WP-Safety

Mentions Legales Par Webdeclic Security & Risk Analysis

wordpress.org/plugins/mentions-legales-par-webdeclic

Génère un shortcode pour les mentions légales qui sont obligatoires sur les sites internet en France.

500 active installs v1.0.5 PHP 7.4+ WP 4.0.0+ Updated Jul 22, 2025
gdprmentions-legalesrgpd
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Mentions Legales Par Webdeclic Safe to Use in 2026?

Generally Safe

Score 100/100

Mentions Legales Par Webdeclic has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 8mo ago
Risk Assessment

The "mentions-legales-par-webdeclic" plugin version 1.0.5 exhibits a strong security posture based on the provided static analysis. The absence of dangerous functions, reliance on prepared statements for SQL queries, and comprehensive output escaping indicate robust development practices. Furthermore, the lack of direct file operations, external HTTP requests, and the absence of any recorded vulnerabilities in its history are highly positive indicators. The plugin also demonstrates a limited attack surface with only one shortcode and no unprotected entry points.

However, a key area for concern is the complete lack of nonce checks and capability checks. While the current analysis shows no unprotected AJAX handlers or REST API routes, the absence of these fundamental security mechanisms means that if new entry points are introduced or existing ones are modified in future versions without proper authorization checks, they could be vulnerable. This omission represents a potential weakness that, while not currently exploited or demonstrably harmful in this version, leaves room for future insecurity. Overall, the plugin is well-developed and has a clean history, but the oversight in implementing nonce and capability checks is a notable, albeit minor, security concern.

Key Concerns

  • Missing nonce checks
  • Missing capability checks
Vulnerabilities
None known

Mentions Legales Par Webdeclic Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Mentions Legales Par Webdeclic Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
0
127 escaped
Nonce Checks
0
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

100% escaped127 total outputs
Data Flows
All sanitized

Data Flow Analysis

2 flows
render_menu_page (admin\class-settings.php:383)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface

Mentions Legales Par Webdeclic Attack Surface

Entry Points1
Unprotected0

Shortcodes 1

[wbd_mentions_legales] public\class-shortcodes.php:53
WordPress Hooks 3
actionplugins_loadedincludes\class-mentions-legales-par-webdeclic.php:151
actionadmin_menuincludes\class-mentions-legales-par-webdeclic.php:165
actioninitincludes\class-mentions-legales-par-webdeclic.php:180
Maintenance & Trust

Mentions Legales Par Webdeclic Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedJul 22, 2025
PHP min version7.4
Downloads4K

Community Trust

Rating100/100
Number of ratings1
Active installs500
Alternatives

Mentions Legales Par Webdeclic Alternatives

tarteaucitron.io

tarteaucitron.io

tarteaucitronjs

A
96

Compliant and accessible cookie banner.

10K 3 CVEs
Axeptio – Cookie Banner – GDPR Consent & Compliance with a friendly touch

Axeptio – Cookie Banner – GDPR Consent & Compliance with a friendly touch

axeptio-sdk-integration

A
97

Axeptio is the best solution to make your website GDPR compatible and make your visitors smile!

8K 1 CVE
Inazo's flamingo automatically delete old messages

Inazo's flamingo automatically delete old messages

inazo-flamingo-automatically-delete-old-messages

A
92

This plugin help you to auto removed all information stored by flamingo.

4K No CVEs
Manage Privacy Options Page

Manage Privacy Options Page

manage-privacy-options

A
85

Add roles that can edit the privacy page.

1K No CVEs
Cookie Dough Compliance and Consent for GDPR

Cookie Dough Compliance and Consent for GDPR

cookie-dough-compliance-and-consent-for-gdpr

A
100

Cookie Dough Compliance and Consent for GDPR is a GDPR cookie consent extension. Style your modal cookie.

500 No CVEs
Developer Profile

Mentions Legales Par Webdeclic Developer Profile

Ludwig You

6 plugins · 13K total installs

93
trust score
Avg Security Score
98/100
Avg Patch Time
8 days
View full developer profile
Detection Fingerprints

How We Detect Mentions Legales Par Webdeclic

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/mentions-legales-par-webdeclic/admin/css/settings.css/wp-content/plugins/mentions-legales-par-webdeclic/admin/js/settings.js/wp-content/plugins/mentions-legales-par-webdeclic/includes/assets/css/frontend.css/wp-content/plugins/mentions-legales-par-webdeclic/includes/assets/js/frontend.js
Script Paths
/wp-content/plugins/mentions-legales-par-webdeclic/admin/js/settings.js/wp-content/plugins/mentions-legales-par-webdeclic/includes/assets/js/frontend.js
Version Parameters
mentions-legales-par-webdeclic/admin/css/settings.css?ver=mentions-legales-par-webdeclic/admin/js/settings.js?ver=mentions-legales-par-webdeclic/includes/assets/css/frontend.css?ver=mentions-legales-par-webdeclic/includes/assets/js/frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes
wbd-mlw-settings-pagewbd-mlw-settings-tabswbd-mlw-section-introductionwbd-mlw-section-0wbd-mlw-section-1wbd-mlw-section-2wbd-mlw-section-3wbd-mlw-section-4+10 more
HTML Comments
PAGE FOR SETTINGS OF PLUGIN (is parent page)SECOND TAB
Data Attributes
data-wbd-mentions-legales-id
JS Globals
mentionsLegalesWebdeclic
Shortcode Output
[wbd_mentions_legales]
FAQ

Frequently Asked Questions about Mentions Legales Par Webdeclic