WP-Safety

My Agile Privacy® – CMP, Cookie Consent & Privacy Tools Security & Risk Analysis

wordpress.org/plugins/myagileprivacy

Effortlessly set up cookie notices and privacy policies. Avoid fines by staying compliant with GDPR, nFADP, PIPEDA, LGPD, CCPA/CPRA and 14 more.

7K active installs v3.3.1 PHP 5.6+ WP 4.4.0+ Updated Mar 9, 2026
ccpa-cpracookie-bannerdsgvoe-privacygdpr
100
A · Safe
CVEs total1
Unpatched0
Last CVEDec 27, 2023
Plugin page Download
Safety Verdict

Is My Agile Privacy® – CMP, Cookie Consent & Privacy Tools Safe to Use in 2026?

Generally Safe

Score 100/100

My Agile Privacy® – CMP, Cookie Consent & Privacy Tools has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: Dec 27, 2023Updated 24d ago
Risk Assessment

The "myagileprivacy" plugin exhibits a mixed security posture, with some strong security practices overshadowed by notable concerns. The plugin demonstrates good output escaping (97%) and a high percentage of prepared SQL statements (84%), which are positive indicators. However, a significant attack surface is exposed, with all 16 AJAX handlers lacking authentication checks, creating a wide entry point for potential abuse. Furthermore, the presence of the `unserialize` function, even if only used twice, is a critical risk if user-controlled data is passed to it without proper validation, as indicated by one high-severity unsanitized taint flow. While there are no currently unpatched CVEs, the plugin has a history of a medium-severity Cross-Site Scripting (XSS) vulnerability, which, combined with the exposed AJAX endpoints and potential unserialization issues, suggests a need for vigilant security review. The plugin's strengths in output sanitization and prepared statements are commendable, but the lack of authorization on AJAX handlers and the potential for deserialization vulnerabilities present significant risks that require immediate attention.

Key Concerns

  • All AJAX handlers lack authentication checks
  • High severity unsanitized taint flow found
  • Use of dangerous function: unserialize
  • History of medium severity XSS vulnerability
Vulnerabilities
1

My Agile Privacy® – CMP, Cookie Consent & Privacy Tools Security Vulnerabilities

CVEs by Year

1 CVE in 2023
2023
Patched Has unpatched

Severity Breakdown

Medium
1

1 total CVE

CVE-2023-51404medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

My Agile Privacy <= 2.1.7 - Authenticated (Contributor+) Stored Cross-Site Scripting vis Shortcode

Dec 27, 2023 Patched in 2.1.8 (27d)
Code Analysis
Analyzed Mar 16, 2026

My Agile Privacy® – CMP, Cookie Consent & Privacy Tools Code Analysis

Dangerous Functions
2
Raw SQL Queries
6
31 prepared
Unescaped Output
81
2797 escaped
Nonce Checks
8
Capability Checks
18
File Operations
22
External Requests
3
Bundled Libraries
0

Dangerous Functions Found

unserialize$plugin_info = unserialize( $response['body'] );admin\my-agile-privacy-admin.php:5269
unserialize$decoded = @unserialize($value);includes\my-agile-privacy-policies-helper.php:219

SQL Query Safety

84% prepared37 total queries

Output Escaping

97% escaped2878 total outputs
Data Flows
1 unsanitized

Data Flow Analysis

3 flows1 with unsanitized paths
import_admin_settings_form_callback (admin\my-agile-privacy-admin.php:1537)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
16 unprotected

My Agile Privacy® – CMP, Cookie Consent & Privacy Tools Attack Surface

Entry Points24
Unprotected16

AJAX Handlers 16

noprivwp_ajax_map_save_detected_keysincludes\my-agile-privacy-class.php:252
authwp_ajax_map_save_detected_keysincludes\my-agile-privacy-class.php:253
noprivwp_ajax_map_missing_cookie_shieldincludes\my-agile-privacy-class.php:254
authwp_ajax_map_missing_cookie_shieldincludes\my-agile-privacy-class.php:255
noprivwp_ajax_map_check_consent_mode_statusincludes\my-agile-privacy-class.php:256
authwp_ajax_map_check_consent_mode_statusincludes\my-agile-privacy-class.php:257
noprivwp_ajax_map_remote_save_detected_keysincludes\my-agile-privacy-class.php:258
authwp_ajax_map_remote_save_detected_keysincludes\my-agile-privacy-class.php:259
noprivwp_ajax_check_license_statusincludes\my-agile-privacy-class.php:370
authwp_ajax_check_license_statusincludes\my-agile-privacy-class.php:371
noprivwp_ajax_update_admin_settings_formincludes\my-agile-privacy-class.php:411
authwp_ajax_update_admin_settings_formincludes\my-agile-privacy-class.php:412
noprivwp_ajax_update_translations_formincludes\my-agile-privacy-class.php:414
authwp_ajax_update_translations_formincludes\my-agile-privacy-class.php:415
authwp_ajax_map_review_laterincludes\my-agile-privacy-class.php:433
authwp_ajax_map_review_doneincludes\my-agile-privacy-class.php:434

Shortcodes 8

[myagileprivacy_cookie_accept] frontend\my-agile-privacy-frontend.php:87
[myagileprivacy_cookie_reject] frontend\my-agile-privacy-frontend.php:90
[myagileprivacy_cookie_customize] frontend\my-agile-privacy-frontend.php:93
[myagileprivacy_extra_info] frontend\my-agile-privacy-frontend.php:96
[myagileprivacy_fixed_text] frontend\my-agile-privacy-frontend.php:99
[myagileprivacy_link] frontend\my-agile-privacy-frontend.php:102
[myagileprivacy_showconsent] frontend\my-agile-privacy-frontend.php:105
[myagileprivacy_blocked_content_notification] frontend\my-agile-privacy-frontend.php:108
WordPress Hooks 45
filterrocket_defer_inline_exclusionsadmin\my-agile-privacy-admin.php:1852
actionedit_form_after_titleadmin\my-agile-privacy-admin.php:4948
actionedit_form_after_editoradmin\my-agile-privacy-admin.php:4949
actionedit_form_after_titleadmin\my-agile-privacy-admin.php:5195
actionedit_form_after_editoradmin\my-agile-privacy-admin.php:5196
filterwpml_config_arrayfrontend\my-agile-privacy-frontend.php:1092
filterscript_loader_tagfrontend\my-agile-privacy-frontend.php:1341
actionwp_enqueue_scriptsincludes\my-agile-privacy-class.php:235
actionwp_enqueue_scriptsincludes\my-agile-privacy-class.php:238
filterwp_inline_script_attributesincludes\my-agile-privacy-class.php:241
actioninitincludes\my-agile-privacy-class.php:244
actionwp_footerincludes\my-agile-privacy-class.php:247
actionwp_headincludes\my-agile-privacy-class.php:286
actiontemplate_redirectincludes\my-agile-privacy-class.php:305
actionshutdownincludes\my-agile-privacy-class.php:310
actionshutdownincludes\my-agile-privacy-class.php:314
actioninitincludes\my-agile-privacy-class.php:320
actionshutdownincludes\my-agile-privacy-class.php:321
actioninitincludes\my-agile-privacy-class.php:326
actionshutdownincludes\my-agile-privacy-class.php:327
actioninitincludes\my-agile-privacy-class.php:333
actionshutdownincludes\my-agile-privacy-class.php:334
filterauto_update_pluginincludes\my-agile-privacy-class.php:342
actionmy_agile_privacy_do_cron_sync_twice_day_hookincludes\my-agile-privacy-class.php:360
actionupgrader_process_completeincludes\my-agile-privacy-class.php:364
actionwp_footerincludes\my-agile-privacy-class.php:367
actionadmin_footerincludes\my-agile-privacy-class.php:380
actionadmin_menuincludes\my-agile-privacy-class.php:383
actionadmin_footer-edit.phpincludes\my-agile-privacy-class.php:388
actionadmin_footer-post.phpincludes\my-agile-privacy-class.php:389
filterpre_get_postsincludes\my-agile-privacy-class.php:392
actionadmin_initincludes\my-agile-privacy-class.php:395
actionadmin_noticesincludes\my-agile-privacy-class.php:408
actionadmin_post_backup_admin_settings_formincludes\my-agile-privacy-class.php:418
actionadmin_post_import_admin_settings_formincludes\my-agile-privacy-class.php:420
actionadmin_enqueue_scriptsincludes\my-agile-privacy-class.php:423
actionadmin_enqueue_scriptsincludes\my-agile-privacy-class.php:426
actionadmin_noticesincludes\my-agile-privacy-class.php:432
actionmy_agile_privacy_do_cron_sync_install_counterincludes\my-agile-privacy-class.php:495
actionadmin_footerincludes\my-agile-privacy-class.php:498
actionadmin_footerincludes\my-agile-privacy-class.php:499
filterpll_get_post_typesincludes\my-agile-privacy-class.php:506
filtertiny_mce_before_initincludes\my-agile-privacy-class.php:510
actionwp_before_admin_bar_renderincludes\my-agile-privacy-class.php:513
actionplugins_loadedincludes\my-agile-privacy-class.php:516

Scheduled Events 4

my_agile_privacy_do_cron_sync_once_day_hook
my_agile_privacy_do_cron_sync_twice_day_hook
my_agile_privacy_do_cron_sync_install_counter
my_agile_privacy_do_cron_sync_install_counter
Maintenance & Trust

My Agile Privacy® – CMP, Cookie Consent & Privacy Tools Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedMar 9, 2026
PHP min version5.6
Downloads226K

Community Trust

Rating100/100
Number of ratings19
Active installs7K
Alternatives

My Agile Privacy® – CMP, Cookie Consent & Privacy Tools Alternatives

GDPR Cookie Compliance – Cookie Banner, Cookie Consent, Cookie Notice for CCPA, EU Cookie Law

GDPR Cookie Compliance – Cookie Banner, Cookie Consent, Cookie Notice for CCPA, EU Cookie Law

gdpr-cookie-compliance

A
97

Cookie notice banner for GDPR, CCPA, EU cookie law, data protection and privacy regulations and other cookie law and consent notice requirements on yo &hellip;

300K 9 CVEs
GDPR CCPA Compliance & Cookie Consent Banner

GDPR CCPA Compliance & Cookie Consent Banner

ninja-gdpr-compliance

A
89

Get compliance with GDPR, CCPA, DPA, and other privacy regulations.

1K 5 CVEs
clickskeks.at Cookiebanner

clickskeks.at Cookiebanner

clickskeks

A
100

The clickskeks cookie management plugin gives you full control over your cookies and trackers on your website.

600 No CVEs
CookieYes – Cookie Banner for Cookie Consent (Easy to setup GDPR/CCPA Compliant Cookie Notice)

CookieYes – Cookie Banner for Cookie Consent (Easy to setup GDPR/CCPA Compliant Cookie Notice)

cookie-law-info

A
100

Easily set up cookie banner or notice in WordPress, and policy pages for compliance with global cookie laws (GDPR, DSGVO, RGPD, CCPA/CPRA, etc).

1.0M 1 CVE
OMGF | GDPR/DSGVO Compliant, Faster Google Fonts. Easy.

OMGF | GDPR/DSGVO Compliant, Faster Google Fonts. Easy.

host-webfonts-local

A
96

OMGF automagically caches the Google Fonts used by your theme/plugins locally. No configuration (or brains) required!

300K 4 CVEs
Developer Profile

My Agile Privacy® – CMP, Cookie Consent & Privacy Tools Developer Profile

Formula Agile

2 plugins · 7K total installs

91
trust score
Avg Security Score
96/100
Avg Patch Time
27 days
View full developer profile
Detection Fingerprints

How We Detect My Agile Privacy® – CMP, Cookie Consent & Privacy Tools

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/myagileprivacy/css/main.css/wp-content/plugins/myagileprivacy/css/map-custom.css/wp-content/plugins/myagileprivacy/js/map-cookie-consent.js/wp-content/plugins/myagileprivacy/js/map-custom.js/wp-content/plugins/myagileprivacy/js/map-frontend.js
Script Paths
/wp-content/plugins/myagileprivacy/js/map-cookie-consent.js/wp-content/plugins/myagileprivacy/js/map-frontend.js
Version Parameters
myagileprivacy/css/main.css?ver=myagileprivacy/css/map-custom.css?ver=myagileprivacy/js/map-cookie-consent.js?ver=myagileprivacy/js/map-custom.js?ver=myagileprivacy/js/map-frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes
map-settings-tab-content
HTML Comments
<!-- MAP_LOG_DEBUGGER --><!-- START MAP_COOKIE_SCRIPT --><!-- END MAP_COOKIE_SCRIPT --><!-- MAP_TAG_MANAGER_SCRIPT -->+1 more
Data Attributes
data-map-categorydata-map-purpose
JS Globals
map_obj_consent
FAQ

Frequently Asked Questions about My Agile Privacy® – CMP, Cookie Consent & Privacy Tools