Real Cookie Banner: GDPR & ePrivacy Cookie Consent

Obtain GDPR (DSGVO/RGPD) and ePrivacy Directive (TDDDG/TTDSG, LOPD-GDD, DTA) compliant consents in your cookie banner. More than just a cookie notice!

v5.2.25devowl.io GmbHUpdated 2026-05-27Added Nov 17, 2020100k+ installs98% rating50% support resolved

GDPR cookie banner cookie consent cookie plugin ePrivacy

Score

Errors

496

Warnings

Change

Category Scores

Security0

Repo100

Performance100

Maintainability26

Top Issues by Category

maintainability330

1Direct QueryWordPress.DB.DirectDatabaseQuery.DirectQueryWARNING92 2No CachingWordPress.DB.DirectDatabaseQuery.NoCachingWARNING84 3Non Prefixed Hookname FoundWordPress.NamingConventions.PrefixAllGlobals.NonPrefixedHooknameFoundWARNING69 4Non Prefixed Constant FoundWordPress.NamingConventions.PrefixAllGlobals.NonPrefixedConstantFoundWARNING27 5Schema ChangeWordPress.DB.DirectDatabaseQuery.SchemaChangeWARNING12 6slow db query meta queryWordPress.DB.SlowDBQuery.slow_db_query_meta_queryWARNING10 7Non Prefixed Function FoundWordPress.NamingConventions.PrefixAllGlobals.NonPrefixedFunctionFoundWARNING10 8Non Prefixed Variable FoundWordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFoundWARNING6 9parse url parse urlWordPress.WP.AlternativeFunctions.parse_url_parse_urlERROR5 10slow db query tax queryWordPress.DB.SlowDBQuery.slow_db_query_tax_queryWARNING2 11error log debug backtraceWordPress.PHP.DevelopmentFunctions.error_log_debug_backtraceWARNING2 12unexpected markdown fileunexpected_markdown_fileWARNING2 13slow db query meta keyWordPress.DB.SlowDBQuery.slow_db_query_meta_keyWARNING1 14slow db query meta valueWordPress.DB.SlowDBQuery.slow_db_query_meta_valueWARNING1 15file system operations fwriteWordPress.WP.AlternativeFunctions.file_system_operations_fwriteERROR1 16rand mt randWordPress.WP.AlternativeFunctions.rand_mt_randERROR1 17Non Enqueued ScriptWordPress.WP.EnqueuedResources.NonEnqueuedScriptERROR1 18mismatched plugin namemismatched_plugin_nameWARNING1 19missing composer json filemissing_composer_json_fileWARNING1 20missing direct file access protectionmissing_direct_file_access_protectionERROR1 21upgrade notice limitupgrade_notice_limitWARNING1

security175

1Unescaped DBParameterPluginCheck.Security.DirectDB.UnescapedDBParameterWARNING111 2RecommendedWordPress.Security.NonceVerification.RecommendedWARNING64

Issues Details

505 issues found in latest scan

WARNING111

PluginCheck.Security.DirectDB.UnescapedDBParameter

Unescaped parameter $expressionSql used in $wpdb->get_results()\n$expressionSql assigned unsafely at line 211.

WARNING92

WordPress.DB.DirectDatabaseQuery.DirectQuery

Use of a direct database call is discouraged.

WARNING84

WordPress.DB.DirectDatabaseQuery.NoCaching

Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().

WARNING69

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedHooknameFound

Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "'RCB/Migration/' . $migrationId . '/' . $actionId".

WARNING64

WordPress.Security.NonceVerification.Recommended

Processing form data without nonce verification.

WARNING27

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedConstantFound

Global constants defined by a theme/plugin should start with the theme/plugin prefix. Found: "RCB_DB_PREFIX".

WARNING12

WordPress.DB.DirectDatabaseQuery.SchemaChange

Attempting a database schema change is discouraged.

WARNING10

WordPress.DB.SlowDBQuery.slow_db_query_meta_query

Detected usage of meta_query, possible slow query.

WARNING10

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedFunctionFound

Functions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "rcb_skip_already_admin_notice".

WARNING6

WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound

Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$apiInclude".

ERROR5

WordPress.WP.AlternativeFunctions.parse_url_parse_url

parse_url() is discouraged because of inconsistency in the output across PHP versions; use wp_parse_url() instead.

WARNING2

WordPress.DB.SlowDBQuery.slow_db_query_tax_query

Detected usage of tax_query, possible slow query.

WARNING2

WordPress.PHP.DevelopmentFunctions.error_log_debug_backtrace

debug_backtrace() found. Debug code should not normally be used in production.

WARNING2

unexpected_markdown_file

Unexpected markdown file "LICENSE_3RD_PARTY_JS.md" detected in plugin root. Only specific markdown files are expected in production plugins.

WARNING1

WordPress.DB.SlowDBQuery.slow_db_query_meta_key

Detected usage of meta_key, possible slow query.

WARNING1

WordPress.DB.SlowDBQuery.slow_db_query_meta_value

Detected usage of meta_value, possible slow query.

ERROR1

WordPress.WP.AlternativeFunctions.file_system_operations_fwrite

File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fwrite().

ERROR1

WordPress.WP.AlternativeFunctions.rand_mt_rand

mt_rand() is discouraged. Use the far less predictable wp_rand() instead.

ERROR1

WordPress.WP.EnqueuedResources.NonEnqueuedScript

Scripts must be registered/enqueued via wp_enqueue_script()

WARNING1

mismatched_plugin_name

Plugin name "Real Cookie Banner: GDPR & ePrivacy Cookie Consent" is different from the name declared in plugin header "Real Cookie Banner (Free)".

WARNING1

missing_composer_json_file

The "/vendor" directory using composer exists, but "composer.json" file is missing.

ERROR1

missing_direct_file_access_protection

PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;

WARNING1

upgrade_notice_limit

The upgrade notice for "5.0" exceeds the limit of 300 characters.

Code	Type	Message	Count
PluginCheck.Security.DirectDB.UnescapedDBParameter	WARNING	Unescaped parameter $expressionSql used in $wpdb->get_results()\n$expressionSql assigned unsafely at line 211.	111
WordPress.DB.DirectDatabaseQuery.DirectQuery	WARNING	Use of a direct database call is discouraged.	92
WordPress.DB.DirectDatabaseQuery.NoCaching	WARNING	Direct database call without caching detected. Consider using wp_cache_get() / wp_cache_set() or wp_cache_delete().	84
WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedHooknameFound	WARNING	Hook names invoked by a theme/plugin should start with the theme/plugin prefix. Found: "'RCB/Migration/' . $migrationId . '/' . $actionId".	69
WordPress.Security.NonceVerification.Recommended	WARNING	Processing form data without nonce verification.	64
WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedConstantFound	WARNING	Global constants defined by a theme/plugin should start with the theme/plugin prefix. Found: "RCB_DB_PREFIX".	27
WordPress.DB.DirectDatabaseQuery.SchemaChange	WARNING	Attempting a database schema change is discouraged.	12
WordPress.DB.SlowDBQuery.slow_db_query_meta_query	WARNING	Detected usage of meta_query, possible slow query.	10
WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedFunctionFound	WARNING	Functions declared in the global namespace by a theme/plugin should start with the theme/plugin prefix. Found: "rcb_skip_already_admin_notice".	10
WordPress.NamingConventions.PrefixAllGlobals.NonPrefixedVariableFound	WARNING	Global variables defined by a theme/plugin should start with the theme/plugin prefix. Found: "$apiInclude".	6
WordPress.WP.AlternativeFunctions.parse_url_parse_url	ERROR	parse_url() is discouraged because of inconsistency in the output across PHP versions; use wp_parse_url() instead.	5
WordPress.DB.SlowDBQuery.slow_db_query_tax_query	WARNING	Detected usage of tax_query, possible slow query.	2
WordPress.PHP.DevelopmentFunctions.error_log_debug_backtrace	WARNING	debug_backtrace() found. Debug code should not normally be used in production.	2
unexpected_markdown_file	WARNING	Unexpected markdown file "LICENSE_3RD_PARTY_JS.md" detected in plugin root. Only specific markdown files are expected in production plugins.	2
WordPress.DB.SlowDBQuery.slow_db_query_meta_key	WARNING	Detected usage of meta_key, possible slow query.	1
WordPress.DB.SlowDBQuery.slow_db_query_meta_value	WARNING	Detected usage of meta_value, possible slow query.	1
WordPress.WP.AlternativeFunctions.file_system_operations_fwrite	ERROR	File operations should use WP_Filesystem methods instead of direct PHP filesystem calls. Found: fwrite().	1
WordPress.WP.AlternativeFunctions.rand_mt_rand	ERROR	mt_rand() is discouraged. Use the far less predictable wp_rand() instead.	1
WordPress.WP.EnqueuedResources.NonEnqueuedScript	ERROR	Scripts must be registered/enqueued via wp_enqueue_script()	1
mismatched_plugin_name	WARNING	Plugin name "Real Cookie Banner: GDPR & ePrivacy Cookie Consent" is different from the name declared in plugin header "Real Cookie Banner (Free)".	1
missing_composer_json_file	WARNING	The "/vendor" directory using composer exists, but "composer.json" file is missing.	1
missing_direct_file_access_protection	ERROR	PHP file should prevent direct access. Add a check like: if ( ! defined( 'ABSPATH' ) ) exit;	1
upgrade_notice_limit	WARNING	The upgrade notice for "5.0" exceeds the limit of 300 characters.	1

Latest Snapshot

Findings

505

Errors

Warnings

496

Score History

First score snapshot

First scan completed Jun 19, 2026

v5.2.25 · Plugin Check 2.0.0 · Model 2026.06-mvp-static-v2

Jun 19, 2026

v5.2.25

Latest

Findings: 505
Errors: 9
Warnings: 496
Plugin Check: 2.0.0
Model: 2026.06-mvp-static-v2

Scan	Score	Findings	Errors	Warnings	Plugin	Plugin Check	Model
Jun 19, 2026Latest	30	505	9	496	v5.2.25	2.0.0	2026.06-mvp-static-v2

Related Plugins

Disable Emojis (GDPR friendly)

60k+ active installs

100

WS Form LITE – Drag & Drop Contact Form Builder

10k+ active installs

GDPR contact form form builder

100

Local Google Fonts

100k+ active installs

GDPR font fonts

Cookie Consent – GDPR & CCPA Cookie Banner & Consent Manager

10k+ active installs

CCPA GDPR compliance

LegalBlink for Aruba

6k+ active installs

GDPR compliance cookie

WPConsent – Cookie Banner & Cookie Consent for Privacy Compliance (GDPR / CCPA / EU Compliance Cookie Notice)

100k+ active installs

CCPA GDPR cookie banner