[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f7Wg8gVBY7vJJH8dmi9U0W-HhdinxbkMsETL2OCDUm0I":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":32,"crawl_stats":29,"alternatives":39,"analysis":133,"fingerprints":561},"gdpress","GDPress","2.0.1","arena","https:\u002F\u002Fprofiles.wordpress.org\u002Farena\u002F","\u003Cp>GDPress is providing tools for privacy and more.\u003C\u002Fp>\n\u003Cp>Major features in GDPress include :\u003C\u002Fp>\n\u003Cul>\n\u003Cli>a privacy request form\u003C\u002Fli>\n\u003Cli>a menu in the admin_bar to see at once confirmed privacy requests\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>and since version 2.0 a set of tools to help you comply with GDPR\u003Cbr \u002F>\n* a set of protection and wellness tools, because protecting personal data starts with a healthy and protected installation to prevent potential data breach.\u003Cbr \u002F>\n* a RoPA assistant to help you building your Records of Processing Activities – a GDPR obligation (Article 30).\u003Cbr \u002F>\n* a logging of all events related to export\u002Ferase requests by\u002Ffor the data subject (see settings page).\u003Cbr \u002F>\n* a specific wp role for dpo.\u003Cbr \u002F>\n* and a dedicated Privacy\u002FGDPR\u002FISO27701 dashboard for your d.p.o. !\u003C\u002Fp>\n\u003Cp>GDPR compliancy is a never ending process.\u003C\u002Fp>\n\u003Ch3>Technical Details\u003C\u002Fh3>\n\u003Cp>n\u002Fa\u003C\u002Fp>\n\u003Ch3>Privacy\u003C\u002Fh3>\n\u003Cp>GDPress is not calling any external web services\u003Cbr \u002F>\nand is not using any external software other than WordPress core.\u003C\u002Fp>\n\u003Cp>GDPress stores events related to the data subject and core privacy processes if archive setting is set.\u003Cbr \u002F>\nArchives are under the authority of the Data Protection Officer for legal purpose ONLY.\u003Cbr \u002F>\nThey are retrieved to the data subject, but not deleted.\u003C\u002Fp>\n\u003Ch4>Accountability\u002FAuditability\u003C\u002Fh4>\n\u003Cp>These are legal obligations in GDPR. In front of your local data protection authority or a judge :\u003Cbr \u002F>\n* You are accountable of your actions to reach GDPR compliancy and must prove it (activating this plugin is not enough).\u003Cbr \u002F>\n* If sued, you will have to provide some evidence : you acted lawfully and replied to the request of the data subject (archive all activities for Legal Purpose is allowed in GDPR and must be declared in your Records of Processing Activities).\u003C\u002Fp>\n\u003Ch4>Other Major Obligations\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Records of Processing Activities, expecting WordPress team to publish it for core. And for any theme or plugin, adding a new Privacy Section in readme.txt is a must do.\u003C\u002Fli>\n\u003Cli>Communication of a personal data breach to the data subject (and to your local D.P.A.)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Privacy by design\u003C\u002Fh4>\n\u003Cp>This concept is in GDPR too. In wp, Privacy is a component like Gutenberg, Admin, wp-cron …\u003Cbr \u002F>\nPrivacy by design is or should be declined and included in ALL wp components. Should all components publish their “Privacy Section” just like the above recommandation for themes and plugins ?\u003C\u002Fp>\n\u003Ch4>Pending Questions\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Privacy settings in core : only one setting on a unique page that cannot be amended (no hook) : the privacy policy page\u003C\u002Fli>\n\u003Cli>any privacy request is a personal data and should be retrieved to the data subject\u003C\u002Fli>\n\u003Cli>removing an export request do not delete the export file (security issue, potential data breach)\u003C\u002Fli>\n\u003Cli>external processors to be identified (privacy by design)\u003C\u002Fli>\n\u003Cli>Gutenberg blocks coherence with embed handlers and oembed providers as set on the server side (privacy by design)\u003C\u002Fli>\n\u003Cli>oEmbed responses cached in transients (no more postmeta html cached) for blog posts or oembed providers (privacy by design)\u003C\u002Fli>\n\u003Cli>ability to remove blocks in Gutenberg such as “\u002Fmap” for Mapbox (privacy by design)\u003C\u002Fli>\n\u003Cli>future “Icon” component : from Dashicons to svg  (privacy by design)\u003C\u002Fli>\n\u003Cli>Nowadays, emails such as “θσερ@εχαμπλε.ψομ” are valid but rejected by wp function is_email() (privacy requests rejected)\u003Cbr \u002F>\nWeb standards should apply and this can be a legal issue : one of the “variety of privacy issues around the world” !\u003C\u002Fli>\n\u003C\u002Ful>\n","More than a privacy plugin",10,2357,100,1,"2020-09-10T14:52:00.000Z","5.5.18","5.4","7.0",[20,21,22,23,24],"form","gdpr","privacy","rgpd","tools","https:\u002F\u002Fgdpress.eu","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgdpress.2.0.1.zip",85,0,null,"2026-03-15T15:16:48.613Z",[],{"slug":7,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":34,"avg_security_score":35,"avg_patch_time_days":36,"trust_score":37,"computed_at":38},19,1600,87,50,79,"2026-04-04T20:41:42.870Z",[40,62,78,96,115],{"slug":41,"name":42,"version":43,"author":44,"author_profile":45,"description":46,"short_description":47,"active_installs":48,"downloaded":49,"rating":50,"num_ratings":51,"last_updated":52,"tested_up_to":53,"requires_at_least":54,"requires_php":55,"tags":56,"homepage":55,"download_link":60,"security_score":61,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"inazo-flamingo-automatically-delete-old-messages","Inazo's flamingo automatically delete old messages","1.2","inazo","https:\u002F\u002Fprofiles.wordpress.org\u002Finazo\u002F","\u003Cp>Flamingo auto remove old messages\u003C\u002Fp>\n\u003Cp>This plugin help you to auto removed all information stored by flamingo.\u003C\u002Fp>\n\u003Cp>Functionnality :\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Shelf life of contacts\u003C\u002Fli>\n\u003Cli>Shelf life of incoming messages\u003C\u002Fli>\n\u003Cli>Shelf life of outgoing messages\u003C\u002Fli>\n\u003Cli>Shelf life of spam messages (30 days by default)\u003C\u002Fli>\n\u003Cli>It automatically adds to the worpdress CRON natively\u003C\u002Fli>\n\u003Cli>Complete deletion of data ratachés to the posts of flamingo\u003C\u002Fli>\n\u003Cli>Comply with privacy and GDPR\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Credits picture : Icons made by Eight Black Dots (https:\u002F\u002Fwww.flaticon.com\u002Fauthors\u002Feight-black-dots) from www.flaticon.com is licensed by CC 3.0 BY\u003C\u002Fp>\n","This plugin help you to auto removed all information stored by flamingo.",4000,17239,96,4,"2024-07-26T15:18:00.000Z","6.6.5","4.6.0","",[57,58,59,21,23],"contact","contact-form-7","flamingo","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Finazo-flamingo-automatically-delete-old-messages.1.2.zip",92,{"slug":63,"name":64,"version":65,"author":66,"author_profile":67,"description":68,"short_description":69,"active_installs":70,"downloaded":71,"rating":72,"num_ratings":73,"last_updated":74,"tested_up_to":16,"requires_at_least":75,"requires_php":55,"tags":76,"homepage":55,"download_link":77,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"manage-privacy-options","Manage Privacy Options Page","1.1","Julio Potier","https:\u002F\u002Fprofiles.wordpress.org\u002Fjuliobox\u002F","\u003Cp>Add roles that can edit the privacy page. That’s it.\u003C\u002Fp>\n\u003Cp>Remember that a Data Protection Officer (DPO) should be administrator and\u002For have access to the settings in order to do its job correctly.\u003C\u002Fp>\n\u003Cp>But also, you may need to add other roles allowed to edit the privacy page, this is why this plugin exists.\u003C\u002Fp>\n","Add roles that can edit the privacy page.",1000,40047,90,8,"2020-05-27T07:01:00.000Z","4.8",[21,22,23],"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fmanage-privacy-options.1.1.zip",{"slug":79,"name":80,"version":81,"author":82,"author_profile":83,"description":84,"short_description":85,"active_installs":86,"downloaded":87,"rating":13,"num_ratings":88,"last_updated":89,"tested_up_to":90,"requires_at_least":91,"requires_php":55,"tags":92,"homepage":94,"download_link":95,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"wider-gravity-forms-stop-entries","Wider Gravity Forms Stop Entries","1.0","wearewider","https:\u002F\u002Fprofiles.wordpress.org\u002Fwearewider\u002F","\u003Cp>Gravity Forms is a wonderful plugin and each form submission is stored on your web server and is accessible through the admin area – which can be great if you have problems with the email address you have setup to receive form submissions.\u003C\u002Fp>\n\u003Cp>However, there is no easy way in the admin area to selectively stop entries being stored on your web server, it has to be done in code and is a bit of hassle – this plugin makes it easy to stop this potentially sensitive data being stored.\u003C\u002Fp>\n\u003Cp>Improve the privacy of your visitors form submissions and make your website comply with the GDPR – this plugin allows you to select individual Gravity Forms you have setup and stop these entries being stored through easy to use admin options.\u003C\u002Fp>\n\u003Cp>You will find the options under \u003Ccode>Settings > Gravity Forms Stop Entries\u003C\u002Fcode>.\u003C\u002Fp>\n\u003Cp>NOTE: Requires Gravity Forms v1.8 or newer!\u003C\u002Fp>\n","Selectively stop Gravity Forms entries being stored on your web server to comply with privacy and the GDPR.",700,5283,2,"2017-08-01T08:44:00.000Z","4.8.28","4.5",[21,93,22],"gravity-forms","https:\u002F\u002Fwww.wider.co.uk","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwider-gravity-forms-stop-entries.zip",{"slug":97,"name":98,"version":99,"author":100,"author_profile":101,"description":102,"short_description":103,"active_installs":104,"downloaded":105,"rating":13,"num_ratings":88,"last_updated":106,"tested_up_to":107,"requires_at_least":108,"requires_php":109,"tags":110,"homepage":113,"download_link":114,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"gdpr-for-gravity-forms","Gravity Forms: GDPR Framework Add-On","2.0.0","Data443 Risk Mitigation, Inc.","https:\u002F\u002Fprofiles.wordpress.org\u002Fdata443\u002F","\u003Cp>The easiest way to make your Gravity Forms GDPR compliant!\u003C\u002Fp>\n\u003Cp>This plugin is a service of \u003Ca href=\"https:\u002F\u002Fdata443.com\" rel=\"nofollow ugc\">Data443\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Data443 is a Data Security and Compliance company traded on the OTCMarkets as \u003Ca href=\"https:\u002F\u002Fwww.otcmarkets.com\u002Fstock\u002FATDS\u002Foverview\" rel=\"nofollow ugc\">ATDS\u003C\u002Fa>. We have been providing leading GDPR compliance products such as Global Privacy Manager (\u003Ca href=\"https:\u002F\u002Fwww.data443.com\u002Fglobal-privacy-manager\u002F\" rel=\"nofollow ugc\">Data443™ Global Privacy Manager\u003C\u002Fa>), Blockchain privacy, and enterprise cloud eDiscovery tools.\u003C\u002Fp>\n\u003Cp>This plugin adds new privacy features to Gravity Forms. Your visitors can download or delete their form submissions automatically or submit a request for the site admin to do so.\u003C\u002Fp>\n\u003Cp>Until WordPress releases their own GDPR compliance update, this plugin requires \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fgdpr-framework\u002F\" rel=\"ugc\">The GDPR Framework\u003C\u002Fa> to function (it’s free!)\u003C\u002Fp>\n\u003Cp>Make sure to also read the guide! You don’t need to drown your customers in pointless acceptance checkboxes if you know what you’re doing!\u003C\u002Fp>\n\u003Ch3>Disclaimer\u003C\u002Fh3>\n\u003Cp>Using Gravity Forms: GDPR Add-On does NOT guarantee compliance to GDPR. This plugin gives you general information and tools, but is NOT meant to serve as complete compliance package. Compliance to GDPR is risk-based ongoing process that involves your whole business. Data443 is not eligible for any claim or action based on any information or functionality provided by this plugin.\u003C\u002Fp>\n\u003Ch3>Documentation\u003C\u002Fh3>\n\u003Cp>How to use this plugin (practical guide): \u003Ca href=\"https:\u002F\u002Fdata443.atlassian.net\u002Fservicedesk\u002Fcustomer\u002Fportal\u002F2\u002Farticle\u002F28246137\" rel=\"nofollow ugc\">Making your Gravity Forms GDPR-compliant\u003C\u002Fa>\u003Cbr \u002F>\nHow to use this plugin (the legal stuff explained): \u003Ca href=\"https:\u002F\u002Fdata443.atlassian.net\u002Fservicedesk\u002Fcustomer\u002Fportal\u002F2\u002Farticle\u002F2079293576\" rel=\"nofollow ugc\">Legal grounds for processing data\u003C\u002Fa>\u003Cbr \u002F>\nFull documentation: \u003Ca href=\"https:\u002F\u002Fdata443.atlassian.net\u002Fservicedesk\u002Fcustomer\u002Fportal\u002F2\u002Farticle\u002F2078998660\" rel=\"nofollow ugc\">The WordPress Site Owner’s Guide to GDPR\u003C\u002Fa>\u003Cbr \u002F>\nFor developers: \u003Ca href=\"https:\u002F\u002Fdata443.atlassian.net\u002Fservicedesk\u002Fcustomer\u002Fportal\u002F2\u002Farticle\u002F2082439194\" rel=\"nofollow ugc\">Developer Docs\u003C\u002Fa>\u003Cbr \u002F>\nKnowledge Base: \u003Ca href=\"https:\u002F\u002Fdata443.atlassian.net\u002Fservicedesk\u002Fcustomer\u002Fportal\u002F2\u002Farticle\u002F192708653\" rel=\"nofollow ugc\">Knowledge Base\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cp>☑ Allow both users and visitors without an account to view, export and delete their form submissions or request the site admin to do so;\u003Cbr \u002F>\n☑ Configure forms to be excluded from viewing, exporting or deleting.\u003Cbr \u002F>\n☑ Support for anonymization: allow admin to select which fields must be anonymized;\u003Cbr \u002F>\n☑ Track, manage and withdraw consent.\u003C\u002Fp>\n","The easiest way to make your Gravity Forms GDPR-compliant. Fully documented, extendable and developer-friendly.",400,18304,"2022-07-28T14:55:00.000Z","6.0.11","4.7","5.6",[111,21,93,22,112],"compliance","security","https:\u002F\u002Fwww.data443.com\u002Fgdpr-framework-wordpress-plugin\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fgdpr-for-gravity-forms.zip",{"slug":116,"name":117,"version":65,"author":118,"author_profile":119,"description":120,"short_description":121,"active_installs":122,"downloaded":123,"rating":13,"num_ratings":124,"last_updated":125,"tested_up_to":126,"requires_at_least":127,"requires_php":128,"tags":129,"homepage":131,"download_link":132,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30},"disable-privacy-tools","Disable Privacy Tools","Dominik Schilling","https:\u002F\u002Fprofiles.wordpress.org\u002Focean90\u002F","\u003Cp>WordPress 4.9.6 added a few tools to help you creating and displaying a privacy policy or assist with requests for exporting\u002Ferasing personal data.\u003Cbr \u002F>\nDepending on your location or type of install (the tools may not be suitable for Multisite or large networks), you may have already taken measures to comply with existing privacy laws or\u002Fand you do not need them at all.\u003C\u002Fp>\n\u003Cp>With this plugin, all the new admin screens will be disabled to prevent cluttering your admin with more unused items. It also prevents showing you the feature pointer if you install this plugin before the update.\u003C\u002Fp>\n\u003Cp>\u003Cem>Photo by \u003Ca href=\"https:\u002F\u002Funsplash.com\u002Fphotos\u002F0FOOcD63bek\" rel=\"nofollow ugc\">Dayne Topkin\u003C\u002Fa>.\u003C\u002Fem>\u003C\u002Fp>\n","Removes the tools for creating a privacy policy and exporting\u002Ferasing personal data.",200,5844,3,"2022-01-11T15:59:00.000Z","5.8.13","4.9","5.2",[130,21,22,24],"core","https:\u002F\u002Fgithub.com\u002Focean90\u002Fwp-disable-privacy-tools","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fdisable-privacy-tools.1.1.zip",{"attackSurface":134,"codeSignals":390,"taintFlows":549,"riskAssessment":550,"analyzedAt":560},{"hooks":135,"ajaxHandlers":365,"restRoutes":376,"shortcodes":377,"cronEvents":381,"entryPointCount":51,"unprotectedCount":124},[136,141,144,147,151,154,156,161,163,166,168,170,173,176,179,184,189,193,197,202,205,208,211,214,216,219,222,224,227,229,232,235,238,241,244,247,251,255,259,261,264,267,270,273,276,278,281,284,287,290,293,295,299,302,305,309,312,315,317,319,322,324,326,328,331,333,335,338,341,344,346,348,350,353,355,359,362],{"type":137,"name":138,"callback":138,"file":139,"line":140},"action","plugins_loaded","GDPress.php",75,{"type":137,"name":142,"callback":142,"file":139,"line":143},"init",76,{"type":137,"name":145,"callback":145,"file":139,"line":146},"widgets_init",77,{"type":137,"name":148,"callback":149,"priority":11,"file":139,"line":150},"gdpress_check_flood","check_flood",78,{"type":137,"name":152,"callback":152,"file":139,"line":153},"gdp_schedule",84,{"type":137,"name":155,"callback":155,"file":139,"line":27},"gdp_install",{"type":137,"name":157,"callback":158,"priority":159,"file":139,"line":160},"upgrader_process_complete","upgraded",15,89,{"type":137,"name":162,"callback":162,"priority":159,"file":139,"line":72},"switch_theme",{"type":137,"name":164,"callback":164,"priority":159,"file":139,"line":165},"activate_plugin",91,{"type":137,"name":167,"callback":167,"priority":159,"file":139,"line":61},"deactivated_plugin",{"type":137,"name":169,"callback":169,"file":139,"line":13},"admin_init",{"type":137,"name":171,"callback":171,"file":139,"line":172},"admin_menu",101,{"type":137,"name":174,"callback":174,"file":139,"line":175},"wp_head",104,{"type":137,"name":171,"callback":171,"priority":177,"file":139,"line":178},999,199,{"type":137,"name":180,"callback":181,"priority":182,"file":139,"line":183},"admin_bar_menu","getInstance",61,204,{"type":185,"name":186,"callback":187,"priority":11,"file":139,"line":188},"filter","gdpress_is_flood","is_flood",232,{"type":185,"name":190,"callback":191,"priority":11,"file":139,"line":192},"gdpress_flood_filter","throttle_flood",233,{"type":137,"name":194,"callback":194,"file":195,"line":196},"admin_footer","gp-admin\\ropa.php",22,{"type":185,"name":198,"callback":199,"priority":11,"file":200,"line":201},"parse_query","found_posts","gp-includes\\class\\GDP_Archivist.class.php",63,{"type":137,"name":203,"callback":203,"priority":14,"file":200,"line":204},"check_admin_referer",64,{"type":137,"name":206,"callback":206,"priority":14,"file":200,"line":207},"login_form_confirmaction",65,{"type":185,"name":209,"callback":209,"priority":14,"file":200,"line":210},"pre_delete_post",66,{"type":185,"name":212,"callback":212,"priority":14,"file":200,"line":213},"user_request_action_description",83,{"type":185,"name":215,"callback":215,"priority":14,"file":200,"line":61},"user_request_action_email_headers",{"type":137,"name":217,"callback":217,"priority":14,"file":200,"line":218},"user_request_action_confirmed",108,{"type":137,"name":220,"callback":220,"priority":14,"file":200,"line":221},"deleted_post",121,{"type":185,"name":215,"callback":215,"priority":14,"file":200,"line":223},138,{"type":185,"name":225,"callback":225,"priority":14,"file":200,"line":226},"user_request_confirmed_email_headers",139,{"type":185,"name":212,"callback":212,"priority":14,"file":200,"line":228},164,{"type":137,"name":230,"callback":230,"priority":14,"file":200,"line":231},"wp_privacy_personal_data_export_file_created",183,{"type":185,"name":233,"callback":233,"priority":14,"file":200,"line":234},"wp_mail",201,{"type":137,"name":236,"callback":236,"priority":159,"file":200,"line":237},"wp_privacy_personal_data_erased",212,{"type":137,"name":239,"callback":239,"file":200,"line":240},"phpmailer_init",251,{"type":137,"name":242,"callback":242,"priority":14,"file":200,"line":243},"MailPress_swift_message_built",252,{"type":137,"name":194,"callback":194,"file":245,"line":246},"gp-includes\\class\\GDP_Dashboard.class.php",23,{"type":185,"name":248,"callback":249,"priority":73,"file":250,"line":73},"GDPress_dashboard_metaboxes_register","register","gp-includes\\class\\GDP_dashboard_metabox_.class.php",{"type":137,"name":252,"callback":253,"priority":73,"file":250,"line":254},"GDPress_dashboard_add_meta_box","add_meta_box",9,{"type":185,"name":215,"callback":256,"priority":177,"file":257,"line":258},"set_headers","gp-includes\\class\\GDP_Mail_Headers.class.php",24,{"type":185,"name":225,"callback":256,"priority":177,"file":257,"line":260},25,{"type":185,"name":262,"callback":256,"priority":177,"file":257,"line":263},"wp_privacy_personal_data_email_headers",26,{"type":185,"name":265,"callback":256,"priority":177,"file":257,"line":266},"user_erasure_complete_email_headers",27,{"type":137,"name":169,"callback":268,"file":269,"line":159},"redirect","gp-includes\\class\\GDP_WP_Admin_page_.class.php",{"type":137,"name":169,"callback":271,"file":269,"line":272},"title",16,{"type":137,"name":274,"callback":274,"file":269,"line":275},"admin_head",18,{"type":185,"name":277,"callback":277,"file":269,"line":33},"screen_meta_screen",{"type":185,"name":279,"callback":279,"priority":73,"file":269,"line":280},"current_screen",20,{"type":137,"name":282,"callback":283,"file":269,"line":196},"admin_print_styles","print_styles",{"type":137,"name":285,"callback":286,"file":269,"line":246},"admin_print_scripts","print_header_scripts",{"type":137,"name":288,"callback":289,"file":269,"line":258},"admin_print_footer_scripts","print_footer_scripts",{"type":137,"name":291,"callback":292,"priority":13,"file":269,"line":263},"wp_print_scripts","deregister_scripts",{"type":137,"name":294,"callback":292,"priority":13,"file":269,"line":266},"wp_print_footer_scripts",{"type":185,"name":296,"callback":297,"priority":73,"file":298,"line":11},"set-screen-option","set_screen_option","gp-includes\\class\\GDP_WP_Admin_page_list_.class.php",{"type":137,"name":138,"callback":138,"priority":300,"file":301,"line":258},998,"gp-includes\\class\\GDP_WP_Embed_handlers.class.php",{"type":137,"name":138,"callback":138,"priority":300,"file":303,"line":304},"gp-includes\\class\\GDP_WP_oEmbed_providers.class.php",73,{"type":185,"name":306,"callback":306,"priority":177,"file":307,"line":308},"default_avatar_select","gp-includes\\class\\GDP_WP_off_Avatars.class.php",7,{"type":137,"name":138,"callback":138,"priority":177,"file":310,"line":311},"gp-includes\\class\\GDP_WP_off_Embed.class.php",6,{"type":185,"name":313,"callback":313,"file":314,"line":33},"tiny_mce_plugins","gp-includes\\class\\GDP_WP_off_Emojis.class.php",{"type":185,"name":316,"callback":316,"priority":11,"file":314,"line":280},"wp_resource_hints",{"type":137,"name":138,"callback":138,"priority":70,"file":318,"line":311},"gp-includes\\class\\GDP_WP_off_Events_News.class.php",{"type":137,"name":320,"callback":320,"priority":177,"file":318,"line":321},"wp_dashboard_setup",11,{"type":137,"name":142,"callback":142,"priority":70,"file":323,"line":311},"gp-includes\\class\\GDP_WP_off_HeartBeat.class.php",{"type":137,"name":138,"callback":138,"priority":177,"file":325,"line":311},"gp-includes\\class\\GDP_WP_off_oEmbed.class.php",{"type":185,"name":327,"callback":327,"priority":177,"file":325,"line":308},"oembed_dataparse",{"type":185,"name":329,"callback":329,"file":330,"line":263},"rest_authentication_errors","gp-includes\\class\\GDP_WP_off_Rest_Api.class.php",{"type":185,"name":332,"callback":332,"file":330,"line":266},"rest_url_prefix",{"type":137,"name":138,"callback":138,"priority":70,"file":334,"line":11},"gp-includes\\class\\GDP_WP_off_Site_Health.class.php",{"type":185,"name":336,"callback":336,"priority":70,"file":334,"line":337},"site_status_tests",17,{"type":185,"name":339,"callback":340,"priority":177,"file":334,"line":196},"debug_information","__return_empty_array",{"type":185,"name":342,"callback":342,"priority":70,"file":334,"line":343},"pre_schedule_event",30,{"type":137,"name":171,"callback":171,"priority":177,"file":334,"line":345},33,{"type":137,"name":320,"callback":320,"priority":177,"file":334,"line":347},34,{"type":137,"name":279,"callback":279,"priority":177,"file":334,"line":349},38,{"type":185,"name":351,"callback":351,"priority":11,"file":352,"line":308},"wp_xmlrpc_server_class","gp-includes\\class\\GDP_WP_off_Xmlrpc.class.php",{"type":137,"name":138,"callback":138,"priority":300,"file":354,"line":258},"gp-includes\\class\\GDP_WP_Site_Health_tests.class.php",{"type":185,"name":356,"callback":357,"priority":73,"file":358,"line":11},"GDPress_scripts","scripts","gp-includes\\class\\options\\dashboard\\metaboxes\\wp_wellness.php",{"type":185,"name":265,"callback":265,"priority":14,"file":360,"line":361},"gp-includes\\class\\options\\privacy\\erasers\\_archivist.php",13,{"type":137,"name":363,"callback":363,"priority":14,"file":364,"line":361},"wp_privacy_personal_data_export_file","gp-includes\\class\\options\\privacy\\exporters\\_archivist.php",[366,370,373],{"action":367,"nopriv":368,"callback":181,"hasNonce":368,"hasCapCheck":368,"file":139,"line":369},"gdpress_form",false,80,{"action":367,"nopriv":371,"callback":181,"hasNonce":368,"hasCapCheck":368,"file":139,"line":372},true,81,{"action":374,"nopriv":368,"callback":181,"hasNonce":368,"hasCapCheck":368,"file":139,"line":375},"gdp_ajax",82,[],[378],{"tag":4,"callback":379,"file":139,"line":380},"shortcode",106,[382,384,386],{"hook":155,"callback":155,"file":139,"line":383},256,{"hook":152,"callback":152,"file":139,"line":385},260,{"hook":387,"callback":387,"file":388,"line":389},"wp_site_health_scheduled_check","gp-includes\\class\\GDP_RoPA.class.php",142,{"dangerousFunctions":391,"sqlUsage":392,"outputEscaping":402,"fileOperations":73,"externalRequests":28,"nonceChecks":28,"capabilityChecks":547,"bundledLibraries":548},[],{"prepared":393,"raw":88,"locations":394},44,[395,398],{"file":298,"line":396,"context":397},215,"$wpdb->get_results() with variable interpolation",{"file":399,"line":400,"context":401},"uninstall.php",28,"$wpdb->query() with variable interpolation",{"escaped":175,"rawEcho":146,"locations":403},[404,407,410,412,414,416,418,420,422,425,427,429,430,432,433,435,436,439,441,443,445,446,449,450,451,453,455,457,458,460,462,464,465,466,468,470,472,475,477,478,480,481,483,486,488,489,491,493,496,498,499,500,501,503,504,506,508,509,510,512,514,515,517,519,521,523,525,527,529,531,533,535,537,539,541,543,545],{"file":139,"line":405,"context":406},320,"raw output",{"file":408,"line":409,"context":406},"gp-admin\\event.php",279,{"file":408,"line":411,"context":406},296,{"file":408,"line":413,"context":406},313,{"file":408,"line":415,"context":406},340,{"file":408,"line":417,"context":406},396,{"file":408,"line":419,"context":406},457,{"file":421,"line":280,"context":406},"gp-admin\\includes\\event.php",{"file":423,"line":424,"context":406},"gp-admin\\includes\\events.php",67,{"file":423,"line":426,"context":406},68,{"file":423,"line":428,"context":406},88,{"file":423,"line":13,"context":406},{"file":431,"line":246,"context":406},"gp-admin\\includes\\ropa.php",{"file":431,"line":345,"context":406},{"file":434,"line":311,"context":406},"gp-admin\\includes\\settings\\apis\\form.php",{"file":434,"line":308,"context":406},{"file":437,"line":438,"context":406},"gp-admin\\includes\\settings\\embed\\form.php",134,{"file":437,"line":440,"context":406},135,{"file":437,"line":442,"context":406},146,{"file":444,"line":254,"context":406},"gp-admin\\includes\\settings\\general\\form.php",{"file":444,"line":11,"context":406},{"file":447,"line":448,"context":406},"gp-admin\\includes\\settings\\headers\\form.php",12,{"file":447,"line":361,"context":406},{"file":447,"line":246,"context":406},{"file":447,"line":452,"context":406},37,{"file":447,"line":454,"context":406},39,{"file":447,"line":456,"context":406},41,{"file":447,"line":456,"context":406},{"file":447,"line":459,"context":406},42,{"file":461,"line":304,"context":406},"gp-admin\\includes\\settings\\oembed\\form.php",{"file":461,"line":463,"context":406},74,{"file":461,"line":369,"context":406},{"file":461,"line":27,"context":406},{"file":467,"line":226,"context":406},"gp-admin\\includes\\settings\\site_health\\form.php",{"file":467,"line":469,"context":406},140,{"file":467,"line":471,"context":406},151,{"file":473,"line":474,"context":406},"gp-admin\\includes\\settings.php",62,{"file":473,"line":476,"context":406},72,{"file":473,"line":476,"context":406},{"file":479,"line":73,"context":406},"gp-admin\\includes\\templates\\ropa\\_events_container_.php",{"file":479,"line":321,"context":406},{"file":482,"line":372,"context":406},"gp-admin\\settings.php",{"file":484,"line":485,"context":406},"gp-includes\\class\\GDP_.class.php",56,{"file":484,"line":487,"context":406},71,{"file":484,"line":375,"context":406},{"file":490,"line":459,"context":406},"gp-includes\\class\\GDP_Dashboard_Widget.class.php",{"file":490,"line":492,"context":406},47,{"file":494,"line":495,"context":406},"gp-includes\\class\\GDP_Request.class.php",203,{"file":497,"line":272,"context":406},"gp-includes\\class\\GDP_Widget.class.php",{"file":497,"line":33,"context":406},{"file":497,"line":260,"context":406},{"file":497,"line":393,"context":406},{"file":497,"line":502,"context":406},46,{"file":497,"line":502,"context":406},{"file":497,"line":505,"context":406},49,{"file":497,"line":507,"context":406},51,{"file":497,"line":507,"context":406},{"file":497,"line":389,"context":406},{"file":497,"line":511,"context":406},145,{"file":497,"line":513,"context":406},148,{"file":497,"line":471,"context":406},{"file":497,"line":516,"context":406},153,{"file":269,"line":518,"context":406},174,{"file":269,"line":520,"context":406},214,{"file":269,"line":522,"context":406},221,{"file":269,"line":524,"context":406},222,{"file":298,"line":526,"context":406},69,{"file":298,"line":528,"context":406},192,{"file":298,"line":530,"context":406},241,{"file":532,"line":393,"context":406},"gp-includes\\class\\options\\dashboard\\metaboxes\\EU_authorities.php",{"file":534,"line":246,"context":406},"gp-includes\\class\\options\\dashboard\\metaboxes\\EU_law_FFoD.php",{"file":536,"line":400,"context":406},"gp-includes\\class\\options\\dashboard\\metaboxes\\EU_law_GDPR.php",{"file":538,"line":347,"context":406},"gp-includes\\class\\options\\dashboard\\metaboxes\\EU_strategy.php",{"file":540,"line":280,"context":406},"gp-includes\\class\\options\\dashboard\\metaboxes\\ISO IEC_27701.php",{"file":542,"line":61,"context":406},"gp-includes\\class\\options\\dashboard\\metaboxes\\wp_privacy.php",{"file":544,"line":196,"context":406},"gp-includes\\class\\options\\dashboard\\metaboxes\\wp_privacy_links.php",{"file":358,"line":546,"context":406},105,21,[],[],{"summary":551,"deductions":552},"The \"gdpress\" v2.0.1 plugin exhibits a mixed security posture. On the positive side, it demonstrates good practices by primarily using prepared statements for its SQL queries and having no recorded vulnerabilities or CVEs. This suggests a history of generally secure development. However, the static analysis reveals significant concerns, particularly regarding the attack surface. With three out of four identified entry points lacking authentication checks, these AJAX handlers represent a direct pathway for potential unauthorized actions. Furthermore, the plugin's output escaping is only 57% proper, leaving a substantial portion of its output potentially vulnerable to cross-site scripting (XSS) attacks. While taint analysis showed no immediate critical flows, the combination of unprotected entry points and insufficient output sanitization creates a plausible scenario for exploitation.",[553,555,557],{"reason":554,"points":159},"Unprotected AJAX handlers",{"reason":556,"points":11},"Insufficient output escaping",{"reason":558,"points":559},"No nonce checks on AJAX",5,"2026-03-17T00:37:17.572Z",{"wat":562,"direct":583},{"assetPaths":563,"generatorPatterns":569,"scriptPaths":570,"versionParams":574},[564,565,566,567,568],"\u002Fwp-content\u002Fplugins\u002Fgdpress\u002Fgp-content\u002Fcss\u002Fgdpress-admin-bar.css","\u002Fwp-content\u002Fplugins\u002Fgdpress\u002Fgp-content\u002Fcss\u002Fgdpress-form.css","\u002Fwp-content\u002Fplugins\u002Fgdpress\u002Fgp-content\u002Fcss\u002Fgdpress-admin.css","\u002Fwp-content\u002Fplugins\u002Fgdpress\u002Fgp-content\u002Fcss\u002Fgdpress-theme.css","\u002Fwp-content\u002Fplugins\u002Fgdpress\u002Fgp-content\u002Fcss\u002Fgdpress-style.css",[],[571,572,573],"\u002Fwp-content\u002Fplugins\u002Fgdpress\u002Fgp-content\u002Fjs\u002Fgdpress-admin.js","\u002Fwp-content\u002Fplugins\u002Fgdpress\u002Fgp-content\u002Fjs\u002Fgdpress-form.js","\u002Fwp-content\u002Fplugins\u002Fgdpress\u002Fgp-content\u002Fjs\u002Fgdpress-theme.js",[575,576,577,578,579,580,581,582],"gdpress\u002Fgp-content\u002Fcss\u002Fgdpress-admin-bar.css?ver=","gdpress\u002Fgp-content\u002Fcss\u002Fgdpress-form.css?ver=","gdpress\u002Fgp-content\u002Fcss\u002Fgdpress-admin.css?ver=","gdpress\u002Fgp-content\u002Fcss\u002Fgdpress-theme.css?ver=","gdpress\u002Fgp-content\u002Fcss\u002Fgdpress-style.css?ver=","gdpress\u002Fgp-content\u002Fjs\u002Fgdpress-admin.js?ver=","gdpress\u002Fgp-content\u002Fjs\u002Fgdpress-form.js?ver=","gdpress\u002Fgp-content\u002Fjs\u002Fgdpress-theme.js?ver=",{"cssClasses":584,"htmlComments":586,"htmlAttributes":587,"restEndpoints":588,"jsGlobals":590,"shortcodeOutput":592},[585],"gdpress-form",[],[],[589],"\u002Fwp-json\u002Fgdpress\u002F",[591],"GDPress_Form",[593],"[gdpress]"]