USERCENTRICS CMP Security & Risk Analysis

The usercentrics-consent-management-platform plugin v1.0.9 exhibits a mixed security posture. On the positive side, the static analysis reveals a commendably small attack surface with no apparent AJAX handlers, REST API routes, shortcodes, or cron events that are exposed without authentication. Furthermore, the code shows good practices regarding SQL queries, with 100% utilizing prepared statements, and no file operations or external HTTP requests were detected, all of which reduce potential attack vectors. However, a significant concern is the output escaping, where only 38% of outputs are properly escaped, suggesting a high risk of Cross-Site Scripting (XSS) vulnerabilities, especially considering the historical vulnerability data. The lack of nonce checks and capability checks also contributes to a weaker security foundation, as these are fundamental security mechanisms for WordPress plugins.

The vulnerability history indicates a past medium-severity Cross-Site Scripting vulnerability, which was discovered on 2025-10-04 and remains unpatched. This is a critical red flag, especially combined with the low percentage of properly escaped outputs found in the static analysis. The presence of an unpatched vulnerability of this nature, even if medium severity, indicates a potential for exploitation and highlights a deficiency in the plugin's maintenance and security update processes. While the plugin has a small attack surface and good SQL practices, the output escaping issues and the unpatched XSS vulnerability create a notable risk that needs immediate attention.