WP-Safety

Nivaj Cookie Consent Security & Risk Analysis

wordpress.org/plugins/nivaj-cookie-consent

GDPR-compliant cookie consent with category-based consent, script blocking, GTM, consent logging, and customizable banner.

0 active installs v1.0.2 PHP 7.4+ WP 5.8+ Updated Mar 30, 2026
cookie-bannercookie-compliancecookie-consentgdprprivacy
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Nivaj Cookie Consent Safe to Use in 2026?

Generally Safe

Score 100/100

Nivaj Cookie Consent has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago
Risk Assessment

The "nivaj-cookie-consent" plugin, version 1.0.2, exhibits a generally good security posture based on the provided static analysis. The plugin demonstrates strong adherence to secure coding practices, with 100% of SQL queries utilizing prepared statements and 99% of output being properly escaped. The absence of dangerous functions, file operations, and recorded historical vulnerabilities further contributes to a positive security outlook. However, there are a few areas that warrant attention. The presence of one unprotected REST API route represents a potential attack vector that could be exploited if sensitive data or functionality is exposed through it. While the total attack surface is relatively small, this single unprotected entry point needs to be addressed. The limited taint analysis results (zero flows) suggest a lack of complex data handling or that any such handling is well-sanitized. Overall, this plugin appears to be well-developed from a security perspective, with the primary concern being the single unprotected REST API route.

Key Concerns

  • REST API route without permission callback
Vulnerabilities
None known

Nivaj Cookie Consent Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Version History

Nivaj Cookie Consent Release Timeline

v1.0.2Current
Code Analysis
Analyzed Apr 16, 2026

Nivaj Cookie Consent Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
14 prepared
Unescaped Output
2
386 escaped
Nonce Checks
1
Capability Checks
8
File Operations
0
External Requests
1
Bundled Libraries
0

SQL Query Safety

100% prepared14 total queries

Output Escaping

99% escaped388 total outputs
Attack Surface
1 unprotected

Nivaj Cookie Consent Attack Surface

Entry Points4
Unprotected1

AJAX Handlers 1

authwp_ajax_nivaj_cc_export_logincludes/class-admin.php:30

REST API Routes 2

GET/wp-json/nivaj-cc/v1/scanincludes/class-cookie-scanner.php:63
GET/wp-json/nivaj-cc/v1/consentincludes/class-rest-api.php:22

Shortcodes 1

[nivaj_cookie_preferences] includes/class-frontend.php:25
WordPress Hooks 13
actionadmin_menuincludes/class-admin.php:27
actionadmin_initincludes/class-admin.php:28
actionadmin_enqueue_scriptsincludes/class-admin.php:29
actionrest_api_initincludes/class-cookie-scanner.php:59
actionwp_enqueue_scriptsincludes/class-frontend.php:22
actionwp_body_openincludes/class-frontend.php:23
actionwp_footerincludes/class-frontend.php:24
actionrest_api_initincludes/class-rest-api.php:18
actionwpincludes/class-script-blocker.php:23
filterscript_loader_tagincludes/class-script-blocker.php:46
actiontemplate_redirectincludes/class-script-blocker.php:47
actionshutdownincludes/class-script-blocker.php:76
actionplugins_loadednivaj-cookie-consent.php:36
Maintenance & Trust

Nivaj Cookie Consent Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedMar 30, 2026
PHP min version7.4
Downloads73

Community Trust

Rating100/100
Number of ratings1
Active installs0
Alternatives

Nivaj Cookie Consent Alternatives

PrivacyPillar | Get compliant with GDPR, CCPA, and Global cookie policy

PrivacyPillar | Get compliant with GDPR, CCPA, and Global cookie policy

adzapier

A
85

PrivacyPillar is a highly secure and seamless application to collect and manage your website visitors’ consent and preferences.

0 No CVEs
Cookiebot by Usercentrics – Automatic Cookie Banner for GDPR/CCPA & Google Consent Mode

Cookiebot by Usercentrics – Automatic Cookie Banner for GDPR/CCPA & Google Consent Mode

cookiebot

A
95

Install your cookie banner in minutes. Automatically scan and block cookies to comply with the GDPR, CCPA, Google Consent Mode v2. Free plan option.

100K 4 CVEs
Real Cookie Banner: GDPR & ePrivacy Cookie Consent

Real Cookie Banner: GDPR & ePrivacy Cookie Consent

real-cookie-banner

A
96

Obtain GDPR (DSGVO/RGPD) and ePrivacy Directive (TDDDG/TTDSG, LOPD-GDD, DTA) compliant consents in your cookie banner. More than just a cookie notice!

100K 4 CVEs
Termly – GDPR/CCPA Cookie Consent Banner

Termly – GDPR/CCPA Cookie Consent Banner

uk-cookie-consent

A
99

Our easy to use cookie consent plugin can assist in your GDPR, CCPA, and ePrivacy Directive compliance efforts.

90K 2 CVEs
GDPR Compliance & Cookie Consent

GDPR Compliance & Cookie Consent

gdpr-compliance-cookie-consent

A
92

This plugin adds GDPR-compliant cookie management to websites, ensuring legal compliance and enhancing user privacy.

5K 1 CVE
Developer Profile

Nivaj Cookie Consent Developer Profile

ajayrajbanshi

2 plugins · 0 total installs

94
trust score
Avg Security Score
100/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Nivaj Cookie Consent

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/nivaj-cookie-consent/assets/js/cookie-consent.js/wp-content/plugins/nivaj-cookie-consent/assets/css/cookie-consent.css
Version Parameters
nivaj-cookie-consent/assets/js/cookie-consent.js?ver=nivaj-cookie-consent/assets/css/cookie-consent.css?ver=

HTML / DOM Fingerprints

CSS Classes
nivaj-cookie-consent-bannernivaj-cc-bannernivaj-cc-settings-wrapnivaj-cc-modalnivaj-cc-content
Data Attributes
data-nivaj-cookie-consent
JS Globals
NivajCookieConsent
REST Endpoints
/wp-json/nivaj-cc/v1/consent
FAQ

Frequently Asked Questions about Nivaj Cookie Consent