CookieHub – Cookie Consent Banner (DSGVO, CCPA, RGPD and GDPR compliance)

Take control effortlessly with CookieHub – GDPR-compliant solution for cookie management and compliance.

v1.2.3CookieHubUpdated 29 days agoAdded 6 years ago3k+ installs100% rating

CCPA GDPR cookie consent cookie notice dsgvo

Score

Errors

Warnings

Change

Category Scores

Security0

Repo100

Performance100

Maintainability83

Issues to Review

Prioritized issue groups from the latest Plugin Check scan

82 findings

Security

6 issue groups

Maintainability

5 issue groups

I18n

1 issue group

ERRORSecurityOutput is not escapedAll output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$baseUrl'.20

Category: Security
Occurrences: 20
Severity: error

Sample message

All output should be run through an escaping function (see the Security sections in the WordPress Developer Handbooks), found '$baseUrl'.

WordPress.Security.EscapeOutput.OutputNotEscaped Reference

WARNINGSecurityRequest data is not unslashed$_GET['tab'] not unslashed before sanitization. Use wp_unslash() or similar17

Category: Security
Occurrences: 17
Severity: warning

Sample message

$_GET['tab'] not unslashed before sanitization. Use wp_unslash() or similar

WordPress.Security.ValidatedSanitizedInput.MissingUnslash

WARNINGSecurityInput is not sanitizedDetected usage of a non-sanitized input variable: $_GET['tab']13

Category: Security
Occurrences: 13
Severity: warning

Sample message

Detected usage of a non-sanitized input variable: $_GET['tab']

WordPress.Security.ValidatedSanitizedInput.InputNotSanitized

WARNINGMaintainabilityNon-prefixed functionFunctions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "authenticate".12

Category: Maintainability
Occurrences: 12
Severity: warning

Sample message

Functions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "authenticate".

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedFunctionFound

ERRORMaintainabilityMissing direct file access protectionPHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;7

Category: Maintainability
Occurrences: 7
Severity: error

Sample message

PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;

missing_direct_file_access_protection Reference

WARNINGSecurityMissing nonce verificationProcessing form data without nonce verification.4

Category: Security
Occurrences: 4
Severity: warning

Sample message

Processing form data without nonce verification.

WordPress.Security.NonceVerification.Missing

WARNINGSecurityNonce verification recommendedProcessing form data without nonce verification.2

Category: Security
Occurrences: 2
Severity: warning

Sample message

Processing form data without nonce verification.

WordPress.Security.NonceVerification.Recommended

ERRORMaintainabilityNo Explicit VersionVersion parameter is not explicitly set or has been set to an equivalent of "false" for wp_register_script; This means that the WordPress core version will be used which is not recommended for plugin or theme development.2

Category: Maintainability
Occurrences: 2
Severity: error

Sample message

Version parameter is not explicitly set or has been set to an equivalent of "false" for wp_register_script; This means that the WordPress core version will be used which is not recommended for plugin or theme development.

WordPress.WP.EnqueuedResourceParameters.NoExplicitVersion

ERRORMaintainabilityNon Enqueued ScriptScripts must be registered/enqueued via wp_enqueue_script()2

Category: Maintainability
Occurrences: 2
Severity: error

Sample message

Scripts must be registered/enqueued via wp_enqueue_script()

WordPress.WP.EnqueuedResources.NonEnqueuedScript

ERRORSecurityUnsafe printing functionAll output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.1

Category: Security
Occurrences: 1
Severity: error

Sample message

All output should be run through an escaping function (like esc_html_e() or esc_attr_e()), found '_e'.

WordPress.Security.EscapeOutput.UnsafePrintingFunction Reference

Show 2 more

WARNINGMaintainabilityMissing Version1

Category: Maintainability
Occurrences: 1
Severity: warning

Sample message

Resource version not set in call to wp_register_style(). This means new versions of the style may not always be loaded due to browser caching.

WordPress.WP.EnqueuedResourceParameters.MissingVersion

ERRORI18nText Domain Mismatch1

Category: I18n
Occurrences: 1
Severity: error

Sample message

Mismatched text domain. Expected 'cookiehub' but got 'my-setting-admin'.

WordPress.WP.I18n.TextDomainMismatch Reference

External Connections

Not analyzed yet.

Score History

First score snapshot

3 days ago

v1.2.3

Latest

Findings: 82
Errors: 33
Warnings: 49
Check: 2.0.0

Scan	Score	Findings	Errors	Warnings	Plugin	Check
3 days agoLatest	42	82	33	49	v1.2.3	2.0.0

Relationship Map

Author, categories, issues, domains, and nearby plugins.

29 nodes

Loading map

PluginAuthorCategoryIssueRelated

Relationship links

Issue

Related Plugins

Disable Emojis (GDPR friendly)

60k+ active installs

100

WS Form LITE – Drag & Drop Contact Form Builder

10k+ active installs

100

Additional Terms for WooCommerce

2k+ active installs

consentmanager Cookie Banner

5k+ active installs

Simple Cookie Notice

2k+ active installs

Flexible Cookies

3k+ active installs