[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fwb_qj_4p3mqXLqdJYQq-Kt2d4CledOoqSJ2An3RsNZs":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":27,"unpatched_count":27,"last_vuln_date":28,"fetched_at":29,"vulnerabilities":30,"developer":45,"crawl_stats":36,"alternatives":50,"analysis":157,"fingerprints":255},"terms-of-service-and-privacy-policy","Terms of Service & Privacy Policy Generator","1.0","Wishloop","https:\u002F\u002Fprofiles.wordpress.org\u002Fwishloop\u002F","\u003Cp>Generates “Terms Of Service” and “Privacy Policy” texts with your own website’s\u002Fcompany’s information using generic versions of Automattic’s Terms of Service and Privacy Policy.\u003C\u002Fp>\n\u003Cp>You can use the following shortcodes [wl_tos] to output the Terms Of Service text and [wl_privacypolicy] to display the Privacy Policy text anywhere on your website.\u003C\u002Fp>\n","Generates \"Terms Of Service\" and \"Privacy Policy\" texts based on your information using shortcodes.",700,20939,0,"2017-11-28T18:20:00.000Z","4.3.34","3.0.1","",[19,20,21,22,23],"agreement","privacy","privacy-policy","terms-of-service","tos","http:\u002F\u002Fwww.wishloop.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fterms-of-service-and-privacy-policy.zip",63,1,"2025-08-19 00:00:00","2026-03-15T15:16:48.613Z",[31],{"id":32,"url_slug":33,"title":34,"description":35,"plugin_slug":4,"theme_slug":36,"affected_versions":37,"patched_in_version":36,"severity":38,"cvss_score":39,"cvss_vector":40,"vuln_type":41,"published_date":28,"updated_date":42,"references":43,"days_to_patch":36},"CVE-2025-49413","terms-of-service-privacy-policy-generator-authenticated-administrator-stored-cross-site-scripting","Terms of Service & Privacy Policy Generator \u003C= 1.0 - Authenticated (Administrator+) Stored Cross-Site Scripting","The Terms of Service & Privacy Policy Generator plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only impacts multi-site installations and installations where unfiltered_html has been disabled.",null,"\u003C=1.0","medium",4.4,"CVSS:3.1\u002FAV:N\u002FAC:H\u002FPR:H\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2025-08-25 18:10:21",[44],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fac08bd5c-3bcf-44e8-8555-d30fdf073dba?source=api-prod",{"slug":46,"display_name":7,"profile_url":8,"plugin_count":27,"total_installs":11,"avg_security_score":26,"avg_patch_time_days":47,"trust_score":48,"computed_at":49},"wishloop",30,68,"2026-04-04T14:49:51.086Z",[51,76,99,117,140],{"slug":52,"name":53,"version":54,"author":55,"author_profile":56,"description":57,"short_description":58,"active_installs":59,"downloaded":60,"rating":61,"num_ratings":62,"last_updated":63,"tested_up_to":64,"requires_at_least":65,"requires_php":66,"tags":67,"homepage":71,"download_link":72,"security_score":73,"vuln_count":74,"unpatched_count":13,"last_vuln_date":75,"fetched_at":29},"wp-terms-popup","WP Terms Popup – Terms and Conditions and Privacy Policy WordPress Popups","2.11.0","Link Software LLC","https:\u002F\u002Fprofiles.wordpress.org\u002Flinksoftware\u002F","\u003Cp>Control access to your WordPress site with a popup. WP Terms Popup gives you the ability to use a popup to restrict users from accessing your website. You can use the plugin to ask visitors to agree to your terms and conditions, terms of service, or privacy policy before they are allowed to view your site. Add an age verification check to your popups before they can be accepted.\u003C\u002Fp>\n\u003Ch3>How Does WP Terms Popup Work?\u003C\u002Fh3>\n\u003Cp>WP Terms Popup gives your users a simple three-step process for gaining access to your website. Use this as a way to make sure your visitors are presented with your terms and conditions, terms of service, or even a privacy policy before viewing your WordPress site.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Step #1: Your user must read the popup first.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>You decide what your popup shows to visitors: terms of service, a privacy policy, etc. You can include any content, such as text or images, that you would include in a typical WordPress post.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Step #2: The user agrees to your conditions.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Each popup contains two buttons: one to show acceptance and another that redirects away from your site. The popup will not go away until your user clicks the accept button to agree to the content of your popup.\u003C\u002Fp>\n\u003Cp>You can add an optional age verification check to your popup as well that disables the accept button until a valid date of birth is entered. Age verification settings can be defined while you create your popup.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Step #3: Website access is granted to your user.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>When the user accepts your popup they are immediately taken to your site without any further interaction. They will not see the popup again until your agreement expiration has expired.\u003C\u002Fp>\n\u003Ch3>Getting Started\u003C\u002Fh3>\n\u003Cp>After installing and activating WP Terms Popup, go to “WP Terms Popup” in your WordPress admin menu and select “Add New” to create your first popup.\u003C\u002Fp>\n\u003Cp>Go to “Settings” in the same “WP Terms Popup” menu to create the global settings that will apply to all popups. You can override some of these settings by editing each individual popup.\u003C\u002Fp>\n\u003Cp>From the “Settings” screen you can assign a popup to be shown sitewide or you can assign popups to individual pieces of content using the standard post editing screen.\u003C\u002Fp>\n\u003Cp>You can set up age verification using the WP Terms Popup Settings meta box. Define how old a visitor has to be to agree to your popup. You can also set the order of the age verification dropdowns so the date format matches your country’s format. The age verification feature is available in WP Terms Popup 2.6.0 and above.\u003C\u002Fp>\n\u003Ch3>Premium Add-Ons\u003C\u002Fh3>\n\u003Cp>You can extend the feature set of WP Terms Popup with one of our premiums add-ons:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Ftermsplugin.com\u002Fdesigner?utm_source=readme&utm_medium=plugin-repository&utm_content=designer\" rel=\"nofollow ugc\">WP Terms Popup Designer\u003C\u002Fa>\u003C\u002Fstrong>\u003Cbr \u002F>\nAdjust the appearance of your popups without writing code or modifying your WordPress theme.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Ftermsplugin.com\u002Fcollector?utm_source=readme&utm_medium=plugin-repository&utm_content=collector\" rel=\"nofollow ugc\">WP Terms Popup Collector\u003C\u002Fa>\u003C\u002Fstrong>\u003Cbr \u002F>\nStore information about your website’s visitors after they agree to your popups.\u003C\u002Fli>\n\u003C\u002Ful>\n","Use WP Terms Popup to ask visitors to agree to your terms and conditions or privacy policy before they are allowed to view your site.",3000,115324,96,15,"2026-03-02T16:39:00.000Z","6.9.4","5.0","5.6",[68,69,21,70,22],"age-verification","popup","terms-and-conditions","https:\u002F\u002Ftermsplugin.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-terms-popup.2.11.0.zip",98,2,"2026-03-20 00:00:00",{"slug":77,"name":78,"version":79,"author":80,"author_profile":81,"description":82,"short_description":83,"active_installs":84,"downloaded":85,"rating":86,"num_ratings":87,"last_updated":88,"tested_up_to":89,"requires_at_least":90,"requires_php":17,"tags":91,"homepage":96,"download_link":97,"security_score":98,"vuln_count":13,"unpatched_count":13,"last_vuln_date":36,"fetched_at":29},"woocommerce-digital-signature","Signature Add-On for WooCommerce","1.8.4","approveme","https:\u002F\u002Fprofiles.wordpress.org\u002Fapproveme\u002F","\u003Cp>\u003Cstrong>\u003Ca href=\"http:\u002F\u002Fwww.secure.approveme.com\u002Fdemo\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=woocommerce\" rel=\"nofollow ugc\">Try the Digital Signature add-on for WooCommerce here\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Do your customers have to sign a contract in order to purchase or download your WooCommerce product? This plugin makes that happen automatically every time someone buys – without you doing a thing.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cem>With \u003Ca href=\"https:\u002F\u002Fwww.approveme.com\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=woocommerce\" rel=\"nofollow ugc\">WP E-Signature\u003C\u002Fa> (Elite or Lifetime license) and this Digital Signature for WooCommerce plugin you’ll automatically gather signatures when customers purchase products from your WooCommerce online store.\u003C\u002Fem>\u003C\u002Fp>\n\u003Cdiv class=\"embed-vimeo\" style=\"text-align: center;\">\u003Ciframe loading=\"lazy\" src=\"https:\u002F\u002Fplayer.vimeo.com\u002Fvideo\u002F130673517\" width=\"750\" height=\"422\" frameborder=\"0\" webkitallowfullscreen mozallowfullscreen allowfullscreen>\u003C\u002Fiframe>\u003C\u002Fdiv>\n\u003Cp>\u003Cstrong>That’s just the start. Once customers sign…\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cem>…you and the customer will automatically receive a PDF of their signed contract.\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>\u003Cem>…no need to register on an outside website (all signatures happen without leaving your site)\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>\u003Cem>… you’ll have a 100% legally compliant signature on file to protect you AND the customer (according to UETA\u002FESIGN guidelines).\u003C\u002Fem>\u003C\u002Fp>\n\u003Ch3>This Digital Signature add-on transforms your WooCommerce store into a court-recognized document signing application (but without the monthly fees… and with unlimited users).\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Perfect for those wanting to automate the collection of signatures on terms of service agreements, new client contracts, waiver forms and more!\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>Automatically require your WooCommerce customers to sign a legally binding agreement before downloading your product.\u003C\u002Fp>\n\u003Cp>“I agree to terms” checkboxes have the legal standing of a limp handshake.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Do the smart thing.  Don’t get caught in a courtroom with a document that’s not legally binding.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>**Transform one single page of your existing WordPress website into a secure document and electronic signature application. **\u003C\u002Fp>\n\u003Cp>WP E-Signature has a very extensive e-signature feature library with dozens of expandable and customizable \u003Ca href=\"https:\u002F\u002Fwww.approveme.com\u002Fesign-integrations?utm_source=wprepo&utm_medium=link&utm_campaign=woocommerce\" rel=\"nofollow ugc\">e-signature automations\u003C\u002Fa> and \u003Ca href=\"http:\u002F\u002Fwww.secure.approveme.com\u002Fdemo\u002Fwoo-commerce-demo\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=woocommerce\" rel=\"nofollow ugc\">woo commerce e-signature automation options\u003C\u002Fa> to further enhance your custom document signing needs.\u003C\u002Fp>\n\u003Ch4>Strength & flexibility\u003C\u002Fh4>\n\u003Cp>WP E-Signature is built using WordPress best practices both on the front and the back end. This results in an efficient, robust and easy-to-use plugin.\u003C\u002Fp>\n\u003Ch4>Legally Binding\u003C\u002Fh4>\n\u003Cp>WP E-Signature is recognized in court. We are \u003Ca href=\"http:\u002F\u002Fwww.ncsl.org\u002Fresearch\u002Ftelecommunications-and-information-technology\u002Funiform-electronic-transactions-acts.aspx\" rel=\"nofollow ugc\">(UETA)\u003C\u002Fa> and \u003Ca href=\"http:\u002F\u002Fwww.fdic.gov\u002Fregulations\u002Fcompliance\u002Fmanual\u002Fpdf\u002FX-3.1.pdf\" rel=\"nofollow ugc\">(ESIGN)\u003C\u002Fa> compliant and adhere to some of the strictest document signing polices in the US and European unions.\u003C\u002Fp>\n\u003Ch4>Electronic Signature Security and Encryption\u003C\u002Fh4>\n\u003Cp>Security is our priority. All of your signed documents and signatures are kept hidden and encrypted on your server using a secure encryption sequence and signer specific URL.  Additionally you have the option of forcing SSL security (when an SSL certificate is installed on your server) for all WP E-Signature related pages.\u003C\u002Fp>\n\u003Ch4>Signer Audit Trail & Reporting\u003C\u002Fh4>\n\u003Cp>Documents move turbo speed from signer to signer. We include a detailed audit report with viewer details, ip addresses, analytics and signer history.\u003C\u002Fp>\n\u003Ch4>Document Signing Automation\u003C\u002Fh4>\n\u003Cp>If you do business online, customers probably have to sign an agreement or an online contract. Problem is a paper agreement doesn’t hold up if your business is an online business and your customers are online customers. You can try mailing or even scanning a contract to your digital customers which costs you time and money, in the meantime you have the risk of losing your customer because of the added delay.\u003C\u002Fp>\n\u003Cp>What you need is WP E-Signature. WP E-Signature lets you customize the signing process for what you need with no monthly fees. With a comprehensive marketplace of add-on extensions including Save as PDF, Dropbox Sync, Signer Input Fields, and dozens more which make it easy to automate and customize your document signing process.\u003C\u002Fp>\n\u003Cp>WP E-Signature works with any WordPress website, including the default WordPress themes. If you need help installing WP E-Signature check out our \u003Ca href=\"https:\u002F\u002Fwww.approveme.com\u002Fwp-digital-signature-plugin-docs\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=woocommerce\" rel=\"nofollow ugc\">getting started docs\u003C\u002Fa> and start signing documents using your WordPress website.  Looking to get WordPress Proposals signed?  We got you covered!\u003C\u002Fp>\n\u003Cp>If you’re looking for a tailored WordPress eSigning integration or add-on designed specifically to be used for your document signing needs be sure to browse the official \u003Ca href=\"https:\u002F\u002Fwww.approveme.com\u002Fesign-features\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=woocommerce\" rel=\"nofollow ugc\">WP E-Signature Premium add-ons\u003C\u002Fa> which come with a license.   If you don’t see the integrations you need… let us know.\u003C\u002Fp>\n\u003Cp>You could also use a third party document signing service but they charge monthly fees and what’s worst, your customers are forced to create an account on an unrelated website just to sign your companies documents.\u003C\u002Fp>\n\u003Ch4>e-signature WordPress Features\u003C\u002Fh4>\n\u003Cp>Whether you’re operating a wedding photography business a membership based website, or a just a small web design agency in need of clients signing your website terms of service WP E-Signature has you covered. You can read all about ‘WP E-Signature’ features on the \u003Ca href=\"https:\u002F\u002Fwww.approveme.com\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=woocommerce\" rel=\"nofollow ugc\">ApproveMe website\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>Customizable\u003C\u002Fh4>\n\u003Cp>Your business is unique, your online document signing process should be too. Choose from many of our \u003Ca href=\"https:\u002F\u002Fwww.approveme.com\u002Fesign-features\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=woocommerce\" rel=\"nofollow ugc\">e-signature workflows\u003C\u002Fa> best of all e-signature is hosted using your WordPress website.\u003C\u002Fp>\n\u003Ch4>Tablet & Smart Phone Friendly\u003C\u002Fh4>\n\u003Cp>Upload documents via WordPress dashboard and collect real client signatures through your website using ApproveMe’s \u003Ca href=\"https:\u002F\u002Fwww.approveme.com\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=woocommerce\" rel=\"nofollow ugc\">WordPress Contract Plugin\u003C\u002Fa>. Users sign documents online using their mouse, trackpad, tablet, or phone.\u003C\u002Fp>\n\u003Ch4>No Monthly Fees\u003C\u002Fh4>\n\u003Cp>WP E-Signature is the easiest and most affordable way to sign documents online using WordPress. You have full control over your data – it never leaves your server. Built exclusively for WordPress.\u003C\u002Fp>\n\u003Ch3>Need Support?\u003C\u002Fh3>\n\u003Cp>So we can better serve you and to avoid support tickets getting lost in outer space we try to provide world-class support via our website.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>We do not offer support on the wordpress.org forum.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>To create a support ticket please login to your account \u003Ca href=\"https:\u002F\u002Fwww.approveme.com\u002Fwp-digital-e-signature-document-support\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=woocommerce\" rel=\"nofollow ugc\">www.approveme.com\u002Fsupport\u003C\u002Fa> and we look forward to helping you resolve your issue.\u003C\u002Fp>\n\u003Cp>If you have any other non-support related questions about ApproveMe’s WP E-Signature you’re welcome to ask any pre-sale questions from our \u003Ca href=\"https:\u002F\u002Fapproveme.com\u002Fcontact\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=woocommerce\" rel=\"nofollow ugc\">contact form page\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Free ebook:\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwww.approveme.com\u002Ffree-ebook-digital-e-signature-is-it-legal\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=woocommerce\" rel=\"nofollow ugc\">7 Ways to Protect Your Company from Contracts That Aren’t Binding\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch3>Additional Info\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Shortcode Includes\u003C\u002Fstrong>\u003Cbr \u002F>\n [esig-woo-order-details] – Easily attach your customers order details to a document\u003C\u002Fp>\n\u003Ch3>Other notable PDF features and workflows for WooCommerce Digital Signature\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Completely automate the signature collection process for your freelance or small business\u003C\u002Fli>\n\u003Cli>A copy of the signed agreement can be downloaded as a PDF from your website\u003C\u002Fli>\n\u003Cli>A Signed PDF can be synced with your Dropbox account\u003C\u002Fli>\n\u003Cli>An attached court recognized PDF can be emailed to both the signer and yourself\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>All documents are encrypted and stored on your WordPress website (not somebody else’s)\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>[WP E-Signature document security here] [https:\u002F\u002Fwww.approveme.com\u002Fsecurity-ueta-e-sign-protection\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=woocommerce]\u003C\u002Fp>\n\u003Cp>Free ebook:\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fwww.approveme.com\u002Ffree-ebook-digital-e-signature-is-it-legal\u002F?utm_source=wprepo&utm_medium=link&utm_campaign=woocommerce\" rel=\"nofollow ugc\">7 Ways to Protect Your Company from Contracts That Aren’t Binding\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cem>A valid WP E-Signature license is required for this Digital Signature Add-on for WooCommerce plugin to work.  You can easily purchase yours at (www.approveme.com)\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>No Monthly Fees • UETA & ESIGN Compliant • Legally Binding • Money Back Guarantee\u003C\u002Fstrong>\u003C\u002Fp>\n","Automatically require your WooCommerce customers to sign a legally binding contract before downloading your product. Easy to Use.",1000,65955,62,19,"2026-01-08T17:59:00.000Z","6.8.5","5.1",[92,93,94,4,95],"e-signature","electronic-signature","electronic-signatures-digital-signature","woocommerce","http:\u002F\u002Faprv.me\u002F2l9JldC","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwoocommerce-digital-signature.1.8.4.zip",100,{"slug":100,"name":101,"version":102,"author":103,"author_profile":104,"description":105,"short_description":106,"active_installs":13,"downloaded":107,"rating":13,"num_ratings":13,"last_updated":108,"tested_up_to":64,"requires_at_least":109,"requires_php":110,"tags":111,"homepage":115,"download_link":116,"security_score":98,"vuln_count":13,"unpatched_count":13,"last_vuln_date":36,"fetched_at":29},"wpgear-consent-privacy-policy-acceptance","WPGear – Consent Privacy Policy Acceptance","2.5","wpgear","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpgear\u002F","\u003Cp>A simple and convenient solution for implementing the requirements of the Laws on Personal Data.\u003C\u002Fp>\n\u003Ch4>Futured\u003C\u002Fh4>\n\u003Cp>The main concept is to avoid unnecessary inconvenience.\u003Cbr \u002F>\nThe floating banner does not interfere with viewing content.\u003Cbr \u002F>\nIf the visitor agrees to the requirements and clicks the “I agree” button, the banner disappears and will no longer be displayed on the website for this browser on this device.\u003C\u002Fp>\n\u003Cp>You can customize the Message Text and include a link to the Privacy Policy page.\u003C\u002Fp>\n\u003Cp>The appearance, shape and location of the banner can be fully customized to suit your design using CSS.\u003C\u002Fp>\n","Requests the website visitor to confirm consent to the use of personal data (Privacy Policy) and the storage of cookies on first visit.",148,"2026-02-19T14:59:00.000Z","4.1","5.4",[112,19,113,114,21],"accept","consent","cookie","https:\u002F\u002Fwpgear.xyz\u002Faccept-privacy-policy","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwpgear-consent-privacy-policy-acceptance.zip",{"slug":118,"name":119,"version":120,"author":121,"author_profile":122,"description":123,"short_description":124,"active_installs":125,"downloaded":126,"rating":127,"num_ratings":128,"last_updated":129,"tested_up_to":64,"requires_at_least":65,"requires_php":130,"tags":131,"homepage":135,"download_link":136,"security_score":137,"vuln_count":138,"unpatched_count":13,"last_vuln_date":139,"fetched_at":29},"iubenda-cookie-law-solution","iubenda | All-in-one Compliance for GDPR \u002F CCPA Cookie Consent + more","3.13.1","iubenda","https:\u002F\u002Fprofiles.wordpress.org\u002Fiubenda\u002F","\u003Cp>The iubenda plugin is an \u003Cstrong>all-in-one\u003C\u002Fstrong>, extremely easy to use 360° compliance solution, with text crafted by actual lawyers, that quickly \u003Cstrong>scans your site and auto-configures to match your specific setup\u003C\u002Fstrong>. It supports the GDPR (DSGVO, RGPD), UK-GDPR, ePrivacy, LGPD, CPRA \u002F CCPA, CalOPPA, PECR and more, and seamlessly integrates with the latest versions of Google Consent Mode and IAB’s TCF.\u003Cbr \u002F>\nIt allows you to:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>⚡️Scan your site and have solutions auto-configured\u003C\u002Fstrong> to match your site’s specific needs.\u003C\u002Fli>\n\u003Cli>🚀 Easily generate a fully customizable \u003Cstrong>cookie banner,\u003C\u002Fstrong> \u003Cstrong>manage cookie consent\u003C\u002Fstrong> and store legally required \u003Cstrong>GDPR consent proofs\u003C\u002Fstrong> for cookies.\u003C\u002Fli>\n\u003Cli>Generate a \u003Cstrong>CCPA notice with working DNSMPI link\u003C\u002Fstrong> as legally required.\u003C\u002Fli>\n\u003Cli>Activate IABs \u003Cstrong>TCF to maximize ad earning\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>🚀 Quickly generate a fully customizable \u003Cstrong>privacy and cookie policy\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Auto-detect user location and auto-applies the correct data privacy settings\u003C\u002Fstrong> (needed if you have users from multiple regions like the US and the EU).\u003C\u002Fli>\n\u003Cli>🚀 Capture, store and manage \u003Cstrong>GDPR consent records\u003C\u002Fstrong> for your webforms.\u003C\u002Fli>\n\u003Cli>🚀 Effortlessly \u003Cstrong>generate professional Terms and Conditions\u003C\u002Fstrong> to protect you from liabilities and more.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Translate all documents with a single click\u003C\u002Fstrong> (supports 10 languages).\u003C\u002Fli>\n\u003Cli>Compatible with \u003Cstrong>Google’s Accelerated Mobile Pages\u003C\u002Fstrong> (AMP)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>And of course, basic set-up is completely free.\u003C\u002Fp>\n\u003Cspan class=\"embed-youtube\" style=\"text-align:center; display: block;\">\u003Ciframe loading=\"lazy\" class=\"youtube-player\" width=\"750\" height=\"422\" src=\"https:\u002F\u002Fwww.youtube.com\u002Fembed\u002FZmUC66etPbk?version=3&rel=1&showsearch=0&showinfo=1&iv_load_policy=1&fs=1&hl=en-US&autohide=2&wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\">\u003C\u002Fiframe>\u003C\u002Fspan>\n\u003Ch3>Features\u003C\u002Fh3>\n\u003Cp>This all-in-one plugin lets you integrate all iubenda compliance solutions in a single install and basic set-up is completely free.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>⚡️\u003C\u002Fstrong> The plugin \u003Cstrong>scans your site and auto-configures everything\u003C\u002Fstrong> based on your site’s specific needs.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>⭐ All our solutions are fully responsive (perfect for all screen sizes) and WCAG Level AAA Compliant.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>They’re auto-updated when the law changes so that they’re always up-to-date and our built-in site scanner runs periodic scans on your site and alerts you if it detects something that should be added to your compliance documents.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Our solutions support the GDPR (DSGVO, RGPD), UK-GDPR, ePrivacy, LGPD, CCPA \u002F CPRA, VCDPA, CalOPPA, PECR and more.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>Privacy Controls and Cookie Solution\u003C\u002Fh3>\n\u003Cp>Includes cookie banner\u002FCCPA notice, and cookie consent management (blocking scripts until consent is collected as legally required). Free basic setup and full CCPA support.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Easy and guided set-up: \u003Cstrong>Analyzes your site and auto-configures everything\u003C\u002Fstrong> to make set-up as easy as possible.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Fully customizable cookie banner\u003C\u002Fstrong> – change functionality, design, location, colors, add your logo and more.\u003C\u002Fli>\n\u003Cli>Asynchronously re-activates cookie scripts once consent is collected (\u003Cstrong>no page reload needed\u003C\u002Fstrong>).\u003C\u002Fli>\n\u003Cli>Lightning-fast: \u003Cstrong>won’t affect page performance\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Auto-detects and blocks a wide range of 3rd party script\u003C\u002Fstrong>s like Google Analytics, Google Maps, Facebook and Instagram widgets, Youtube, Twitter, PayPal, Disqus, Outbrain, AdRoll, Kissmetrics, Freshchat and more.\u003C\u002Fli>\n\u003Cli>Allows you to provide your users with \u003Cstrong>granular, per-category preference control\u003C\u002Fstrong> (e.g. basic functionalities, experience enhancement, targeting & advertising)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Google Consent Mode\u003C\u002Fstrong> (both \u003Cstrong>Basic\u003C\u002Fstrong> and \u003Cstrong>Advanced\u003C\u002Fstrong> implementations; no extra setup required): Enables \u003Cstrong>efficient conversion tracking\u003C\u002Fstrong> even without user consent for cookies and tracking technologies, \u003Cstrong>enhancing Google Analytics and Ads performance\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>Integrates with IAB’s \u003Ca href=\"https:\u002F\u002Fwww.iubenda.com\u002Fen\u002Fhelp\u002F7440-enable-preference-management-iab-framework#revenue\" rel=\"nofollow ugc\">Transparency and Consent Framework\u003C\u002Fa> (\u003Cstrong>TCF\u003C\u002Fstrong>) to maximize ad revenue (needed if your site uses ad networks like Google ads and more)\u003C\u002Fli>\n\u003Cli>Compatible with \u003Cstrong>Google’s Accelerated Mobile Pages\u003C\u002Fstrong> (AMP)\u003C\u002Fli>\n\u003Cli>Allows you to auto-detect and \u003Cstrong>limit prior-blocking and cookie consent requests only to users from the EU\u003C\u002Fstrong> – where this is a legal requirement \u003Cstrong>for GDPR compliance\u003C\u002Fstrong> – while running cookies scripts normally in regions where you are still legally allowed to do so.\u003C\u002Fli>\n\u003Cli>Features an \u003Cstrong>easy-to-use interface for entering custom scripts\u003C\u002Fstrong> and iframes\u003C\u002Fli>\n\u003Cli>Cookie database feature allows you to auto-set \u003Cstrong>cookie lifetime information\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Display CCPA \u002F CPRA notice and opt-out link as required by the\u003C\u002Fstrong> \u003Ca href=\"https:\u002F\u002Fwww.iubenda.com\u002Fen\u002Fhelp\u002F21165-ccpa-how-to-add-a-notice-of-collection-and-a-do-not-sell-link\" rel=\"nofollow ugc\">\u003Cstrong>California Consumer Privacy Act\u003C\u002Fstrong>\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Provides \u003Cstrong>cookie consent analytics\u003C\u002Fstrong> for high-traffic sites.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Detects bots\u002Fspiders\u003C\u002Fstrong> and serves them a clean page \u003Cstrong>so that your SEO efforts are never compromised\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Privacy and Cookie Policy Generator\u003C\u002Fh3>\n\u003Cp>This solution lets you generate professional privacy and cookie policies \u003Cstrong>in minutes\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Super \u003Cstrong>easy interface, guided process, fully customizable\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>All \u003Cstrong>legal text written by actual legal professionals\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Quick select from \u003Cstrong>over 1900 clauses or create custom clauses\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Activate \u003Cstrong>cookie policy in a single click\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Site Scanner to quickly \u003Cstrong>detect which services\u002F clauses you need to add to your policies\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>One-click translation\u003C\u002Fstrong>. 10 languages supported: English-US, English-UK, Italian, French, Spanish, German, Portuguese, Brazilian Portuguese, Russian, Dutch.\u003C\u002Fli>\n\u003Cli>One-click activation for \u003Cstrong>country\u002F region-specific text\u003C\u002Fstrong>.\u003C\u002Fli>\n\u003Cli>Compatible with \u003Cstrong>Google’s Accelerated Mobile Pages\u003C\u002Fstrong> (AMP)\u003C\u002Fli>\n\u003Cli>Documents are \u003Cstrong>remotely updated when legal requirements change\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Manage documents for \u003Cstrong>multiple sites from a single dashboard\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>White label option\u003C\u002Fstrong> allows you to seamlessly integrate your privacy policy text into the body of your webpage\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Consent Database\u003C\u002Fh3>\n\u003Cp>Collect consent, document opt-ins and opt-outs via your web forms. This solution smoothly integrates with your consent collection forms to auto-create legally required GDPR and LGPD consent records.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>About Legal requirements and Consent Records\u003C\u002Fstrong>\u003Cbr \u002F>\nThese records should include a userid, timestamp, consent proof, record of the consenting action, and the legal documents available to the user at the time of consent, \u003Ca href=\"https:\u002F\u002Fwww.iubenda.com\u002Fen\u002Fhelp\u002F5428-gdpr-guide#records-of-consent\" rel=\"nofollow ugc\">among other things\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>This plugin is \u003Cstrong>THE most complete solution for recording, sorting and maintaining GDPR & LGPD records of consent for optimal privacy compliance\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Cp>The plugin also boasts built-in compatibility with WordPress comment form, Contact Form 7, Elementor forms and WP Forms plugins for your convenience, but can be manually integrated with any type of web-form and can even store consent proofs for consents collected offline (e.g in-store sign-ups) via WP media upload.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>It’s \u003Cstrong>auto-compatible with and allows super easy mapping\u003C\u002Fstrong> of Contact Form 7, WP Forms, WordPress comment, Mailchimp for WordPress, Germanized for WooCommerce, Elementor forms and WooCommerce checkout forms\u003C\u002Fli>\n\u003Cli>Also allows manual integration with \u003Cstrong>any type of web-form\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>For each consent, \u003Cstrong>track the form\u002Fwording the user was prompted\u003C\u002Fstrong> with at the time of the consent collection\u003C\u002Fli>\n\u003Cli>Accurate \u003Cstrong>timestamping and recording of consenting action\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Flexibly \u003Cstrong>upload any form of proof of consent or legal notice, including a PDF if consent was collected offline\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>It provides a \u003Cstrong>high granularity\u003C\u002Fstrong>: map individual form fields, exclude fields (like password inputs), add legal notices available at the time of consent collection, indicate double opt-in, set preferences and more\u003C\u002Fli>\n\u003Cli>REST \u003Cstrong>HTTP API and JS SDK, to give you total control\u003C\u002Fstrong> and how and when consent is stored\u003C\u002Fli>\n\u003Cli>Store \u003Cstrong>multiple preferences for each user\u003C\u002Fstrong> (e.g. if you have multiple newsletters or opt-ins)\u003C\u002Fli>\n\u003Cli>Features an \u003Cstrong>easy-to-use interface for entering custom scripts and iframes\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>It provides \u003Cstrong>API input field for quick and easy activation\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Terms and Conditions\u003C\u002Fh3>\n\u003Cp>Create your terms and conditions in minutes.\u003C\u002Fp>\n\u003Cp>Customizable from hundreds of combinations, available in 10 languages, powerful and precise — our solution is capable of handling even the most complex, individual scenarios. Optimized for e-commerce, marketplace, SaaS, apps and more.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Easy, \u003Cstrong>guided set-up\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Expertly crafted at the hands of our \u003Cstrong>international legal team\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>Pre-defined scenarios modules for everything from basic \u003Cstrong>disclaimers to copyright licenses, account terminations rules, product-comparison, age-related disclaimers, virtual currency,\u003C\u002Fstrong> and more.\u003C\u002Fli>\n\u003Cli>Plug-and-go \u003Cstrong>integrations for popular eCommerce solutions like Shopify, Wix, Squarespace, Weebly, WooCommerce, PrestaShop\u003C\u002Fstrong> and more\u003C\u002Fli>\n\u003Cli>\u003Cstrong>One-click translation\u003C\u002Fstrong> (10 languages supported EN-US, EN-UK, IT, FR, ES, DE, PT, PT-BR, RU, NL)\u003C\u002Fli>\n\u003Cli>Compatible with \u003Cstrong>Google’s Accelerated Mobile Pages\u003C\u002Fstrong> (AMP)\u003C\u002Fli>\n\u003Cli>Manage documents for \u003Cstrong>multiple sites from a single dashboard\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>White label option\u003C\u002Fstrong> allows you to seamlessly integrate your privacy policy text into the body of your webpage\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>iubenda and Third-party services\u003C\u002Fh3>\n\u003Cp>The iubenda plugin makes use of two iubenda services:\u003C\u002Fp>\n\u003Col>\n\u003Cli>A service named \u003Cstrong>Quick generator\u003C\u002Fstrong> that allows you to login\u002Fsignup on iubenda.com and creates privacy policies for your website right from the plugin. The service is publicly available and described in detail on the \u003Ca href=\"https:\u002F\u002Fwww.iubenda.com\u002Fen\u002Fhelp\u002F37013-api-docs-quick-generator-manual\" rel=\"nofollow ugc\">official documentation page\u003C\u002Fa> on the iubenda website.\u003C\u002Fli>\n\u003Cli>An internal service to scan the user’s website and detect the correct data privacy settings to be applied, depending on the website location.\u003Cbr \u002F>\nExternal CSS and JS assets used in the plugin or applied to the user’s website by iubenda are delivered either by \u003Ca href=\"http:\u002F\u002Fcdn.iubenda.com\u002F\" rel=\"nofollow ugc\">cdn.iubenda.com\u003C\u002Fa> or \u003Ca href=\"https:\u002F\u002Fcdn.ampproject.org\u002F\" rel=\"nofollow ugc\">cdn.ampproject.org\u003C\u002Fa> (only when the AMP settings are \u003Ca href=\"https:\u002F\u002Fwww.iubenda.com\u002Fen\u002Fhelp\u002F22135-cookie-solution-amp-wordpress#wordpress\" rel=\"nofollow ugc\">activated\u003C\u002Fa>). Any services available at \u003Ca href=\"http:\u002F\u002Fcdn.iubenda.com\u002F\" rel=\"nofollow ugc\">cdn.iubenda.com\u003C\u002Fa> are provided by iubenda and the respective privacy policy applies. Any services available at \u003Ca href=\"http:\u002F\u002Fcdn.ampproject.org\u002F\" rel=\"nofollow ugc\">cdn.ampproject.org\u003C\u002Fa> are provided by Google and the respective privacy policy applies.\u003Cbr \u002F>\nIf you integrate the Privacy Controls and Cookie Solution to allow your website to request and manage consent for the use of cookies and similar technologies, when the final user navigates on your website\u002Fapplication, then the \u003Ca href=\"https:\u002F\u002Fwww.iubenda.com\u002Fprivacy-policy\u002F36700132\" rel=\"nofollow ugc\">Privacy Policy of iubenda Privacy Controls and Cookie Solution\u003C\u002Fa> applies.\u003Cbr \u002F>\nSimilarly, when you integrate the Consent Database tool to keep track of the user’s consent activities and store the information necessary to record evidence of that consent, then the \u003Ca href=\"https:\u002F\u002Fwww.iubenda.com\u002Fprivacy-policy\u002F94654098\" rel=\"nofollow ugc\">Privacy Policy of iubenda Consent Database\u003C\u002Fa> applies.\u003Cbr \u002F>\nFor further details on the iubenda tools and services privacy policies please refer to the \u003Ca href=\"https:\u002F\u002Fwww.iubenda.com\u002Fprivacy-policy\u002F252372\" rel=\"nofollow ugc\">privacy policy\u003C\u002Fa> on the iubenda website.\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Ch3>About iubenda\u003C\u002Fh3>\n\u003Cp>We help companies all over the world to keep their websites and apps compliant with international privacy laws for optimal peace of mind. \u003Ca href=\"https:\u002F\u002Fwww.iubenda.com\u002F\" rel=\"nofollow ugc\">More here\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Languages\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Our services are currently available in the following languages:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>English US and UK\u003C\u002Fli>\n\u003Cli>Italian\u003C\u002Fli>\n\u003Cli>French\u003C\u002Fli>\n\u003Cli>Spanish\u003C\u002Fli>\n\u003Cli>Portuguese\u003C\u002Fli>\n\u003Cli>Brazilian Portuguese\u003C\u002Fli>\n\u003Cli>German\u003C\u002Fli>\n\u003Cli>Dutch\u003C\u002Fli>\n\u003Cli>Russian\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Support & Updates\u003C\u002Fh3>\n\u003Cp>All our solutions and plugins are \u003Cstrong>regularly updated and well maintained\u003C\u002Fstrong> to ensure that you’re always protected.\u003C\u002Fp>\n\u003Cp>You can access our friendly support in multiple languages (currently EN, IT, DE, FR, PT, PT-BR) via \u003Ca href=\"mailto:info@iubenda.com\" rel=\"nofollow ugc\">info@iubenda.com\u003C\u002Fa>, our \u003Ca href=\"https:\u002F\u002Fwww.iubenda.com\u002F\" rel=\"nofollow ugc\">onsite chat\u003C\u002Fa> \u003Cem>(just click the green Help button on the right side of the page)\u003C\u002Fem>.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Other links:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.iubenda.com\u002Fen\u002Fhelp\" rel=\"nofollow ugc\">Documentation\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fsupport.iubenda.com\u002F\" rel=\"nofollow ugc\">Feedback & Support forum\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n","The solution for GDPR compliance + more. Get your cookie banner, privacy policy, terms and conditions and handle cookie consent in just one plugin.",200000,5312018,94,386,"2026-03-11T13:35:00.000Z","7.0.0",[132,133,134,21,70],"ccpa","cookie-banner","gdpr","https:\u002F\u002Fwww.iubenda.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fiubenda-cookie-law-solution.3.13.1.zip",97,4,"2022-12-12 00:00:00",{"slug":141,"name":142,"version":143,"author":144,"author_profile":145,"description":146,"short_description":147,"active_installs":148,"downloaded":149,"rating":127,"num_ratings":150,"last_updated":151,"tested_up_to":64,"requires_at_least":152,"requires_php":153,"tags":154,"homepage":155,"download_link":156,"security_score":98,"vuln_count":13,"unpatched_count":13,"last_vuln_date":36,"fetched_at":29},"auto-terms-of-service-and-privacy-policy","TermsFeed AutoTerms: Privacy Policy Generator, Cookie Consent, GDPR, CCPA, Terms & Conditions, Disclaimers, Cookies Policy, EULA","3.0.5","TermsFeed","https:\u002F\u002Fprofiles.wordpress.org\u002Ftermsfeed\u002F","\u003Cp>TermsFeed AutoTerms helps you with a wide range of legal requirements your WordPress website might be required to keep up with, such as GDPR, CCPA (CPRA) or Amazon Associates requirements to have a disclosure for affiliate links.\u003C\u002Fp>\n\u003Cp>Previously, TermsFeed AutoTerms was called “WP AutoTerms” and “Auto Terms of Service and Privacy Policy”.\u003C\u002Fp>\n\u003Ch4>Generate Privacy Policy, Terms & Conditions and other legal agreements\u003C\u002Fh4>\n\u003Cp>TermsFeed AutoTerms helps you create the most important legal pages your WordPress website needs using a simple questionnaire, such as:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Privacy Policy\u003C\u002Fli>\n\u003Cli>Terms & Conditions\u003C\u002Fli>\n\u003Cli>Cookies Policy\u003C\u002Fli>\n\u003Cli>Return Policy\u003C\u002Fli>\n\u003Cli>Disclaimer\u003C\u002Fli>\n\u003Cli>EULA\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>You can also create your own legal pages and manage them through the TermsFeed AutoTerms plugin.\u003C\u002Fp>\n\u003Ch4>Compliance Kits\u003C\u002Fh4>\n\u003Cp>“Compliance Kits” help you with certain legal compliance requirements:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\n\u003Cp>Cookie Consent. Manage vendors scripts you use (i.e. Google Analytics) and get user consent before scripts are loaded. Use this Kit and show a notice banner to visitors and get consent from users with “I Agree” and “I Decline” buttons.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Cookie Notice. Inform users whenever cookies are used on your website. Use this Kit and display a simple announcement cookie notice banner.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Links to Legal Pages. Your legal pages must be visible and accessible to all users. Use this Kit and automatically insert the links to your legal pages in the footer section of your website.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Update Notices of Legal Pages. It’s a best practice to inform users of your legal pages content updates. Use this Kit and show an announcement bar for a limited time to inform your users whenever you’ve updated your legal pages.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Endorsements. You need to disclose if you have affiliate links on your website. Use this Kit and include a disclaimer at the start\u002Fend of any posts with affiliate links.\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>DISCLAIMER\u003C\u002Fh4>\n\u003Cp>TermsFeed AutoTerms plugin is provided with the purpose of helping you with various legal compliance requirements. While we do our best to provide you useful information to use as a starting point, nothing can substitute professional legal advice in drafting your legal agreements and\u002For assisting you with legal compliance. We cannot guarantee any conformity with the law, which only a lawyer can do. We are not attorneys. We are not liable for any content, code, or other errors or omissions or inaccuracies. This plugin provides no warranties or guarantees. Nothing in this plugin, therefore, shall be considered legal advice and no attorney-client relationship is established. Please note that in some cases, depending on your legislation, further actions may be required to make your WordPress website compliant with the law.\u003C\u002Fp>\n\u003Ch3>Suggestions\u003C\u002Fh3>\n\u003Cp>Have a chat with us and let us know what you’d like to see added.\u003C\u002Fp>\n\u003Ch3>Honorary Mention\u003C\u002Fh3>\n\u003Cp>Special thanks to this plugin’s original author, Clifford Paulick of https:\u002F\u002Ftourkick.com\u002F\u003C\u002Fp>\n","All-in-One compliance solution from TermsFeed: Generator of Privacy Policy, T&Cs, Affiliate Disclaimers and Cookie Consent Notice Banner.",90000,3404596,244,"2026-01-28T20:29:00.000Z","4.2","5.3",[132,113,114,134,21],"https:\u002F\u002Fwww.termsfeed.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fauto-terms-of-service-and-privacy-policy.3.0.5.zip",{"attackSurface":158,"codeSignals":186,"taintFlows":240,"riskAssessment":241,"analyzedAt":254},{"hooks":159,"ajaxHandlers":174,"restRoutes":175,"shortcodes":176,"cronEvents":185,"entryPointCount":74,"unprotectedCount":13},[160,166,170],{"type":161,"name":162,"callback":163,"file":164,"line":165},"action","admin_menu","wl_tos_menu","wl_tos_pp_generator.php",24,{"type":161,"name":167,"callback":168,"file":164,"line":169},"admin_init","wl_tos_register_options",25,{"type":161,"name":171,"callback":172,"file":164,"line":173},"wp_dashboard_setup","wl_rss_register_widgets",533,[],[],[177,181],{"tag":178,"callback":179,"file":164,"line":180},"wl_tos","wl_tos_tos_shortcode",478,{"tag":182,"callback":183,"file":164,"line":184},"wl_privacypolicy","wl_tos_pp_shortcode",523,[],{"dangerousFunctions":187,"sqlUsage":188,"outputEscaping":190,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":27,"bundledLibraries":239},[],{"prepared":13,"raw":13,"locations":189},[],{"escaped":191,"rawEcho":192,"locations":193},5,23,[194,197,199,200,202,203,205,207,209,211,213,215,217,219,221,223,225,227,229,231,233,235,237],{"file":164,"line":195,"context":196},212,"raw output",{"file":164,"line":198,"context":196},213,{"file":164,"line":198,"context":196},{"file":164,"line":201,"context":196},230,{"file":164,"line":201,"context":196},{"file":164,"line":204,"context":196},231,{"file":164,"line":206,"context":196},288,{"file":164,"line":208,"context":196},304,{"file":164,"line":210,"context":196},309,{"file":164,"line":212,"context":196},311,{"file":164,"line":214,"context":196},313,{"file":164,"line":216,"context":196},323,{"file":164,"line":218,"context":196},327,{"file":164,"line":220,"context":196},338,{"file":164,"line":222,"context":196},342,{"file":164,"line":224,"context":196},346,{"file":164,"line":226,"context":196},360,{"file":164,"line":228,"context":196},371,{"file":164,"line":230,"context":196},376,{"file":164,"line":232,"context":196},380,{"file":164,"line":234,"context":196},388,{"file":164,"line":236,"context":196},576,{"file":164,"line":238,"context":196},577,[],[],{"summary":242,"deductions":243},"The plugin \"terms-of-service-and-privacy-policy\" v1.0 exhibits a mixed security posture. On the positive side, the static analysis shows no dangerous functions, no file operations, and all SQL queries utilize prepared statements, indicating good practices in these areas. The limited attack surface with only two shortcodes, neither of which appear to be unprotected, is also a strength. However, a significant concern is the low percentage of properly escaped output (18%), which presents a substantial risk of Cross-Site Scripting (XSS) vulnerabilities, especially given the plugin's history of such issues.\n\nTaint analysis reveals no identified flows, which is positive, but this could also be due to the limited scope or complexity of the plugin's code that was analyzed. The absence of nonce checks and a low number of capability checks (only 1 identified) across the entry points, despite the identified shortcodes, suggests a potential for authorization bypass issues or insecure handling of user-provided data.\n\nThe plugin has a documented history of one medium-severity CVE, specifically related to Cross-Site Scripting, which is currently unpatched and dated in the future (August 2025). This historical pattern, coupled with the low output escaping rate in static analysis, strongly suggests that XSS is a recurring and significant threat. While the plugin demonstrates strengths in database and file handling, the prevalent output escaping deficiency and the unpatched XSS vulnerability are critical weaknesses that require immediate attention to mitigate security risks.",[244,247,250,252],{"reason":245,"points":246},"Unpatched CVE (medium severity)",17,{"reason":248,"points":249},"Low percentage of properly escaped output (18%)",8,{"reason":251,"points":191},"Lack of nonce checks on entry points",{"reason":253,"points":138},"Low number of capability checks on entry points","2026-03-16T19:21:40.689Z",{"wat":256,"direct":261},{"assetPaths":257,"generatorPatterns":258,"scriptPaths":259,"versionParams":260},[],[],[],[],{"cssClasses":262,"htmlComments":270,"htmlAttributes":271,"restEndpoints":288,"jsGlobals":289,"shortcodeOutput":290},[263,264,265,266,267,268,269],"wrap","nav-tab-wrapper","nav-tab","nav-tab-active","tab-content","manage-menus","form-table",[],[272,273,274,275,276,277,278,279,280,281,282,283,284,285,286,287],"id=\"wl_tos-wp\"","name=\"wl_tos_tos_heading\"","name=\"wl_tos_pp_heading\"","name=\"wl_tos_name\"","name=\"wl_tos_full_name\"","name=\"wl_tos_possessive_name\"","name=\"wl_tos_domain_name\"","name=\"wl_tos_official_site\"","name=\"wl_tos_min_age\"","name=\"wl_tos_time_period_change\"","name=\"wl_tos_time_period_reply\"","name=\"wl_tos_time_period_damage\"","name=\"wl_tos_time_dcma_url\"","name=\"wl_tos_venue\"","name=\"wl_tos_court\"","name=\"wl_tos_arbit\"",[],[],[291,292],"[wl_tos]","[wl_privacypolicy]"]