[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fH2EMAiIevcjcW1dLVEbbf5fkVfFzLnCiOHL1ywo-c1s":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":31,"crawl_stats":28,"alternatives":37,"analysis":138,"fingerprints":548},"gdpr","GDPR","2.1.2","Trew Knowledge","https:\u002F\u002Fprofiles.wordpress.org\u002Ftrewknowledge\u002F","\u003Cp>This plugin is meant to assist a Controller, Data Processor, and Data Protection Officer (DPO) with efforts to meet the obligations and rights enacted under the GDPR.\u003C\u002Fp>\n\u003Ch3>Documentation\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftrewknowledge\u002FGDPR\u002Fwiki\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002Ftrewknowledge\u002FGDPR\u002Fwiki\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Collaboration\u003C\u002Fh3>\n\u003Cp>You can send your pull request at \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftrewknowledge\u002Fgdpr\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002Ftrewknowledge\u002Fgdpr\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Shortcodes & helper functions\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fgithub.com\u002Ftrewknowledge\u002FGDPR\u002Fwiki\u002FFunctions-&-Shortcodes\" rel=\"nofollow ugc\">https:\u002F\u002Fgithub.com\u002Ftrewknowledge\u002FGDPR\u002Fwiki\u002FFunctions-&-Shortcodes\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Consent management\u003C\u002Fli>\n\u003Cli>Privacy Preference management for Cookies with front-end preference UI & banner notifications\u003C\u002Fli>\n\u003Cli>Privacy Policy page configurations with version control and re-consent management\u003C\u002Fli>\n\u003Cli>Rights to erasure & deletion of website data with a double opt-in confirmation email\u003C\u002Fli>\n\u003Cli>Re-assignment of user data on erasure requests & pseudonymization of user website data\u003C\u002Fli>\n\u003Cli>Data Processor settings and publishing of contact information\u003C\u002Fli>\n\u003Cli>Right to access data by admin dashboard with email look up and export\u003C\u002Fli>\n\u003Cli>Right to access data by Data Subject with front-end requests button & double opt-in confirmation email\u003C\u002Fli>\n\u003Cli>Right to portability & export of data by Admin or Data Subject in XML or JSON formats\u003C\u002Fli>\n\u003Cli>Encrypted audit logs for the lifetime of Data Subject compliance activity\u003C\u002Fli>\n\u003Cli>Data Subject Secret Token for two-factor decryption and recovery of data\u003C\u002Fli>\n\u003Cli>Data breach notification logs and batch email notifications to Data Subjects\u003C\u002Fli>\n\u003Cli>Telemetry Tracker for visualizing plugins and website data\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Settings\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>General\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>From the Settings options in the dashboard, you can select the Privacy Policy page for tracking and logging consent.\u003C\u002Fp>\n\u003Cp>On login, the user must consent to the Privacy Policy outlined on the site. If the user does not consent, the user will not be registered or logged in.\u003C\u002Fp>\n\u003Cp>If the site owner updates the Privacy Policy page content, the change will be logged and flagged to the admin that they must notify users on next login to seek re-consent. Additionally, the warning message can be dismissed in the event of a minor correction or mistake.\u003C\u002Fp>\n\u003Cp>Additionally, under General Settings the Admin can set the outgoing email limitation which would set the batch notification email limit per hour in the event of a Breach Notification.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Cookie Preference Management\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Similar to consent management, users can opt in or out of cookies that are being used on the site. There are 3 formats of cookies that can be created which include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Always Active:\u003C\u002Fstrong> Cookies that are always active or are required for the site to function.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Toggled:\u003C\u002Fstrong> Cookies that can be activated or blocked based on the user preference\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Opt-Out Link:\u003C\u002Fstrong> Cookies that require configuration from a third-party source in order to opt-out\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Depending on the user preference setting, you can use the \u003Ccode>is_allowed_cookie( $cookie )\u003C\u002Fcode> function to save and set the cookies. The cookie with the user approved cookies can be found at another cookie named \u003Ccode>gdpr_approved_cookies\u003C\u002Fcode>. There’s also a helper function called \u003Ccode>is_allowed_cookie( $cookie )\u003C\u002Fcode> that you can use to prevent setting up a cookie.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Consent Management\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Consents can be registered on the settings page. They can be optional or not. By default, this plugin comes with a Privacy Policy consent that users need to agree with on registration.\u003C\u002Fp>\n\u003Cp>For optional consents, there’s a wrapper function \u003Ccode>have_consent( $consent_id )\u003C\u002Fcode> to help you display or hide something on the site depending if the user gave consent or not.\u003C\u002Fp>\n\u003Cp>Consents are logged to the user record for auditing or for access purposes.\u003C\u002Fp>\n\u003Ch3>Requests Table & Rights of Data Subject\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Right to Erasure Requests\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Col>\n\u003Cli>The Data Subject is able to submit a request to be erased from the site using a shortcode.\u003C\u002Fli>\n\u003Cli>\n\u003Cp>When a request is made, the Data Subject will receive an email confirmation to confirm the deletion request.\u003C\u002Fp>\n\u003Col>\n\u003Cli>After email confirmation, the user request is added to the requests table for review by the Administrator. The Administrator can also add a user manually with an email look up and review.\u003C\u002Fli>\n\u003Cli>If the Data Subject has content published on the site for any post types or comments, they will be added to this table. If they do not have any content, they will receive a confirmation of erasure request and be provided a 6 digit Token for safekeeping after erasure in case of recover data needs.\u003C\u002Fli>\n\u003Cli>The requests table allows the Administrator to reassign any content to another user or delete it.\u003C\u002Fli>\n\u003Cli>In the event of comments, the Data Subject’s content would be made anonymous.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Admin can also manually add users to the erasure requests table with a manual email search\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>\u003Cstrong>Right to Access Data Request & User Data Portability\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Col>\n\u003Cli>The Data Subject can place a request to download their data with the shortcode.\u003C\u002Fli>\n\u003Cli>After requesting their data, the user will receive a double opt-in confirmation email then the plugin will generate an XML or JSON file, which will be emailed to them for download with an expiration time of 48 hours.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>\u003Cstrong>Right to Rectify & Complaint Requests\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Col>\n\u003Cli>The Data Subject can place a request to rectify data or file a complaint with the shortcode.\u003C\u002Fli>\n\u003Cli>After making their request, the user will receive a double opt-in confirmation email and then add them to the table for admin to handle the request.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>Tools\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Access Data\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>The Access Data tool allows the Admin to look up a user email and view the data of a particular user. The Admin can download and export the data in a JSON or XML format and provide to the Data Subject if manually requested.\u003C\u002Fp>\n\u003Cp>NOTE: This method should not be used without the Data Subject confirming their identity.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Audit Log\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Everything the Data Subject does from registration, providing consent to the privacy policy, terms of service and other requests are logged and encrypted in a database. Data breach notifications are also logged to all Data Subjects upon confirmation by Controller.\u003C\u002Fp>\n\u003Col>\n\u003Cli>Using the Data Subject’s email, you can look up and retrieve the user information and display it.\u003C\u002Fli>\n\u003Cli>If the Data Subject has been removed from the site, this encrypted log is deleted from the database and saved as an encrypted file inside the plugin folder.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>If in the future, the Data Subject makes a complaint or there is a need to recover the data, the user can provide their email address and the 6 digit token they received from the deletion confirmation email to decrypt and retrieve the file.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Data Breach & Notifications\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>In case of a data breach, the Admin can generate a Data Breach Notification to users by logging the information and confirm the breach through a double opt-in confirmation email. The following information would be recorded in the audit log:\u003C\u002Fp>\n\u003Col>\n\u003Cli>Nature of the personal data breach\u003C\u002Fli>\n\u003Cli>Name and contact details of the data protection officer\u003C\u002Fli>\n\u003Cli>Likely consequences of the personal data breach\u003C\u002Fli>\n\u003Cli>Measures were taken or proposed to be taken\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>Once the confirmation of the breach has been confirmed via email, the website will begin a batch email notification process to all users every hour until all users receive the notification.\u003C\u002Fp>\n\u003Ch3>Telemetry Tracker\u003C\u002Fh3>\n\u003Cp>The Telemetry Tracker feature will display all data that is being sent outside of your server to another destination. It will indicate the plugin or theme responsible, file and line where the data is being sent.\u003C\u002Fp>\n\u003Cp>WordPress Core and some plugins gather data from your install and send this data to an outside server.\u003C\u002Fp>\n\u003Cp>WordPress Plugin Repository does not allow plugins to do that, but premium plugins are able to do this because they are not bound by the Plugin repository rules. If you did not explicitly opt-in for this feature you should make a complaint.\u003C\u002Fp>\n\u003Ch3>Important!\u003C\u002Fh3>\n\u003Cp>Activating this plugin does not guarantee that an organization is successfully meeting its responsibilities and obligations of GDPR. Individual organizations should assess their unique responsibilities and ensure extra measures are taken to meet any obligations required by law and based on a data protection impact assessment (DPIA).\u003C\u002Fp>\n","This plugin is meant to assist with the GDPR obligations of a Data processor and Controller.",10000,371698,86,58,"2026-02-24T15:47:00.000Z","6.9.4","4.7","5.6",[20,4,21,22,23],"compliance","general-data-protection-regulation","law","privacy","https:\u002F\u002Ftrewknowledge.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgdpr.2.1.2.zip",100,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":32,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":34,"trust_score":35,"computed_at":36},"trewknowledge",1,30,94,"2026-04-03T19:57:10.841Z",[38,62,80,100,123],{"slug":39,"name":40,"version":41,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":48,"num_ratings":49,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":53,"tags":54,"homepage":59,"download_link":60,"security_score":61,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"cookiepro","CookiePro | Simplify Compliance with GDPR & EU Cookie Laws","1.0.4","CookiePro","https:\u002F\u002Fprofiles.wordpress.org\u002Fcookiepro\u002F","\u003Cp>CookiePro is the most mature and trusted cookie consent tool that is purpose-built for compliance with GDPR, ePrivacy and IAB framework. Now including IAB TCF v2.0!\u003C\u002Fp>\n\u003Ch3>OVERVIEW\u003C\u002Fh3>\n\u003Cp>Use the CookiePro plugin to insert an automatically generated cookie banner & preference center script to your website. Simply copy and paste the main script tag provided in your CookiePro account into the plugin script box – no need to edit your website code.\u003C\u002Fp>\n\u003Ch3>GETTING STARTED\u003C\u002Fh3>\n\u003Cp>Sign up for a CookiePro account to retrieve the cookie banner script. We offer different editions, so you can scale your cookie consent needs with your business.\u003C\u002Fp>\n\u003Cp>Visit \u003Ca href=\"https:\u002F\u002Fwww.cookiepro.com\u002Fpricing\u002F?referral=WORDPRESS\" rel=\"nofollow ugc\">CookiePro.com\u003C\u002Fa> to start creating an account with complete features and access to CCPA, GDPR, and IAB TCF templates. In need of only an IAB TCF v2.0 script? Visit \u003Ca href=\"http:\u002F\u002Fcomply.cookiepro.com\u002F\" rel=\"nofollow ugc\">Comply.CookiePro.com\u003C\u002Fa> to create a FREE script without having to create an account.\u003C\u002Fp>\n\u003Ch3>HOW IT WORKS\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Scan your website and review your cookies categories\u003C\u002Fli>\n\u003Cli>Style and configure your banner and preference center\u003C\u002Fli>\n\u003Cli>Block cookies using a tag manager and\u002For JS Rewrite\u003C\u002Fli>\n\u003Cli>Copy and paste CookiePro script into WordPress plugin\u003C\u002Fli>\n\u003Cli>Save the configuration to publish the cookie banner\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>FEATURE HIGHLIGHTS\u003C\u002Fh3>\n\u003Cp>CookiePro is the most mature and trusted cookie consent tool that is purpose-built for compliance with GDPR, ePrivacy and IAB framework.\u003Cbr \u002F>\n* Automatically scan and categorize cookies on your website\u003Cbr \u002F>\n* Customize your cookie banner and preview before publishing\u003Cbr \u002F>\n* Configure consent models by geolocation (Show only in EU)\u003Cbr \u002F>\n* Respect prior consent and Do Not Track browser settings\u003Cbr \u002F>\n* Granular preferences center and ability to withdraw consent\u003Cbr \u002F>\n* Complete records of consent to demonstrate compliance\u003Cbr \u002F>\n* Generate and maintain an always up-to-date cookie policy\u003Cbr \u002F>\n* Audit website for changes through scheduled website scans\u003Cbr \u002F>\n* View previously published versions saved in a script archive\u003Cbr \u002F>\n* Leverage built-in templates with multilingual support (50+)\u003C\u002Fp>\n\u003Ch3>WHAT’S NEXT\u003C\u002Fh3>\n\u003Cp>Get up and running quickly with detailed step-by-step instructions and best practices, available in the \u003Ca href=\"https:\u002F\u002Fcommunity.cookiepro.com\u002F\" rel=\"nofollow ugc\">CookiePro Community\u003C\u002Fa>. You will need a CookiePro account to access the community.\u003C\u002Fp>\n\u003Ch3>HOW TO INTEGRATE COOKIEPRO WITH WORDPRESS\u003C\u002Fh3>\n\u003Cp>\u003Cscript src=\"https:\u002F\u002Ffast.wistia.com\u002Fassets\u002Fexternal\u002FE-v1.js\" async>\u003C\u002Fscript>\u003C\u002Fp>\n\u003Cdiv class=\"wistia_responsive_padding\" style=\"padding:56.25% 0 0 0;position:relative;\">\n\u003Cdiv class=\"wistia_responsive_wrapper\" style=\"height:100%;left:0;position:absolute;top:0;width:100%;\">\n\u003Cdiv class=\"wistia_embed wistia_async_jwblrqx750 dnt=1 videoFoam=true\" style=\"height:100%;position:relative;width:100%\">\n\u003Cdiv class=\"wistia_swatch\" style=\"height:100%;left:0;opacity:0;overflow:hidden;position:absolute;top:0;transition:opacity 200ms;width:100%;\">\u003Cimg decoding=\"async\" src=\"https:\u002F\u002Ffast.wistia.com\u002Fembed\u002Fmedias\u002Fjwblrqx750\u002Fswatch\" style=\"filter:blur(5px);height:100%;object-fit:contain;width:100%;\" alt=\"\" aria-hidden=\"true\" onload=\"this.parentNode.style.opacity=1;\" \u002F>\u003C\u002Fdiv>\n\u003C\u002Fdiv>\n\u003C\u002Fdiv>\n\u003C\u002Fdiv>\n\u003Ch3>HOW TO SIGN UP FOR A COOKIEPRO ACCOUNT\u003C\u002Fh3>\n\u003Cp>\u003Cscript src=\"https:\u002F\u002Ffast.wistia.com\u002Fassets\u002Fexternal\u002FE-v1.js\" async>\u003C\u002Fscript>\u003C\u002Fp>\n\u003Cdiv class=\"wistia_responsive_padding\" style=\"padding:56.25% 0 0 0;position:relative;\">\n\u003Cdiv class=\"wistia_responsive_wrapper\" style=\"height:100%;left:0;position:absolute;top:0;width:100%;\">\n\u003Cdiv class=\"wistia_embed wistia_async_lphdhte3n4 dnt=1 videoFoam=true\" style=\"height:100%;position:relative;width:100%\">\n\u003Cdiv class=\"wistia_swatch\" style=\"height:100%;left:0;opacity:0;overflow:hidden;position:absolute;top:0;transition:opacity 200ms;width:100%;\">\u003Cimg decoding=\"async\" src=\"https:\u002F\u002Ffast.wistia.com\u002Fembed\u002Fmedias\u002Flphdhte3n4\u002Fswatch\" style=\"filter:blur(5px);height:100%;object-fit:contain;width:100%;\" alt=\"\" aria-hidden=\"true\" onload=\"this.parentNode.style.opacity=1;\" \u002F>\u003C\u002Fdiv>\n\u003C\u002Fdiv>\n\u003C\u002Fdiv>\n\u003C\u002Fdiv>\n\u003Ch3>Get HELP\u003C\u002Fh3>\n\u003Cp>Email us at \u003Ca href=\"mailto:support@cookiepro.com\" rel=\"nofollow ugc\">support@cookiepro.com\u003C\u002Fa>\u003Cbr \u002F>\nBrowse the \u003Ca href=\"https:\u002F\u002Fcommunity.cookiepro.com\" rel=\"nofollow ugc\">CookiePro Community \u003C\u002Fa>for knowledgebase articles, product updates and privacy news.\u003C\u002Fp>\n\u003Ch3>DISCLAIMER\u003C\u002Fh3>\n\u003Cp>This plugin allows you to publish CookiePro’s cookie banner and preference center on your WordPress website. Use of this plugin does not, by itself, ensure compliance with legal requirements related to cookies.\u003C\u002Fp>\n\u003Ch3>ABOUT\u003C\u002Fh3>\n\u003Cp>This plugin was created by the \u003Ca href=\"https:\u002F\u002Fprofiles.wordpress.org\u002Fcookiepro\u002F\" rel=\"nofollow ugc\">CookiePro\u003C\u002Fa> team. CookiePro provides purpose-built tools to help website owners and agencies simplify compliance with global privacy laws including GDPR, CCPA, and ePrivacy and is powered by the OneTrust platform. \u003Ca href=\"https:\u002F\u002Fwww.onetrust.com\u002Fresources\u002Fonetrust-named-a-leader-forrester-new-wave-2018\u002F\" rel=\"nofollow ugc\">OneTrust\u003C\u002Fa> was named a leader in the Forrester New Wave™: GDPR and Privacy Management Software, Q4 2018.\u003C\u002Fp>\n","CookiePro is the most mature and trusted cookie consent tool that is purpose-built for compliance with GDPR, ePrivacy and IAB framework.",2000,43980,60,9,"2021-10-12T12:28:00.000Z","5.8.13","3.6","",[55,56,57,58,4],"cookie-compliance","cookie-consent","cookie-law","eu-privacy-directive","http:\u002F\u002Fwww.onetrust.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcookiepro.zip",85,{"slug":63,"name":64,"version":65,"author":66,"author_profile":67,"description":68,"short_description":69,"active_installs":70,"downloaded":71,"rating":26,"num_ratings":72,"last_updated":73,"tested_up_to":74,"requires_at_least":75,"requires_php":18,"tags":76,"homepage":78,"download_link":79,"security_score":61,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"gdpr-notice-original","GDPR Notice","1.3.13","orcas - Mario Gleichmann","https:\u002F\u002Fprofiles.wordpress.org\u002Forcasteam\u002F","\u003Cp>\u003Cem>GDPR Notice\u003C\u002Fem> will help you to make your site more GDPR compliant by informing the user of the use of external services when they first visit your website. You can add your own customized entries that will be displayed to the user.\u003C\u002Fp>\n\u003Cp>If you website is using external serivces like Google Fonts and especially Google Analytics, the GDPR requires that users have to give their consent before any data is transferred to the external service.\u003C\u002Fp>\n\u003Cp>With each retrieval of files from external servers (servers other than the one on which your website is running), it is technically possible to log which IP address the user of your site has, which browser on which operating system they use and many other things. This is also the case when using jQuery or Bootstrap, to name a few, from CDNs. And exactly such downloads and the resulting possibility of logging data your user must be able to disagree with.\u003C\u002Fp>\n\u003Cp>In order to use your website, in the free version the user must agree to use all external services.\u003C\u002Fp>\n\u003Cp>With \u003Cem>\u003Ca href=\"https:\u002F\u002Fwww.orcas.de\u002Fwordpress-plugin\u002Fgdpr-notice\u002F\" rel=\"nofollow ugc\">GDPR Notice Pro\u003C\u002Fa>\u003C\u002Fem>, the user can also select which external services they want to allow and this plugin then removes any external styles, scripts and iframes that the user does not allow. This is necessary to prevent your website from being warned about the no-go policy.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>IMPORTANT:\u003C\u002Fstrong> This plugin can \u003Cstrong>not\u003C\u002Fstrong> and will \u003Cstrong>not\u003C\u002Fstrong> guarantee 100% compliance with GDPR. We can not ascertain that no other plugins run before this one and transfer data to external services without the user’s approval. \u003Cstrong>This plugin is intended to help you make your site GDPR compliant, it is \u003Cem>not\u003C\u002Fem> a cure-all!\u003C\u002Fstrong> Ultimately it is your responsibility to make sure your site complies with GDPR.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cem>First request checking\u003C\u002Fem>:\u003Cbr \u002F>\nOnly request users on the first visit, as long as the user has not yet accepted or declined.\u003C\u002Fli>\n\u003Cli>\u003Cem>Bots support\u003C\u002Fem>:\u003Cbr \u002F>\nIgnores bots from AOL, Baidu, Bing, DuckDuckGo, Google, MSN, Teoma, Yahoo! and Yandex.\u003Cbr \u002F>\nYou are also able to define a list of custom user agents to be ignored.\u003C\u002Fli>\n\u003Cli>\u003Cem>Cookie notice replacement\u003C\u002Fem>:\u003Cbr \u002F>\nWith GDPR Notice you can inform your visitors about the usage of cookies. No need for a separate cookie notice plugin.\u003C\u002Fli>\n\u003Cli>\u003Cem>Order changeable\u003C\u002Fem>:\u003Cbr \u002F>\nReorder your entries however you want.\u003C\u002Fli>\n\u003Cli>\u003Cem>Multiple entry types\u003C\u002Fem>:\u003Cbr \u002F>\nYou have several types of entries available to customize the notice to your liking.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cem>Title entry type\u003C\u002Fem>:\u003Cbr \u002F>\nYou can change the title of the notice.\u003C\u002Fli>\n\u003Cli>\u003Cem>Message entry type\u003C\u002Fem>:\u003Cbr \u002F>\nUse this to display custom text block entries in the notice. Multiple text entries are supported.\u003C\u002Fli>\n\u003Cli>\u003Cem>Informational entry type\u003C\u002Fem>:\u003Cbr \u002F>\nSimilar to the \u003Cem>message entry type\u003C\u002Fem>, but will display below the reject and accept buttons.\u003C\u002Fli>\n\u003Cli>\u003Cem>Informational link entry type\u003C\u002Fem>:\u003Cbr \u002F>\nLink that displays additional information when clicked.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\u003Cem>Custom style\u003C\u002Fem>:\u003Cbr \u002F>\nYou can edit the style of the notice page in the backend, without the hassle of FTP and whatnot.\u003C\u002Fli>\n\u003Cli>\u003Cem>Custom URL\u003C\u002Fem>:\u003Cbr \u002F>\nDefine a custom URL that should be used for the GDPR consent page, instead of serving the page under the regular content’s URL\u003C\u002Fli>\n\u003Cli>\u003Cem>Custom background image\u003C\u002Fem>:\u003Cbr \u002F>\nYou can chose an image from your media library to be used as a background image.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fwww.orcas.de\u002Fwordpress-plugin\u002Fgdpr-notice\u002F\" rel=\"nofollow ugc\">GDPR Notice Pro\u003C\u002Fa> Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cem>Detect browser language\u003C\u002Fem>:\u003Cbr \u002F>\nSwitch display language depending on detected browser language.\u003C\u002Fli>\n\u003Cli>\u003Cem>Multiple entry languages\u003C\u002Fem>:\u003Cbr \u002F>\nCreate entry versions for multiple languages.\u003C\u002Fli>\n\u003Cli>\u003Cem>Link entry type\u003C\u002Fem>:\u003Cbr \u002F>\nDisplays links with a checkbox. Link will show additional info when opened.\u003C\u002Fli>\n\u003Cli>\u003Cem>Required options\u003C\u002Fem>:\u003Cbr \u002F>\nLink entries can be marked as required.\u003C\u002Fli>\n\u003Cli>\u003Cem>Remove tracking codes\u003C\u002Fem>:\u003Cbr \u002F>\nRemoves inline tracking codes, such as Google Analytics\u003C\u002Fli>\n\u003Cli>\u003Cem>Multiple view modes\u003C\u002Fem>:\u003Cbr \u002F>\nYou can chose to have the notice displayed as it’s own page before your actual page, as a box floating above your page in a corner or near an edge of the browser or even not display it at all.\u003C\u002Fli>\n\u003Cli>\u003Cem>Remove unwanted scripts and styles\u003C\u002Fem>:\u003Cbr \u002F>\nRemoves scripts and styles from your site, depending on the user’s selection\u003C\u002Fli>\n\u003C\u002Ful>\n","GDPR Notice allows you, in accordance to the General Data Protection Regulation, to ask the user in advance if your page may use external services.",20,3758,2,"2019-01-14T15:52:00.000Z","5.0.25","3.4",[77,4,21,22,23],"dsgvo","https:\u002F\u002Fwww.orcas.de\u002Fwordpress-plugin\u002Fgdpr-notice\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgdpr-notice-original.1.3.13.zip",{"slug":81,"name":82,"version":83,"author":84,"author_profile":85,"description":86,"short_description":87,"active_installs":11,"downloaded":88,"rating":89,"num_ratings":90,"last_updated":91,"tested_up_to":92,"requires_at_least":17,"requires_php":18,"tags":93,"homepage":96,"download_link":97,"security_score":98,"vuln_count":33,"unpatched_count":27,"last_vuln_date":99,"fetched_at":29},"gdpr-framework","The GDPR Framework By Data443","2.2.0","Data443 Risk Mitigation, Inc.","https:\u002F\u002Fprofiles.wordpress.org\u002Fdata443\u002F","\u003Cp>This plugin is a service of \u003Ca href=\"https:\u002F\u002Fwww.data443.com\" rel=\"nofollow ugc\">Data443.com\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Data443 is a Data Security and Compliance company traded on the OTCMarkets as \u003Ca href=\"https:\u002F\u002Fwww.otcmarkets.com\u002Fstock\u002FATDS\u002Foverview\" rel=\"nofollow ugc\">ATDS\u003C\u002Fa>.  We have been providing leading GDPR compliance products such as \u003Ca href=\"https:\u002F\u002Fdata443.com\u002Fglobal-privacy-manager\u002F\" rel=\"nofollow ugc\">Global Privacy Manager\u003C\u002Fa>, Blockchain privacy, and enterprise cloud eDiscovery tools.\u003C\u002Fp>\n\u003Cp>The GDPR regulation is a large and complex law.  Each member country is to ratify it into its own legislation and language.  This makes it cumbersome to manage – but rest assured – we have a full \u003Ca href=\"https:\u002F\u002Fdata443.atlassian.net\u002Fservicedesk\u002Fcustomer\u002Fportal\u002F2\u002Farticle\u002F2078998660\" rel=\"nofollow ugc\">Site Owners Guide\u003C\u002Fa>  to help you learn and understand some of your requirements.\u003C\u002Fp>\n\u003Cp>This product gives a simple and elegant interface to handle Data Subject Access Requests (DSARs).\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cp>☑ Give users an optional time frame to give their consent\u003Cbr \u002F>\n☑ Do Not Sell my private information capability released\u003Cbr \u002F>\n☑ \u003Ca href=\"https:\u002F\u002Forders.data443.com\u002Fcart.php?gid=8\" rel=\"nofollow ugc\">Privacy Safe Seal™\u003C\u002Fa> now available – Strengthen your reputation by giving a visual representation of your Privacy Solution in operation!;\u003Cbr \u002F>\n☑ Enable DSAR on one page – allow even those without an account to automatically view, export and delete their personal data;\u003Cbr \u002F>\n☑ Configure the plugin to delete or anonymize personal data automatically or send a notification and allow admins to do it manually;\u003Cbr \u002F>\n☑ Track, manage and withdraw consent;\u003Cbr \u002F>\n☑ Generate a GDPR-compatible Privacy Policy template for your site;\u003Cbr \u002F>\n☑ Use a helpful installation wizard to get you started quickly;\u003Cbr \u002F>\n☑ Report on related data items within your WordPress installation;\u003Cbr \u002F>\n☑ Significantly reduce your staff time efforts dealing with DSARs;\u003Cbr \u002F>\n☑ Enable your larger organization to summarize and consolidate DSAR work;\u003Cbr \u002F>\n☑ Report to management on DSAR status, volume and data requirements;\u003Cbr \u002F>\n☑ We provide this fully documented;\u003Cbr \u002F>\n☑ We are developer-friendly. Everything can be extended, every feature and template can be overridden.\u003Cbr \u002F>\n☑ Cookie solution\u003Cbr \u002F>\n☑ Integration with WooCommerce Version 3.4.0 or later.\u003Cbr \u002F>\n☑ Integration with Easy Digital Download Version 2.6 or later.\u003Cbr \u002F>\n☑ Integration with Email Subscribers & Newsletters.\u003C\u002Fp>\n\u003Ch3>Disclaimer\u003C\u002Fh3>\n\u003Cp>Using The GDPR Framework does NOT guarantee compliance to GDPR. This plugin gives you general information and tools, but is NOT meant to serve as complete compliance package. Compliance to GDPR is risk-based ongoing process that involves your whole business. Data443 is not eligible for any claim or action based on any information or functionality provided by this plugin.\u003C\u002Fp>\n\u003Ch3>Notice: Special Details for those using Caching Plugins:\u003C\u002Fh3>\n\u003Cp>As the pages generated by our plugin are highly dynamic, we recommend you exclude all pages generated from caching in order for them to function properly.  Here is an example of how to exclude our pages in \u003Ca href=\"https:\u002F\u002Fdata443.atlassian.net\u002Fservicedesk\u002Fcustomer\u002Fportal\u002F2\u002Farticle\u002F718864404\" rel=\"nofollow ugc\">W3 Total Cache\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fdata443.atlassian.net\u002Fservicedesk\u002Fcustomer\u002Fportal\u002F2\u002Farticle\u002F709427345\" rel=\"nofollow ugc\">WP Fastest Cache\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Documentation\u003C\u002Fh3>\n\u003Cp>Full documentation: \u003Ca href=\"https:\u002F\u002Fdata443.atlassian.net\u002Fservicedesk\u002Fcustomer\u002Fportal\u002F2\u002Farticle\u002F2078998660\" rel=\"nofollow ugc\">The WordPress Site Owner’s Guide to GDPR\u003C\u002Fa>\u003Cbr \u002F>\nFor developers: \u003Ca href=\"https:\u002F\u002Fdata443.atlassian.net\u002Fservicedesk\u002Fcustomer\u002Fportal\u002F2\u002Farticle\u002F2082439194\" rel=\"nofollow ugc\">Developer Docs\u003C\u002Fa>\u003Cbr \u002F>\nFor users: \u003Ca href=\"https:\u002F\u002Fdata443.atlassian.net\u002Fservicedesk\u002Fcustomer\u002Fportal\u002F2\u002Farticle\u002F192708653\" rel=\"nofollow ugc\">Knowledge Base\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Plugin support:\u003C\u002Fh3>\n\u003Cp>The GDPR Framework currently works with the following plugins\u003Cbr \u002F>\n☑ Contact Form 7 & Contact Form Flamingo\u003Cbr \u002F>\n☑ Gravity Forms – \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fgdpr-for-gravity-forms\u002F\" rel=\"ugc\">Download the GDPR add-on\u003C\u002Fa>\u003Cbr \u002F>\n☑ Formidable Forms – \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fgdpr-for-formidable-forms\u002F\" rel=\"ugc\">Download the GDPR add-on\u003C\u002Fa>\u003Cbr \u002F>\n☑ Ninja Forms – \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fgdpr-for-ninja-forms\u002F\" rel=\"ugc\">Download the GDPR add-on\u003C\u002Fa>\u003Cbr \u002F>\n☑ \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fwoocommerce\u002F\" rel=\"ugc\">WooCommerce\u003C\u002Fa>\u003Cbr \u002F>\n☑ \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Feasy-digital-downloads\u002F\" rel=\"ugc\">Easy Digital Download\u003C\u002Fa>\u003Cbr \u002F>\n☑ \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Femail-subscribers\u002F\" rel=\"ugc\">Email Subscribers & Newsletters\u003C\u002Fa>\u003Cbr \u002F>\n☑ \u003Ca href=\"https:\u002F\u002Fwpml.org\u002F\" rel=\"nofollow ugc\">WPML\u003C\u002Fa>\u003C\u002Fp>\n","Easy to use tools to help make your website GDPR-compliant. Fully documented, extendable and developer-friendly.  Extensions to enterprise GDPR compli &hellip;",692164,96,65,"2025-05-07T16:13:00.000Z","6.8.5",[20,4,23,94,95],"security","wordpress-gdpr","https:\u002F\u002Fwww.data443.com\u002Fgdpr-framework\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgdpr-framework.2.2.0.zip",99,"2025-03-03 00:00:00",{"slug":101,"name":102,"version":103,"author":104,"author_profile":105,"description":106,"short_description":107,"active_installs":108,"downloaded":109,"rating":110,"num_ratings":111,"last_updated":112,"tested_up_to":113,"requires_at_least":114,"requires_php":53,"tags":115,"homepage":119,"download_link":120,"security_score":121,"vuln_count":33,"unpatched_count":27,"last_vuln_date":122,"fetched_at":29},"gdpr-compliance-cookie-consent","GDPR Compliance & Cookie Consent","1.6.1","gdprcompliancewp","https:\u002F\u002Fprofiles.wordpress.org\u002Fgdprcompliancewp\u002F","\u003Cp>GDPR Compliance and Cookie Consent is a free WordPress plugin designed to safeguard customer privacy and manage personal data responsibly on your website. It offers features such as transparent privacy and cookie policies, GDPR consent checkboxes, cookie blocking functionality, access to consumer data, and options for users to request data deletion. Compatible with WordPress 4.6 and higher, this essential plugin ensures compliance with GDPR standards, enhancing user trust.\u003C\u002Fp>\n\u003Ch3>What is GDPR\u003C\u002Fh3>\n\u003Cp>The General Data Protection Regulation (GDPR) is a regulation in EU law on data protection and privacy in the European Union and the European Economic Area. It also looks after the transfer of personal data outside of these areas.\u003C\u002Fp>\n\u003Ch3>GDPR Plugin Features\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Ensure the Right to be Forgotten\u003C\u002Fstrong>\u003Cbr \u002F>\nRequest to delete all stored data (confirmed by email link);\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Control Data Access\u003C\u002Fstrong>\u003Cbr \u002F>\nDedicated form to request personal data stored on a website;\u003C\u002Fp>\n\u003Cp>\u003Cstrong>GDPR Consent checkboxes\u003C\u002Fstrong>\u003Cbr \u002F>\nAdd consent boxes for various forms on your website like WordPress Comments and customized contact forms;\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Customizable Options\u003C\u002Fstrong>\u003Cbr \u002F>\nPrivacy Policy, Terms of Services, Cookie Consent and Email marketing opt-in forms;\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Perfect Integration\u003C\u002Fstrong>\u003Cbr \u002F>\nSmooth integration with most popular WordPress plugins;\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Cookie Blocker\u003C\u002Fstrong>\u003Cbr \u002F>\nBlock all cookies including analytics and advertising networks until formal consent to collect and use your data.\u003C\u002Fp>\n\u003Ch3>Who is it for?\u003C\u002Fh3>\n\u003Cp>From May 25, 2018, all companies with EU citizens as customers who are visiting their website, regardless of the location of the company itself, need to abide by the GDPR rules when handling their personal data.\u003C\u002Fp>\n\u003Cp>Information covered by GDPR includes names, user IDs, emails, addresses, contact details, web analytics, IP address, cookies, and other special categories of data (e.g., sensitive, genetic, health, gender, biometric).\u003C\u002Fp>\n\u003Cp>This handy GDPR plugin is straightforward to use and makes an excellent addition to any business WordPress website. It allows for any site to be GDPR compliant, and it is compatible with both the regulations and industry best practices. It is a WordPress business user’s best friend.\u003C\u002Fp>\n\u003Ch3>How do I use it?\u003C\u002Fh3>\n\u003Cp>Once installed, you will be able to access the plugin from the main admin menu within WordPress – it is labeled GDPR. From here, you will see that there are four primary tabs: ‘general,’ ‘privacy policy,’ ‘integrated plugins,’ and ‘data access & to be forgotten.’\u003C\u002Fp>\n\u003Cp>Under the general tab, you can control all the privacy and cookie consent popups. Here you can opt to enable the popups, choose the cookie consent expiry time (the default being six months), write the messages included in the popups, and manage the colors of the box and the text. Finally, you can designate where the popups will appear on the page at the front end of the website.\u003C\u002Fp>\n\u003Cp>In the privacy policy section, you can select the page where your specific policy will be displayed. You can also customize the quick link that can be used to take your customers there so they can see why their data is being collected and how it will be managed.\u003C\u002Fp>\n\u003Cp>The integrated plugin section enables you to integrate the GDPR plugin with a range of other popular plugins that can be used to increase the functionality of your website further. The ones that are supported at present include:\u003Cbr \u002F>\n* Contact Form 7, which allows you to manage multiple contact forms.\u003Cbr \u002F>\n* Gravity Forms which offers the tools necessary for creating powerful contact forms.\u003Cbr \u002F>\n* Woocommerce which is designed to allow for e-commerce and online payment.\u003Cbr \u002F>\n* BuddyPress which enables the website to be transformed into a social network platform.\u003Cbr \u002F>\n* MailChimp, which lets you add signup forms to your website and allow customers to sign up for services.\u003Cbr \u002F>\n* WordPress Comments which facilitates interactions by enabling visitors to post comments.\u003C\u002Fp>\n\u003Cp>Data access & to be forgotten, the final tab, is a vital section of the plugin. This page is where users are provided with a form to access their data as well as the right to be forgotten. In this case, all collected data will be deleted.\u003C\u002Fp>\n\u003Cp>Again this section is fully customizable, you can create your own description, and you can enter your own messages. To enable users to access or delete their own personal data, you can insert a short code to a page or use a special widget.\u003C\u002Fp>\n\u003Cp>With each section of the plugin, you will need to click on ‘save changes’ to validate your changes and to ensure that your customizations are applied to your website.\u003C\u002Fp>\n\u003Ch3>How do my customers use it?\u003C\u002Fh3>\n\u003Cp>The GDPR Compliance & Cookie Consent plugin has been carefully designed with the specific goal of protecting the personal data of your customers and other visitors to your website.\u003C\u002Fp>\n\u003Cp>While some businesses may need to collect personal or sensitive information due to the nature of the service being provided, ultimately, how this data is handled needs to be at the discretion of the customer. The goal of such GDPR compliance plugins is to give the consumers absolute control of their information.\u003C\u002Fp>\n\u003Cp>Such control is achieved here through the use of GDPR consent checkboxes, cookie blockers, and having the right to be forgotten, among other things. As well as providing specific consent for the collection of their data, the customer needs to be made aware of what will happen to it at every stage of proceedings – this is done through the use of a privacy policy.\u003C\u002Fp>\n\u003Ch3>Why should I get it?\u003C\u002Fh3>\n\u003Cp>As previously outlined, from May 25, 2018, every website collecting data from EU residents or citizens need to address GDPR rules. This is a legal requirement for all online businesses, and the penalties for not abiding by such regulations are extremely harsh.\u003C\u002Fp>\n\u003Cp>Fines of up to €20 million or up to 4% of the annual worldwide turnover of the preceding financial year in case of an enterprise, whichever is greater, can be applied for not following such rules.\u003C\u002Fp>\n\u003Cp>The GDPR Compliance & Cookie Consent WordPress Plugin makes your website compatible with general GDPR regulations. This ensures that both you, the business owner, and your customers who are visiting your site and possibly providing sensitive data are protected under the laws.\u003C\u002Fp>\n","This plugin adds GDPR-compliant cookie management to websites, ensuring legal compliance and enhancing user privacy.",5000,462871,54,10,"2024-07-31T13:25:00.000Z","6.5.8","4.6",[116,56,4,117,118],"cookie-banner","gdpr-compliance","privacy-policy","https:\u002F\u002Fwww.calculator.io\u002Fgdpr\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgdpr-compliance-cookie-consent.1.6.1.zip",92,"2023-04-19 00:00:00",{"slug":124,"name":125,"version":126,"author":127,"author_profile":128,"description":129,"short_description":130,"active_installs":131,"downloaded":132,"rating":26,"num_ratings":33,"last_updated":133,"tested_up_to":16,"requires_at_least":134,"requires_php":18,"tags":135,"homepage":136,"download_link":137,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29},"ccm19-integration","CCM19 Integration","1.1.9","Papoo Software & Media GmbH","https:\u002F\u002Fprofiles.wordpress.org\u002Fccm19\u002F","\u003Cp>This plugin integrates the CCM19 Cookie Consent Manager into WordPress. This allows to use CCM19 without manually modifying the theme or resorting to a generic snippet plugin.\u003C\u002Fp>\n\u003Cp>To use it, purchase a license or sign up for a free account on https:\u002F\u002Fwww.ccm19.de. Copy and paste the code snippet from the CCM19 dashboard into the settings of the plugin in the WordPress administration.\u003C\u002Fp>\n\u003Cp>The terms and conditions of CCM19: https:\u002F\u002Fwww.ccm19.de\u002Fagb.html.\u003C\u002Fp>\n\u003Cp>For questions please Mail us at info@ccm19.de.\u003C\u002Fp>\n","Integrates the CCM19 Cookie Consent Manager into WordPress. To use this plugin CCM19 needs to be bought or leased.",4000,20677,"2025-12-02T12:14:00.000Z","5.1",[56,57,77,58,4],"https:\u002F\u002Fwww.ccm19.de","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fccm19-integration.1.1.10.zip",{"attackSurface":139,"codeSignals":374,"taintFlows":462,"riskAssessment":538,"analyzedAt":547},{"hooks":140,"ajaxHandlers":298,"restRoutes":351,"shortcodes":352,"cronEvents":362,"entryPointCount":372,"unprotectedCount":373},[141,147,152,156,159,163,167,171,175,179,183,187,191,195,198,201,205,209,213,216,220,224,227,230,234,238,242,246,250,254,258,262,266,269,272,274,278,282,285,288,291,294],{"type":142,"name":143,"callback":144,"priority":26,"file":145,"line":146},"filter","nonce_user_logged_out","woo_nonce_fix","includes\\class-gdpr.php",178,{"type":148,"name":149,"callback":150,"file":145,"line":151},"action","plugins_loaded","set_locale",179,{"type":148,"name":153,"callback":154,"file":145,"line":155},"bp_account_details_fields","consent_checkboxes",180,{"type":148,"name":157,"callback":154,"file":145,"line":158},"woocommerce_register_form",182,{"type":148,"name":160,"callback":161,"priority":111,"file":145,"line":162},"woocommerce_checkout_update_user_meta","woocommerce_checkout_save_consent",185,{"type":142,"name":164,"callback":165,"file":145,"line":166},"woocommerce_checkout_fields","woocommerce_consent_checkboxes",186,{"type":142,"name":168,"callback":169,"priority":111,"file":145,"line":170},"manage_users_custom_column","add_consents_to_consents_column",188,{"type":142,"name":172,"callback":173,"file":145,"line":174},"manage_users_columns","add_consents_column_to_user_table",189,{"type":142,"name":176,"callback":177,"file":145,"line":178},"manage_users_sortable_columns","sort_consents_column_from_user_table",190,{"type":148,"name":180,"callback":181,"file":145,"line":182},"pre_get_users","sort_logic_for_consents_from_user_table",191,{"type":148,"name":184,"callback":185,"file":145,"line":186},"show_user_profile","edit_user_profile",192,{"type":148,"name":188,"callback":189,"file":145,"line":190},"personal_options_update","user_profile_update",193,{"type":148,"name":192,"callback":193,"file":145,"line":194},"admin_notices","policy_updated_notice",194,{"type":148,"name":192,"callback":196,"file":145,"line":197},"version_check_notice",195,{"type":148,"name":192,"callback":199,"file":145,"line":200},"review_settings_after_v2_notice",196,{"type":148,"name":202,"callback":203,"priority":111,"file":145,"line":204},"upgrader_process_complete","upgrade_completed",197,{"type":148,"name":206,"callback":207,"priority":111,"file":145,"line":208},"publish_page","policy_updated",200,{"type":148,"name":210,"callback":211,"file":145,"line":212},"admin_enqueue_scripts","enqueue_styles",201,{"type":148,"name":210,"callback":214,"file":145,"line":215},"enqueue_scripts",202,{"type":148,"name":217,"callback":218,"file":145,"line":219},"admin_menu","add_menu",203,{"type":148,"name":221,"callback":222,"file":145,"line":223},"admin_init","register_settings",204,{"type":148,"name":225,"callback":154,"file":145,"line":226},"register_form",205,{"type":148,"name":228,"callback":228,"priority":111,"file":145,"line":229},"registration_errors",206,{"type":148,"name":231,"callback":232,"file":145,"line":233},"user_register","save_user_consent_on_registration",207,{"type":148,"name":235,"callback":236,"file":145,"line":237},"admin_post_gdpr_data_breach","send_data_breach_confirmation_email",210,{"type":148,"name":239,"callback":240,"priority":111,"file":145,"line":241},"clean_gdpr_data_breach_request","clean_data_breach_request",211,{"type":148,"name":243,"callback":244,"file":145,"line":245},"admin_post_gdpr_delete_user","delete_user",213,{"type":148,"name":247,"callback":248,"file":145,"line":249},"admin_post_gdpr_cancel_request","cancel_request",214,{"type":148,"name":251,"callback":252,"file":145,"line":253},"admin_post_gdpr_add_to_deletion_requests","add_to_deletion_requests",215,{"type":148,"name":255,"callback":256,"file":145,"line":257},"admin_post_gdpr_mark_resolved","mark_resolved",216,{"type":148,"name":259,"callback":260,"file":145,"line":261},"clean_gdpr_requests","clean_requests",221,{"type":148,"name":263,"callback":264,"priority":111,"file":145,"line":265},"clean_gdpr_user_request_key","clean_user_request_key",222,{"type":148,"name":267,"callback":267,"priority":111,"file":145,"line":268},"send_data_breach_emails",224,{"type":148,"name":270,"callback":211,"file":145,"line":271},"wp_enqueue_scripts",254,{"type":148,"name":270,"callback":214,"file":145,"line":273},255,{"type":148,"name":275,"callback":276,"file":145,"line":277},"init","set_plugin_cookies",256,{"type":148,"name":279,"callback":280,"file":145,"line":281},"wp_footer","overlay",257,{"type":148,"name":279,"callback":283,"file":145,"line":284},"privacy_bar",258,{"type":148,"name":279,"callback":286,"file":145,"line":287},"is_consent_needed",259,{"type":148,"name":279,"callback":289,"file":145,"line":290},"privacy_preferences_modal",260,{"type":148,"name":279,"callback":292,"file":145,"line":293},"confirmation_screens",261,{"type":148,"name":295,"callback":296,"file":145,"line":297},"wp","request_confirmed",269,[299,305,308,311,315,319,323,327,331,334,338,340,343,345,349],{"action":300,"nopriv":301,"callback":302,"hasNonce":303,"hasCapCheck":301,"file":145,"line":304},"gdpr_generate_data_export",false,"export_data",true,158,{"action":306,"nopriv":301,"callback":306,"hasNonce":301,"hasCapCheck":301,"file":145,"line":307},"ignore_policy_update",198,{"action":309,"nopriv":301,"callback":309,"hasNonce":301,"hasCapCheck":301,"file":145,"line":310},"seek_consent",199,{"action":312,"nopriv":301,"callback":313,"hasNonce":301,"hasCapCheck":301,"file":145,"line":314},"gdpr_access_data","access_data",208,{"action":316,"nopriv":301,"callback":317,"hasNonce":301,"hasCapCheck":301,"file":145,"line":318},"gdpr_audit_log","audit_log",209,{"action":320,"nopriv":301,"callback":321,"hasNonce":301,"hasCapCheck":301,"file":145,"line":322},"gdpr_anonymize_comments","anonymize_comments",217,{"action":324,"nopriv":301,"callback":325,"hasNonce":301,"hasCapCheck":301,"file":145,"line":326},"gdpr_reassign_content","reassign_content",218,{"action":328,"nopriv":301,"callback":329,"hasNonce":301,"hasCapCheck":301,"file":145,"line":330},"disagree_with_terms","logout",262,{"action":332,"nopriv":301,"callback":332,"hasNonce":301,"hasCapCheck":301,"file":145,"line":333},"agree_with_terms",263,{"action":335,"nopriv":301,"callback":336,"hasNonce":301,"hasCapCheck":301,"file":145,"line":337},"gdpr_update_privacy_preferences","update_privacy_preferences",264,{"action":335,"nopriv":303,"callback":336,"hasNonce":301,"hasCapCheck":301,"file":145,"line":339},265,{"action":341,"nopriv":301,"callback":341,"hasNonce":301,"hasCapCheck":301,"file":145,"line":342},"agree_with_new_policies",266,{"action":341,"nopriv":303,"callback":341,"hasNonce":301,"hasCapCheck":301,"file":145,"line":344},267,{"action":346,"nopriv":301,"callback":347,"hasNonce":301,"hasCapCheck":301,"file":145,"line":348},"gdpr_send_request_email","send_request_email",270,{"action":346,"nopriv":303,"callback":347,"hasNonce":301,"hasCapCheck":301,"file":145,"line":350},271,[],[353,358],{"tag":354,"callback":355,"file":356,"line":357},"gdpr_preferences","gdpr_preferences_shortcode","includes\\helper-functions.php",37,{"tag":359,"callback":360,"file":356,"line":361},"gdpr_request_form","gdpr_request_form_shortcode",67,[363,366,369],{"hook":239,"callback":239,"file":364,"line":365},"admin\\class-gdpr-admin.php",683,{"hook":267,"callback":267,"file":367,"line":368},"includes\\class-gdpr-email.php",84,{"hook":263,"callback":263,"file":370,"line":371},"includes\\class-gdpr-requests.php",301,17,14,{"dangerousFunctions":375,"sqlUsage":376,"outputEscaping":378,"fileOperations":406,"externalRequests":33,"nonceChecks":460,"capabilityChecks":27,"bundledLibraries":461},[],{"prepared":27,"raw":27,"locations":377},[],{"escaped":379,"rawEcho":357,"locations":380},476,[381,384,386,388,390,392,394,396,398,400,402,404,407,408,410,412,414,416,419,422,424,426,428,430,432,434,436,438,440,442,444,447,450,452,454,456,458],{"file":364,"line":382,"context":383},394,"raw output",{"file":364,"line":385,"context":383},395,{"file":364,"line":387,"context":383},410,{"file":364,"line":389,"context":383},412,{"file":364,"line":391,"context":383},452,{"file":364,"line":393,"context":383},453,{"file":364,"line":395,"context":383},566,{"file":364,"line":397,"context":383},588,{"file":399,"line":174,"context":383},"admin\\partials\\requests.php",{"file":401,"line":361,"context":383},"admin\\partials\\settings.php",{"file":401,"line":403,"context":383},159,{"file":405,"line":406,"context":383},"admin\\partials\\templates\\tmpl-tools.php",3,{"file":405,"line":373,"context":383},{"file":405,"line":409,"context":383},23,{"file":405,"line":411,"context":383},44,{"file":145,"line":413,"context":383},363,{"file":356,"line":415,"context":383},47,{"file":417,"line":418,"context":383},"public\\class-gdpr-requests-public.php",409,{"file":420,"line":421,"context":383},"public\\partials\\reconsent-modal.php",69,{"file":420,"line":423,"context":383},71,{"file":425,"line":72,"context":383},"templates\\email\\complaint-request.php",{"file":427,"line":406,"context":383},"templates\\email\\complaint-resolved.php",{"file":429,"line":72,"context":383},"templates\\email\\data-breach-notification.php",{"file":431,"line":72,"context":383},"templates\\email\\data-breach-request.php",{"file":433,"line":72,"context":383},"templates\\email\\delete-request.php",{"file":435,"line":406,"context":383},"templates\\email\\delete-resolved.php",{"file":437,"line":72,"context":383},"templates\\email\\export-data-request.php",{"file":439,"line":406,"context":383},"templates\\email\\new-request.php",{"file":441,"line":72,"context":383},"templates\\email\\rectify-request.php",{"file":443,"line":406,"context":383},"templates\\email\\rectify-resolved.php",{"file":445,"line":446,"context":383},"templates\\privacy-bar.php",18,{"file":448,"line":449,"context":383},"templates\\privacy-preferences-modal.php",68,{"file":448,"line":451,"context":383},81,{"file":448,"line":453,"context":383},82,{"file":448,"line":455,"context":383},101,{"file":448,"line":457,"context":383},130,{"file":448,"line":459,"context":383},131,15,[],[463,485,508,520,528],{"entryPoint":464,"graph":465,"unsanitizedCount":33,"severity":484},"request_confirmed (public\\class-gdpr-requests-public.php:258)",{"nodes":466,"edges":481},[467,472,476],{"id":468,"type":469,"label":470,"file":417,"line":471},"n0","source","$_GET",385,{"id":473,"type":474,"label":475,"file":417,"line":471},"n1","transform","→ file_export_data()",{"id":477,"type":478,"label":479,"file":417,"line":418,"wp_function":480},"n2","sink","echo() [XSS]","echo",[482,483],{"from":468,"to":473,"sanitized":301},{"from":473,"to":477,"sanitized":301},"medium",{"entryPoint":486,"graph":487,"unsanitizedCount":33,"severity":484},"\u003Cclass-gdpr-requests-public> (public\\class-gdpr-requests-public.php:0)",{"nodes":488,"edges":503},[489,490,494,495,497,499,501],{"id":468,"type":469,"label":470,"file":417,"line":339},{"id":473,"type":478,"label":491,"file":417,"line":492,"wp_function":493},"header() [Header Injection]",408,"header",{"id":477,"type":469,"label":470,"file":417,"line":339},{"id":496,"type":478,"label":479,"file":417,"line":418,"wp_function":480},"n3",{"id":498,"type":469,"label":470,"file":417,"line":471},"n4",{"id":500,"type":474,"label":475,"file":417,"line":471},"n5",{"id":502,"type":478,"label":479,"file":417,"line":418,"wp_function":480},"n6",[504,505,506,507],{"from":468,"to":473,"sanitized":303},{"from":477,"to":496,"sanitized":303},{"from":498,"to":500,"sanitized":301},{"from":500,"to":502,"sanitized":301},{"entryPoint":509,"graph":510,"unsanitizedCount":27,"severity":519},"access_data (admin\\class-gdpr-admin.php:327)",{"nodes":511,"edges":517},[512,515],{"id":468,"type":469,"label":513,"file":364,"line":514},"$_POST (x2)",332,{"id":473,"type":478,"label":479,"file":364,"line":516,"wp_function":480},353,[518],{"from":468,"to":473,"sanitized":303},"low",{"entryPoint":521,"graph":522,"unsanitizedCount":27,"severity":519},"\u003Cclass-gdpr-admin> (admin\\class-gdpr-admin.php:0)",{"nodes":523,"edges":526},[524,525],{"id":468,"type":469,"label":513,"file":364,"line":514},{"id":473,"type":478,"label":479,"file":364,"line":516,"wp_function":480},[527],{"from":468,"to":473,"sanitized":303},{"entryPoint":529,"graph":530,"unsanitizedCount":27,"severity":519},"\u003Ctools> (admin\\partials\\tools.php:0)",{"nodes":531,"edges":536},[532,534],{"id":468,"type":469,"label":470,"file":533,"line":70},"admin\\partials\\tools.php",{"id":473,"type":478,"label":479,"file":533,"line":535,"wp_function":480},46,[537],{"from":468,"to":473,"sanitized":303},{"summary":539,"deductions":540},"The GDPR plugin v2.1.2 presents a mixed security posture.  On the positive side, it demonstrates excellent practices regarding SQL query handling, exclusively using prepared statements, and a high percentage of properly escaped output, which mitigates common injection and XSS vulnerabilities. The lack of recorded vulnerabilities in its history is also a strong indicator of past security diligence.  However, a significant concern arises from the attack surface analysis.  With 15 AJAX handlers, a substantial 14 lack authentication checks. This means that potentially any unauthenticated user could trigger these AJAX actions, creating a broad entry point for attackers.  Furthermore, the taint analysis revealed two flows with unsanitized paths, which, while not classified as critical or high severity, warrants careful investigation as they could potentially lead to unintended file operations or information disclosure if exploited in conjunction with other weaknesses. The plugin's 15 nonce checks are a good practice for AJAX, but their effectiveness is severely undermined by the absence of authentication checks on most of them.  The plugin's file operation count and external HTTP requests are relatively low and don't immediately raise alarms without further context, but the lack of capability checks for AJAX handlers is a critical oversight.\n\nIn conclusion, while the plugin excels in database security and output sanitization, its extensive unprotected AJAX endpoints represent a substantial risk. The presence of unsanitized paths in the taint analysis, though not severe, adds to this concern. The absence of capability checks on AJAX handlers is a glaring weakness that attackers could leverage to bypass intended functionality.  The plugin's history of zero vulnerabilities is commendable, but it does not negate the current risks identified in the static and taint analysis. Addressing the unprotected AJAX handlers and investigating the taint flows should be a priority to improve its overall security.",[541,543,545],{"reason":542,"points":111},"AJAX handlers without authentication checks",{"reason":544,"points":111},"Flows with unsanitized paths",{"reason":546,"points":111},"AJAX handlers without capability checks","2026-03-16T17:45:09.447Z",{"wat":549,"direct":558},{"assetPaths":550,"generatorPatterns":552,"scriptPaths":553,"versionParams":555},[551],"\u002Fwp-content\u002Fplugins\u002Fgdpr\u002Fadmin\u002Fcss\u002Fadmin.css",[],[554],"\u002Fwp-content\u002Fplugins\u002Fgdpr\u002Fdist\u002Fjs\u002Fadmin.js",[556,557],"gdpr\u002Fdist\u002Fcss\u002Fadmin.css?ver=","gdpr\u002Fdist\u002Fjs\u002Fadmin.js?ver=",{"cssClasses":559,"htmlComments":561,"htmlAttributes":562,"restEndpoints":563,"jsGlobals":564,"shortcodeOutput":565},[560],"awaiting-mod",[],[],[],[],[]]