[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fsf-xJnELuC12ZWZotgYNiR_pO6XIbb232mTyZFVAakI":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":45,"crawl_stats":36,"alternatives":52,"analysis":168,"fingerprints":203},"terms-before-download","Terms Before Download","1.0.5","hiroprot","https:\u002F\u002Fprofiles.wordpress.org\u002Fhiroprot\u002F","\u003Cp>Terms Before Download adds a shortcode that can be used instead of HTML anchors to link to downloadable files. If such a link is clicked a popup dialog shows terms and conditions (EULA) which must be accepted for the download to start.\u003C\u002Fp>\n\u003Cp>The terms and conditions are read from a WordPress page. That way there is only a single place to maintain the terms and they can easily be displayed independently of the plugin.\u003C\u002Fp>\n\u003Cp>The plugin supports Google Analytics to keep track of the number of downloads. Supported GA scripts: ga.js, analytics.js.\u003C\u002Fp>\n\u003Cp>An example of the plugin in action can be found here: https:\u002F\u002Fhelgeklein.com\u002Fdownload\u002F\u003C\u002Fp>\n\u003Cp>Usage\u003C\u002Fp>\n\u003Cp>Add the shortcode \u003Cem>tbd_terms\u003C\u002Fem> once (!) to each page or post where terms need to be displayed and configure the ID of the page that contains the terms. Example:\u003C\u002Fp>\n\u003Cp>[tbd_terms terms_page_id=5670]\u003C\u002Fp>\n\u003Cp>The page ID is part of the URL when editing a page in the admin UI. \u003Cem>Example: https:\u002F\u002Fdomain.com\u002Fwp-admin\u002Fpost.php?post=5670&action=edit\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>Create a link to a downloadable file like this:\u003C\u002Fp>\n\u003Cp>[tbd_link url=\\”URL\\”]link text[\u002Ftbd_link]\u003C\u002Fp>\n\u003Cp>Parameters\u003C\u002Fp>\n\u003Cp>The following parameters can be used with the shortcode \u003Cem>tbd_terms\u003C\u002Fem>:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>terms_page_id: ID of the terms page displayed in the dialog [required] \u003C\u002Fli>\n\u003Cli>dialog_title: The title of the dialog to be displayed [optional] \u003C\u002Fli>\n\u003Cli>class: CSS class of the div enclosing the dialog content [optional]   \u003C\u002Fli>\n\u003Cli>padding: Padding between the dialog frame and the inner content [optional] \u003C\u002Fli>\n\u003Cli>width: Width of the dialog [optional] \u003C\u002Fli>\n\u003Cli>ok_button_text: Text for the OK button [optional]\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The following parameters can be used with the shortcode \u003Cem>tbd_link\u003C\u002Fem>:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>url: The URL to link to [required]\u003C\u002Fli>\n\u003Cli>text: Link text [required if text is not enclosed]\u003C\u002Fli>\n\u003Cli>gacategory: Google Analytics Category [optional]\u003C\u002Fli>\n\u003Cli>gaaction: Google Analytics Action [optional]\u003C\u002Fli>\n\u003Cli>galabel: Google Analytics Label [optional]\u003C\u002Fli>\n\u003C\u002Ful>\n","Shows a popup dialog with terms and conditions (EULA) that must be accepted before a file can be downloaded",70,4401,94,3,"2025-08-13T19:08:00.000Z","6.8.5","3.5","",[20,21,22,23],"download","eula","license","terms","https:\u002F\u002Fhelgeklein.com\u002Ffree-tools\u002Fterms-download\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fterms-before-download.zip",79,1,"2025-03-31 00:00:00","2026-03-15T15:16:48.613Z",[31],{"id":32,"url_slug":33,"title":34,"description":35,"plugin_slug":4,"theme_slug":36,"affected_versions":37,"patched_in_version":36,"severity":38,"cvss_score":39,"cvss_vector":40,"vuln_type":41,"published_date":28,"updated_date":42,"references":43,"days_to_patch":36},"CVE-2025-31614","terms-before-download-authenticated-contributor-stored-cross-site-scripting","Terms Before Download \u003C= 1.0.4 - Authenticated (Contributor+) Stored Cross-Site Scripting","The Terms Before Download plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.0.4 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.",null,"\u003C=1.0.4","medium",6.4,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2025-04-09 14:25:20",[44],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fbfa03994-3a5a-4e8f-91e4-5564afa76559?source=api-prod",{"slug":7,"display_name":7,"profile_url":8,"plugin_count":46,"total_installs":47,"avg_security_score":48,"avg_patch_time_days":49,"trust_score":50,"computed_at":51},2,270,82,30,81,"2026-04-04T13:58:51.949Z",[53,76,99,122,144],{"slug":54,"name":55,"version":56,"author":57,"author_profile":58,"description":59,"short_description":60,"active_installs":61,"downloaded":62,"rating":13,"num_ratings":63,"last_updated":64,"tested_up_to":65,"requires_at_least":66,"requires_php":18,"tags":67,"homepage":58,"download_link":73,"security_score":74,"vuln_count":75,"unpatched_count":75,"last_vuln_date":36,"fetched_at":29},"agreement","Agreement","1.1","Pranav Pathak","https:\u002F\u002Fprofiles.wordpress.org\u002Fpranavpathakjaora\u002F","\u003Cp>The Agreement plugin helps to create pop-up licence agreement or term to use before download any thing from post or page. It will give freedom to change text in pop-up. After activation of plugin in post\u002Fpage add file from “Add Media”, then change editor type from \u003Cstrong>Visual\u003C\u002Fstrong> to \u003Cstrong>text\u003C\u002Fstrong> and give id to that media file. Id will be like this \u003Cstrong>id=”agreement”\u003C\u002Fstrong>. Your link will be like ‘id=”agreement” href=”http:\u002F\u002Fyourdomain.com\u002Fwp-content\u002Fuploads\u002F2016\u002F01\u002Fpdf.pdf”‘ or you can use custom HTML block too. Now save post\u002Fpage.\u003C\u002Fp>\n\u003Cp>Example\u003C\u002Fp>\n\u003Cp>{a id=”agreement” href=”http:\u002F\u002Fyourdomain.com\u002Fwp-content\u002Fuploads\u002F2016\u002F01\u002Fpdf.pdf”} file name {a}\u003C\u002Fp>\n\u003Cp>\u003Cstrong>This plugin works for multiple item in single page.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>After activation there is a sub menu in Settings called Agreement. Click on this and there is a option to change license agreement text called “Enter your License Agreement setting text below:”. You can also insert html tag like \u003Cstrong>ul\u003C\u002Fstrong>,\u003Cstrong>li\u003C\u002Fstrong>, \u003Cstrong>br\u003C\u002Fstrong>, \u003Cstrong>hr\u003C\u002Fstrong> from agreement option in settings.\u003C\u002Fp>\n\u003Ch4>Requirements\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>WordPress 3.5.1 or greater\u003C\u002Fli>\n\u003Cli>PHP 5.2.6 or greater (5.3 recommended)\u003C\u002Fli>\n\u003Cli>MySQL 4.1.2 or greater (5.x recommended)\u003C\u002Fli>\n\u003C\u002Ful>\n","The Agreement plugin helps to create pop-up licence agreement or term to use before download any thing from post or page.",100,7003,9,"2024-12-10T03:21:00.000Z","6.7.5","3.5.2",[68,69,70,71,72],"attach","attachments","licence-agreement","popup-before-download","terms-and-condition","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fagreement.1.1.zip",92,0,{"slug":77,"name":78,"version":79,"author":80,"author_profile":81,"description":82,"short_description":83,"active_installs":84,"downloaded":85,"rating":75,"num_ratings":75,"last_updated":86,"tested_up_to":87,"requires_at_least":88,"requires_php":89,"tags":90,"homepage":96,"download_link":97,"security_score":61,"vuln_count":75,"unpatched_count":75,"last_vuln_date":36,"fetched_at":98},"licenses-manager-for-woocommerce","Licenses Manager for WooCommerce","3.1.10","quadlayers","https:\u002F\u002Fprofiles.wordpress.org\u002Fquadlayers\u002F","\u003Cp>Licenses Manager for WooCommerce allows you to create, sell and manage license keys for your products. This plugin also provides a rest API to create, read, update, delete and validate licenses for your digital products.\u003C\u002Fp>\n\u003Ch3>Presentation\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fquadlayers.com\u002Fproducts\u002Fwoocommerce-license-manager\u002F\" rel=\"nofollow ugc\">Premium\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fquadlayers.com\u002Fwoocommerce-license-manager\u002F\" rel=\"nofollow ugc\">Demo\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fquadlayers.com\u002Fdocumentation\u002Fwoocommerce-license-manager\u002F\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa> | \u003Ca href=\"https:\u002F\u002Fwww.facebook.com\u002Fgroups\u002Fquadlayers\u002F\" rel=\"nofollow ugc\">Community\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>Licenses Manager for WooCommerce is the best license manager WooCommerce. This plugin allows you to create, delete, update and edit licenses for your digital products.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Support simple product licenses\u003C\u002Fli>\n\u003Cli>Support variable product licenses\u003C\u002Fli>\n\u003Cli>License prefix\u003C\u002Fli>\n\u003Cli>License require email for validation\u003C\u002Fli>\n\u003Cli>License activations limit\u003C\u002Fli>\n\u003Cli>License allow\u002Fdisallow automatic updates\u003C\u002Fli>\n\u003Cli>License allow\u002Fdisallow support\u003C\u002Fli>\n\u003Cli>License expiration time calculation \u003C\u002Fli>\n\u003Cli>License expiration time calculation \u003C\u002Fli>\n\u003Cli>Frontend license view page\u003C\u002Fli>\n\u003Cli>Frontend order license list\u003C\u002Fli>\n\u003Cli>Rest API license create, read, update, delete \u003C\u002Fli>\n\u003Cli>Rest API license activation create, read, update, delete \u003C\u002Fli>\n\u003Cli>Rest API product information\u003C\u002Fli>\n\u003Cli>Validate licenses in user admin panel from client\u003C\u002Fli>\n\u003Cli>Automatic updates in user admin panel from client\u003C\u002Fli>\n\u003Cli>Updates notificaions in user admin panel from client\u003C\u002Fli>\n\u003Cli>Display plugin settings in admin popup\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Premium\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>License renew\u003C\u002Fli>\n\u003Cli>License upgrade\u003C\u002Fli>\n\u003Cli>Email include licenses\u003C\u002Fli>\n\u003Cli>Frontend product tab to display license features\u003C\u002Fli>\n\u003Cli>Frontend account license tab\u003C\u002Fli>\n\u003Cli>Frontend dashboard license list\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>WooCommerce Licenses Rest Api\u003C\u002Fh3>\n\u003Cp>The Licenses Manager for WooCommerce plugin provides a rest API that offers endpoints for manipulating licenses, activations and access product details.\u003Cbr \u002F>\nThese routes are authorized via product secret keys generated through the product settings and accessed via the WordPress API.\u003C\u002Fp>\n","Licenses Manager for WooCommerce is a complete solution for selling license keys on WooCommerce.",10,6124,"2026-03-11T18:50:00.000Z","6.9.4","4.7","5.6",[91,92,93,94,95],"license-manager","woocommerce-downloads","woocommerce-license-key","woocommerce-license-manager","woocommerce-license-system","https:\u002F\u002Fquadlayers.com\u002Fproducts\u002Fwoocommerce-license-manager\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flicenses-manager-for-woocommerce.3.1.10.zip","2026-03-15T14:54:45.397Z",{"slug":100,"name":101,"version":102,"author":103,"author_profile":104,"description":105,"short_description":106,"active_installs":107,"downloaded":108,"rating":109,"num_ratings":110,"last_updated":111,"tested_up_to":87,"requires_at_least":112,"requires_php":18,"tags":113,"homepage":118,"download_link":119,"security_score":120,"vuln_count":46,"unpatched_count":75,"last_vuln_date":121,"fetched_at":29},"taxonomy-terms-order","Category Order and Taxonomy Terms Order","1.9.4","nsp-code","https:\u002F\u002Fprofiles.wordpress.org\u002Fnsp-code\u002F","\u003Cp>Easily control the order of Categories and any hierarchical taxonomy with a simple drag-and-drop interface. Reorder parent and child terms visually in the admin and choose whether the plugin automatically applies your custom term order to front-end queries.\u003C\u002Fp>\n\u003Ch3>Key features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Intuitive drag-and-drop reordering for Categories and all hierarchical taxonomies. \u003C\u002Fli>\n\u003Cli>Option to auto-apply the custom term order to front-end queries (no theme\u002Fplugin edits required). \u003C\u002Fli>\n\u003Cli>Keep the admin term lists in your new order (makes management and editorial workflows consistent). \u003C\u002Fli>\n\u003Cli>Works with multiple taxonomies per post type — switch between taxonomies from the same interface. \u003C\u002Fli>\n\u003Cli>Multisite aware and regularly updated for modern WordPress and PHP versions (see changelog for compatibility notes).\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>How it works\u003C\u002Fh3>\n\u003Cp>After activating the plugin, a new Taxonomy Order page becomes available under the custom post type menu. Simply open it and drag terms into the exact order you want — including parent\u002Fchild hierarchy.\u003Cbr \u002F>\nUse the plugin’s Taxonomy Order screen to drag terms into the order you want. To apply the custom order automatically across your site, enable the Autosort option — the plugin will adjust term queries on the fly so your chosen order shows without template changes. If you prefer to control ordering in code, include orderby => ‘term_order’ when calling get_terms() to use the plugin’s order programmatically.\u003C\u002Fp>\n\u003Cp>This plugin is developed by \u003Ca href=\"http:\u002F\u002Fwww.nsp-code.com\" rel=\"nofollow ugc\">Nsp-Code\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>See the \u003Ca href=\"https:\u002F\u002Fwww.nsp-code.com\u002Fpremium-plugins\u002Fwordpress-plugins\u002Fadvanced-taxonomy-terms-order\u002F\" rel=\"nofollow ugc\">Advanced Taxonomy Terms Order\u003C\u002Fa> for advanced features.\u003C\u002Fp>\n\u003Ch3>Localization\u003C\u002Fh3>\n\u003Cp>Available in Catalan, Chinese (China), Chinese (Taiwan), Czech, Dutch, Dutch (Belgium), English (Australia), English (Canada), English (New Zealand), English (UK), English (US), French (France), Galician, German, Italian, Japanese, Norwegian (Bokmål), Polish, Portuguese (Portugal), Russian, Spanish (Chile), Spanish (Spain), Spanish (Venezuela), Swedish, and Turkish.\u003Cbr \u002F>\nWhant to contribute with a translation to your language? Please check at https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Ftaxonomy-terms-order\u003C\u002Fp>\n\u003Cp>There isn’t any Editors for your native language on plugin Contributors? You can help to moderate! https:\u002F\u002Ftranslate.wordpress.org\u002Fprojects\u002Fwp-plugins\u002Ftaxonomy-terms-order\u002Fcontributors\u003C\u002Fp>\n","Drag-and-drop ordering for Categories & any taxonomy (hierarchically) using a Drag and Drop Sortable JavaScript capability.",500000,9896783,90,162,"2026-02-19T17:40:00.000Z","2.8",[114,115,116,117],"categories-sort","category-order","taxonomy-order","terms-order","http:\u002F\u002Fwww.nsp-code.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Ftaxonomy-terms-order.1.9.4.zip",99,"2018-02-22 00:00:00",{"slug":123,"name":124,"version":125,"author":126,"author_profile":127,"description":128,"short_description":129,"active_installs":130,"downloaded":131,"rating":132,"num_ratings":133,"last_updated":134,"tested_up_to":16,"requires_at_least":135,"requires_php":136,"tags":137,"homepage":142,"download_link":143,"security_score":61,"vuln_count":75,"unpatched_count":75,"last_vuln_date":36,"fetched_at":29},"complianz-terms-conditions","Complianz – Terms and Conditions","1.2.8","Complianz","https:\u002F\u002Fprofiles.wordpress.org\u002Fcomplianz\u002F","\u003Cp>Complianz – Terms and Conditions is a stand-alone plugin from Complianz. A simple, but in-depth wizard will configure a Terms and Conditions page for your website or for those of your clients.\u003C\u002Fp>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>A simple but in-depth wizard to configure the Terms & Conditions specified to your needs or the needs of your clients.\u003C\u002Fli>\n\u003Cli>Includes specific paragraphs for affiliate marketing, WooCommerce or Easy Digital Downloads, digital and physical goods and services, and other variables.\u003C\u002Fli>\n\u003Cli>Optional are sections about minimum age requirements, a return policy, accessibility policy and user created content, for example.\u003C\u002Fli>\n\u003Cli>A full-featured Terms & Conditions applicable to most businesses and personal endeavours, and available for editing if needed.\u003C\u002Fli>\n\u003Cli>Can be used stand-alone or fully integrated with the Complianz – GDPR\u002FCCPA Cookie Consent plugin.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Are you missing anything or have suggestions? Leave an issue, or do a pull request on \u003Ca href=\"https:\u002F\u002Fgithub.com\u002FReally-Simple-Plugins\u002Fcomplianz-terms-conditions\" rel=\"nofollow ugc\">GitHub\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Check out other plugins developed by Really Simple Plugins: \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcomplianz-gdpr\u002F\" rel=\"ugc\">Complianz – GDPR\u002FCCPA Cookie Consent\u003C\u002Fa>, \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Freally-simple-ssl\u002F\" rel=\"ugc\">Really Simple SSL\u003C\u002Fa> & \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fburst-statistics\u002F\" rel=\"ugc\">Burst Statistics\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fcomplianz.io\u002Fsupport\u002F\" rel=\"nofollow ugc\">Contact\u003C\u002Fa> us if you have any questions, issues, or suggestions. Complianz – Terms & Conditions is developed by \u003Ca href=\"https:\u002F\u002Fcomplianz.io\" rel=\"nofollow ugc\">Complianz B.V.\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Installation\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Go to “plugins” in your WordPress Dashboard, and click “add new”\u003C\u002Fli>\n\u003Cli>Upload the downloaded .zip file and activate the plugin\u003C\u002Fli>\n\u003Cli>Navigate to Tools -> Terms and Conditions and follow the instructions\u003C\u002Fli>\n\u003Cli>If you already have Complianz GDPR\u002FCCPA Cookie Consent installed: Please visit Complianz -> Terms and conditions.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>IMPORTANT! Complianz – Terms and Conditions can help you meet compliance requirements, but you as the user must nonetheless ensure that you have all the necessary configurations in place.\u003C\u002Fp>\n","Configure your own Terms and Conditions specific to your service or webshop.",300000,1645693,98,176,"2025-05-19T16:03:00.000Z","5.7","7.2",[138,139,23,140,141],"conditions","legal","terms-and-conditions","webshop","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcomplianz-terms-conditions","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcomplianz-terms-conditions.1.2.8.zip",{"slug":145,"name":146,"version":147,"author":148,"author_profile":149,"description":150,"short_description":151,"active_installs":152,"downloaded":153,"rating":13,"num_ratings":154,"last_updated":155,"tested_up_to":87,"requires_at_least":156,"requires_php":157,"tags":158,"homepage":163,"download_link":164,"security_score":165,"vuln_count":166,"unpatched_count":75,"last_vuln_date":167,"fetched_at":29},"iubenda-cookie-law-solution","iubenda | All-in-one Compliance for GDPR \u002F CCPA Cookie Consent + more","3.13.1","iubenda","https:\u002F\u002Fprofiles.wordpress.org\u002Fiubenda\u002F","\u003Cp>The iubenda plugin is an \u003Cstrong>all-in-one\u003C\u002Fstrong>, extremely easy to use 360° compliance solution, with text crafted by actual lawyers, that quickly \u003Cstrong>scans your site and auto-configures to match your specific setup\u003C\u002Fstrong>. It supports the GDPR (DSGVO, RGPD), UK-GDPR, ePrivacy, LGPD, CPRA \u002F CCPA, CalOPPA, PECR and more, and seamlessly integrates with the latest versions of Google Consent Mode and IAB’s TCF.\u003Cbr \u002F>\nIt allows you to:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>⚡️Scan your site and have solutions auto-configured\u003C\u002Fstrong> to match your site’s specific needs.\u003C\u002Fli>\n\u003Cli>🚀 Easily generate a fully customizable \u003Cstrong>cookie banner,\u003C\u002Fstrong> \u003Cstrong>manage cookie consent\u003C\u002Fstrong> and store legally required \u003Cstrong>GDPR consent proofs\u003C\u002Fstrong> for cookies.\u003C\u002Fli>\n\u003Cli>Generate a \u003Cstrong>CCPA notice with working DNSMPI link\u003C\u002Fstrong> as legally required.\u003C\u002Fli>\n\u003Cli>Activate IABs \u003Cstrong>TCF to maximize ad earning\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>🚀 Quickly generate a fully customizable \u003Cstrong>privacy and cookie policy\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Auto-detect user location and auto-applies the correct data privacy settings\u003C\u002Fstrong> (needed if you have users from multiple regions like the US and the EU).\u003C\u002Fli>\n\u003Cli>🚀 Capture, store and manage \u003Cstrong>GDPR consent records\u003C\u002Fstrong> for your webforms.\u003C\u002Fli>\n\u003Cli>🚀 Effortlessly \u003Cstrong>generate professional Terms and Conditions\u003C\u002Fstrong> to protect you from liabilities and more.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Translate all documents with a single click\u003C\u002Fstrong> (supports 10 languages).\u003C\u002Fli>\n\u003Cli>Compatible with \u003Cstrong>Google’s Accelerated Mobile Pages\u003C\u002Fstrong> (AMP)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>And of course, basic set-up is completely free.\u003C\u002Fp>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FZmUC66etPbk?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cp>This all-in-one plugin lets you integrate all iubenda compliance solutions in a single install and basic set-up is completely free.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>⚡️\u003C\u002Fstrong> The plugin \u003Cstrong>scans your site and auto-configures everything\u003C\u002Fstrong> based on your site’s specific needs.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>⭐ All our solutions are fully responsive (perfect for all screen sizes) and WCAG Level AAA Compliant.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>They’re auto-updated when the law changes so that they’re always up-to-date and our built-in site scanner runs periodic scans on your site and alerts you if it detects something that should be added to your compliance documents.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Our solutions support the GDPR (DSGVO, RGPD), UK-GDPR, ePrivacy, LGPD, CCPA \u002F CPRA, VCDPA, CalOPPA, PECR and more.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>Privacy Controls and Cookie Solution\u003C\u002Fh3>\n\u003Cp>Includes cookie banner\u002FCCPA notice, and cookie consent management (blocking scripts until consent is collected as legally required). Free basic setup and full CCPA support.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Easy and guided set-up: \u003Cstrong>Analyzes your site and auto-configures everything\u003C\u002Fstrong> to make set-up as easy as possible.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Fully customizable cookie banner\u003C\u002Fstrong> – change functionality, design, location, colors, add your logo and more.\u003C\u002Fli>\n\u003Cli>Asynchronously re-activates cookie scripts once consent is collected (\u003Cstrong>no page reload needed\u003C\u002Fstrong>).\u003C\u002Fli>\n\u003Cli>Lightning-fast: \u003Cstrong>won’t affect page performance\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Auto-detects and blocks a wide range of 3rd party script\u003C\u002Fstrong>s like Google Analytics, Google Maps, Facebook and Instagram widgets, Youtube, Twitter, PayPal, Disqus, Outbrain, AdRoll, Kissmetrics, Freshchat and more.\u003C\u002Fli>\n\u003Cli>Allows you to provide your users with \u003Cstrong>granular, per-category preference control\u003C\u002Fstrong> (e.g. basic functionalities, experience enhancement, targeting & advertising)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Google Consent Mode\u003C\u002Fstrong> (both \u003Cstrong>Basic\u003C\u002Fstrong> and \u003Cstrong>Advanced\u003C\u002Fstrong> implementations; no extra setup required): Enables \u003Cstrong>efficient conversion tracking\u003C\u002Fstrong> even without user consent for cookies and tracking technologies, \u003Cstrong>enhancing Google Analytics and Ads performance\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>Integrates with IAB’s \u003Ca href=\"https:\u002F\u002Fwww.iubenda.com\u002Fen\u002Fhelp\u002F7440-enable-preference-management-iab-framework#revenue\" rel=\"nofollow ugc\">Transparency and Consent Framework\u003C\u002Fa> (\u003Cstrong>TCF\u003C\u002Fstrong>) to maximize ad revenue (needed if your site uses ad networks like Google ads and more)\u003C\u002Fli>\n\u003Cli>Compatible with \u003Cstrong>Google’s Accelerated Mobile Pages\u003C\u002Fstrong> (AMP)\u003C\u002Fli>\n\u003Cli>Allows you to auto-detect and \u003Cstrong>limit prior-blocking and cookie consent requests only to users from the EU\u003C\u002Fstrong> – where this is a legal requirement \u003Cstrong>for GDPR compliance\u003C\u002Fstrong> – while running cookies scripts normally in regions where you are still legally allowed to do so.\u003C\u002Fli>\n\u003Cli>Features an \u003Cstrong>easy-to-use interface for entering custom scripts\u003C\u002Fstrong> and iframes\u003C\u002Fli>\n\u003Cli>Cookie database feature allows you to auto-set \u003Cstrong>cookie lifetime information\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Display CCPA \u002F CPRA notice and opt-out link as required by the\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fwww.iubenda.com\u002Fen\u002Fhelp\u002F21165-ccpa-how-to-add-a-notice-of-collection-and-a-do-not-sell-link\" rel=\"nofollow ugc\">\u003Cstrong>California Consumer Privacy Act\u003C\u002Fstrong>\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Provides \u003Cstrong>cookie consent analytics\u003C\u002Fstrong> for high-traffic sites.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Detects bots\u002Fspiders\u003C\u002Fstrong> and serves them a clean page \u003Cstrong>so that your SEO efforts are never compromised\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Privacy and Cookie Policy Generator\u003C\u002Fh3>\n\u003Cp>This solution lets you generate professional privacy and cookie policies \u003Cstrong>in minutes\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Super \u003Cstrong>easy interface, guided process, fully customizable\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>All \u003Cstrong>legal text written by actual legal professionals\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Quick select from \u003Cstrong>over 1900 clauses or create custom clauses\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Activate \u003Cstrong>cookie policy in a single click\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Site Scanner to quickly \u003Cstrong>detect which services\u002F clauses you need to add to your policies\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>One-click translation\u003C\u002Fstrong>. 10 languages supported: English-US, English-UK, Italian, French, Spanish, German, Portuguese, Brazilian Portuguese, Russian, Dutch.\u003C\u002Fli>\n\u003Cli>One-click activation for \u003Cstrong>country\u002F region-specific text\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>Compatible with \u003Cstrong>Google’s Accelerated Mobile Pages\u003C\u002Fstrong> (AMP)\u003C\u002Fli>\n\u003Cli>Documents are \u003Cstrong>remotely updated when legal requirements change\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Manage documents for \u003Cstrong>multiple sites from a single dashboard\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>White label option\u003C\u002Fstrong> allows you to seamlessly integrate your privacy policy text into the body of your webpage\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Consent Database\u003C\u002Fh3>\n\u003Cp>Collect consent, document opt-ins and opt-outs via your web forms. This solution smoothly integrates with your consent collection forms to auto-create legally required GDPR and LGPD consent records.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>About Legal requirements and Consent Records\u003C\u002Fstrong>\u003Cbr \u002F>\nThese records should include a userid, timestamp, consent proof, record of the consenting action, and the legal documents available to the user at the time of consent, \u003Ca href=\"https:\u002F\u002Fwww.iubenda.com\u002Fen\u002Fhelp\u002F5428-gdpr-guide#records-of-consent\" rel=\"nofollow ugc\">among other things\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>This plugin is \u003Cstrong>THE most complete solution for recording, sorting and maintaining GDPR & LGPD records of consent for optimal privacy compliance\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>The plugin also boasts built-in compatibility with WordPress comment form, Contact Form 7, Elementor forms and WP Forms plugins for your convenience, but can be manually integrated with any type of web-form and can even store consent proofs for consents collected offline (e.g in-store sign-ups) via WP media upload.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>It’s \u003Cstrong>auto-compatible with and allows super easy mapping\u003C\u002Fstrong> of Contact Form 7, WP Forms, WordPress comment, Mailchimp for WordPress, Germanized for WooCommerce, Elementor forms and WooCommerce checkout forms\u003C\u002Fli>\n\u003Cli>Also allows manual integration with \u003Cstrong>any type of web-form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>For each consent, \u003Cstrong>track the form\u002Fwording the user was prompted\u003C\u002Fstrong> with at the time of the consent collection\u003C\u002Fli>\n\u003Cli>Accurate \u003Cstrong>timestamping and recording of consenting action\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Flexibly \u003Cstrong>upload any form of proof of consent or legal notice, including a PDF if consent was collected offline\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>It provides a \u003Cstrong>high granularity\u003C\u002Fstrong>: map individual form fields, exclude fields (like password inputs), add legal notices available at the time of consent collection, indicate double opt-in, set preferences and more\u003C\u002Fli>\n\u003Cli>REST \u003Cstrong>HTTP API and JS SDK, to give you total control\u003C\u002Fstrong> and how and when consent is stored\u003C\u002Fli>\n\u003Cli>Store \u003Cstrong>multiple preferences for each user\u003C\u002Fstrong> (e.g. if you have multiple newsletters or opt-ins)\u003C\u002Fli>\n\u003Cli>Features an \u003Cstrong>easy-to-use interface for entering custom scripts and iframes\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>It provides \u003Cstrong>API input field for quick and easy activation\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Terms and Conditions\u003C\u002Fh3>\n\u003Cp>Create your terms and conditions in minutes.\u003C\u002Fp>\n\u003Cp>Customizable from hundreds of combinations, available in 10 languages, powerful and precise — our solution is capable of handling even the most complex, individual scenarios. Optimized for e-commerce, marketplace, SaaS, apps and more.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Easy, \u003Cstrong>guided set-up\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Expertly crafted at the hands of our \u003Cstrong>international legal team\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Pre-defined scenarios modules for everything from basic \u003Cstrong>disclaimers to copyright licenses, account terminations rules, product-comparison, age-related disclaimers, virtual currency,\u003C\u002Fstrong> and more.\u003C\u002Fli>\n\u003Cli>Plug-and-go \u003Cstrong>integrations for popular eCommerce solutions like Shopify, Wix, Squarespace, Weebly, WooCommerce, PrestaShop\u003C\u002Fstrong> and more\u003C\u002Fli>\n\u003Cli>\u003Cstrong>One-click translation\u003C\u002Fstrong> (10 languages supported EN-US, EN-UK, IT, FR, ES, DE, PT, PT-BR, RU, NL)\u003C\u002Fli>\n\u003Cli>Compatible with \u003Cstrong>Google’s Accelerated Mobile Pages\u003C\u002Fstrong> (AMP)\u003C\u002Fli>\n\u003Cli>Manage documents for \u003Cstrong>multiple sites from a single dashboard\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>White label option\u003C\u002Fstrong> allows you to seamlessly integrate your privacy policy text into the body of your webpage\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>iubenda and Third-party services\u003C\u002Fh3>\n\u003Cp>The iubenda plugin makes use of two iubenda services:\u003C\u002Fp>\n\u003Col>\n\u003Cli>A service named \u003Cstrong>Quick generator\u003C\u002Fstrong> that allows you to login\u002Fsignup on iubenda.com and creates privacy policies for your website right from the plugin. The service is publicly available and described in detail on the \u003Ca href=\"https:\u002F\u002Fwww.iubenda.com\u002Fen\u002Fhelp\u002F37013-api-docs-quick-generator-manual\" rel=\"nofollow ugc\">official documentation page\u003C\u002Fa> on the iubenda website.\u003C\u002Fli>\n\u003Cli>An internal service to scan the user’s website and detect the correct data privacy settings to be applied, depending on the website location.\u003Cbr \u002F>\nExternal CSS and JS assets used in the plugin or applied to the user’s website by iubenda are delivered either by \u003Ca href=\"http:\u002F\u002Fcdn.iubenda.com\u002F\" rel=\"nofollow ugc\">cdn.iubenda.com\u003C\u002Fa> or \u003Ca href=\"https:\u002F\u002Fcdn.ampproject.org\u002F\" rel=\"nofollow ugc\">cdn.ampproject.org\u003C\u002Fa> (only when the AMP settings are \u003Ca href=\"https:\u002F\u002Fwww.iubenda.com\u002Fen\u002Fhelp\u002F22135-cookie-solution-amp-wordpress#wordpress\" rel=\"nofollow ugc\">activated\u003C\u002Fa>). Any services available at \u003Ca href=\"http:\u002F\u002Fcdn.iubenda.com\u002F\" rel=\"nofollow ugc\">cdn.iubenda.com\u003C\u002Fa> are provided by iubenda and the respective privacy policy applies. Any services available at \u003Ca href=\"http:\u002F\u002Fcdn.ampproject.org\u002F\" rel=\"nofollow ugc\">cdn.ampproject.org\u003C\u002Fa> are provided by Google and the respective privacy policy applies.\u003Cbr \u002F>\nIf you integrate the Privacy Controls and Cookie Solution to allow your website to request and manage consent for the use of cookies and similar technologies, when the final user navigates on your website\u002Fapplication, then the \u003Ca href=\"https:\u002F\u002Fwww.iubenda.com\u002Fprivacy-policy\u002F36700132\" rel=\"nofollow ugc\">Privacy Policy of iubenda Privacy Controls and Cookie Solution\u003C\u002Fa> applies.\u003Cbr \u002F>\nSimilarly, when you integrate the Consent Database tool to keep track of the user’s consent activities and store the information necessary to record evidence of that consent, then the \u003Ca href=\"https:\u002F\u002Fwww.iubenda.com\u002Fprivacy-policy\u002F94654098\" rel=\"nofollow ugc\">Privacy Policy of iubenda Consent Database\u003C\u002Fa> applies.\u003Cbr \u002F>\nFor further details on the iubenda tools and services privacy policies please refer to the \u003Ca href=\"https:\u002F\u002Fwww.iubenda.com\u002Fprivacy-policy\u002F252372\" rel=\"nofollow ugc\">privacy policy\u003C\u002Fa> on the iubenda website.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>About iubenda\u003C\u002Fh3>\n\u003Cp>We help companies all over the world to keep their websites and apps compliant with international privacy laws for optimal peace of mind. \u003Ca href=\"https:\u002F\u002Fwww.iubenda.com\u002F\" rel=\"nofollow ugc\">More here\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Languages\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Our services are currently available in the following languages:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>English US and UK\u003C\u002Fli>\n\u003Cli>Italian\u003C\u002Fli>\n\u003Cli>French\u003C\u002Fli>\n\u003Cli>Spanish\u003C\u002Fli>\n\u003Cli>Portuguese\u003C\u002Fli>\n\u003Cli>Brazilian Portuguese\u003C\u002Fli>\n\u003Cli>German\u003C\u002Fli>\n\u003Cli>Dutch\u003C\u002Fli>\n\u003Cli>Russian\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Support & Updates\u003C\u002Fh3>\n\u003Cp>All our solutions and plugins are \u003Cstrong>regularly updated and well maintained\u003C\u002Fstrong> to ensure that you’re always protected.\u003C\u002Fp>\n\u003Cp>You can access our friendly support in multiple languages (currently EN, IT, DE, FR, PT, PT-BR) via \u003Ca href=\"mailto:info@iubenda.com\" rel=\"nofollow ugc\">info@iubenda.com\u003C\u002Fa>, our \u003Ca href=\"https:\u002F\u002Fwww.iubenda.com\u002F\" rel=\"nofollow ugc\">onsite chat\u003C\u002Fa> \u003Cem>(just click the green Help button on the right side of the page)\u003C\u002Fem>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Other links:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.iubenda.com\u002Fen\u002Fhelp\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fsupport.iubenda.com\u002F\" rel=\"nofollow ugc\">Feedback & Support forum\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","The solution for GDPR compliance + more. Get your cookie banner, privacy policy, terms and conditions and handle cookie consent in just one plugin.",200000,5312018,386,"2026-03-11T13:35:00.000Z","5.0","7.0.0",[159,160,161,162,140],"ccpa","cookie-banner","gdpr","privacy-policy","https:\u002F\u002Fwww.iubenda.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fiubenda-cookie-law-solution.3.13.1.zip",97,4,"2022-12-12 00:00:00",{"attackSurface":169,"codeSignals":183,"taintFlows":190,"riskAssessment":191,"analyzedAt":202},{"hooks":170,"ajaxHandlers":171,"restRoutes":172,"shortcodes":173,"cronEvents":182,"entryPointCount":46,"unprotectedCount":75},[],[],[],[174,179],{"tag":175,"callback":176,"file":177,"line":178},"tbd_link","shortcode_handler_tbd_link","terms-before-download.php",29,{"tag":180,"callback":181,"file":177,"line":49},"tbd_terms","shortcode_handler_tbd_terms",[],{"dangerousFunctions":184,"sqlUsage":185,"outputEscaping":187,"fileOperations":75,"externalRequests":75,"nonceChecks":75,"capabilityChecks":75,"bundledLibraries":189},[],{"prepared":75,"raw":75,"locations":186},[],{"escaped":27,"rawEcho":75,"locations":188},[],[],[],{"summary":192,"deductions":193},"The plugin \"terms-before-download\" v1.0.5 exhibits a mixed security posture. On the positive side, the static analysis reveals adherence to good coding practices, with no dangerous functions, all SQL queries using prepared statements, and all identified outputs properly escaped. There are no file operations or external HTTP requests, which are common vectors for vulnerabilities. The absence of taint analysis findings further suggests that direct code execution or data corruption risks stemming from unsanitized input are currently not detected.\n\nHowever, a significant concern arises from the plugin's vulnerability history. It has one known unpatched medium severity CVE related to Cross-site Scripting (XSS). The fact that this vulnerability is recent (March 2025) and remains unpatched is a critical red flag, indicating a potential for exploitation by attackers. While the static analysis found no immediate vulnerabilities within the current codebase, the historical pattern of an XSS vulnerability implies that the developers may not be fully addressing security issues or that their security testing is insufficient.\n\nIn conclusion, while the current codebase demonstrates some good security practices, the presence of an unpatched medium severity XSS vulnerability significantly diminishes the overall security of this plugin. Users should be aware of this historical vulnerability and consider the risks associated with using a plugin that has a known, unaddressed security flaw. The lack of any capability checks or nonce checks on its entry points (shortcodes) could also be a concern if those shortcodes handle user-provided data that is then displayed or processed without further sanitization, though no explicit issues were flagged by the static analysis.",[194,197,200],{"reason":195,"points":196},"Unpatched CVE (Medium severity)",17,{"reason":198,"points":199},"No capability checks on entry points",5,{"reason":201,"points":199},"No nonce checks on entry points","2026-03-16T21:32:01.585Z",{"wat":204,"direct":210},{"assetPaths":205,"generatorPatterns":206,"scriptPaths":207,"versionParams":209},[],[],[208],"\u002Fwp-content\u002Fplugins\u002Fterms-before-download\u002Fterms-before-download.php",[],{"cssClasses":211,"htmlComments":212,"htmlAttributes":213,"restEndpoints":215,"jsGlobals":216,"shortcodeOutput":217},[175],[],[214],"data-url",[],[],[218,219],"\u003Ca class='tbd_link' href='#' data-url=","\u003Cdiv id='tbd_terms'"]