup-admin.jswp-disclaimer-popup-public.css?ver=wp-disclaimer-popup-public.gen.css?ver=wp-disclaimer-popup-public.js?ver=wp-disclaimer-popup-admin.css?ver=wp-disclaimer-popup-admin.js?ver=HTML / DOM Fingerprints
wpdp-popup-content-wrapwpdp-popup-closewpdp-popup-bodywpdp-popup-container<!-- disclaimer popup --><!-- /disclaimer popup --><!-- disclaimer popup - content --><!-- /disclaimer popup - content -->+2 moredata-wpdp-cookie-daysdata-wpdp-cookie-namedata-wpdp-cookie-valuewpdp_ajax_obj[disclaimer_popup_content]