cleantalk
Vulnerabilities and Security Researches

Vulnerabilities and security researches forgdpr-cookie-compliance gdpr-cookie-compliance

Direction: descending
Mar 14, 2025

GDPR Cookie Compliance (CCPA, DSGVO, Cookie Consent) # CVE-2025-1620

CVE, Research URL

CVE-2025-1620

Home page URL

Security reports for GDPR Cookie Compliance (CCPA, DSGVO, Cookie Consent)

Application

GDPR Cookie Compliance (CCPA, DSGVO, Cookie Consent)

Date
-
Research Description
GDPR Cookie Compliance &#8211; Cookie Banner, Cookie Consent, Cookie Notice &#8211; CCPA, DSGVO, RGPD [gdpr-cookie-compliance] < 4.15.7 CVE-2025-1620
Affected versions
Min -, max -.
Status
vulnerable

GDPR Cookie Compliance (CCPA, DSGVO, Cookie Consent) # CVE-2025-1621

CVE, Research URL

CVE-2025-1621

Home page URL

Security reports for GDPR Cookie Compliance (CCPA, DSGVO, Cookie Consent)

Application

GDPR Cookie Compliance (CCPA, DSGVO, Cookie Consent)

Date
-
Research Description
GDPR Cookie Compliance &#8211; Cookie Banner, Cookie Consent, Cookie Notice &#8211; CCPA, DSGVO, RGPD [gdpr-cookie-compliance] < 4.15.7 CVE-2025-1621
Affected versions
Min -, max -.
Status
vulnerable
Mar 13, 2025

GDPR Cookie Compliance (CCPA, DSGVO, Cookie Consent) # CVE-2025-1622

CVE, Research URL

CVE-2025-1622

Home page URL

Security reports for GDPR Cookie Compliance (CCPA, DSGVO, Cookie Consent)

Application

GDPR Cookie Compliance (CCPA, DSGVO, Cookie Consent)

Date
-
Research Description
GDPR Cookie Compliance &#8211; Cookie Banner, Cookie Consent, Cookie Notice &#8211; CCPA, DSGVO, RGPD [gdpr-cookie-compliance] < 4.15.7 CVE-2025-1622
Affected versions
Min -, max -.
Status
vulnerable

GDPR Cookie Compliance (CCPA, DSGVO, Cookie Consent) # CVE-2025-2205

CVE, Research URL

CVE-2025-2205

Home page URL

Security reports for GDPR Cookie Compliance (CCPA, DSGVO, Cookie Consent)

Application

GDPR Cookie Compliance (CCPA, DSGVO, Cookie Consent)

Date
Mar 12, 2025
Research Description
The GDPR Cookie Compliance – Cookie Banner, Cookie Consent, Cookie Notice – CCPA, DSGVO, RGPD plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 4.15.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled.
Affected versions
Min -, max -.
Status
vulnerable
Jun 07, 2024

GDPR Cookie Compliance (CCPA, DSGVO, Cookie Consent) # CVE-2019-25143

CVE, Research URL

CVE-2019-25143

Home page URL

Security reports for GDPR Cookie Compliance (CCPA, DSGVO, Cookie Consent)

Application

GDPR Cookie Compliance (CCPA, DSGVO, Cookie Consent)

Date
Jun 07, 2023
Research Description
The GDPR Cookie Compliance plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the gdpr_cookie_compliance_reset_settings AJAX action in versions up to, and including, 4.0.2. This makes it possible for authenticated attackers to reset all of the settings.
Affected versions
Min -, max -.
Status
vulnerable

GDPR Cookie Compliance (CCPA, DSGVO, Cookie Consent) # 7d5b4ba83a5c6004460bf267fe534a359e1416b0

CVE, Research URL

7d5b4ba83a5c6004460bf267fe534a359e1416b0

Home page URL

Security reports for GDPR Cookie Compliance (CCPA, DSGVO, Cookie Consent)

Application

GDPR Cookie Compliance (CCPA, DSGVO, Cookie Consent)

Date
Dec 27, 2019
Research Description
GDPR Cookie Compliance &#8211; Cookie Banner, Cookie Consent, Cookie Notice &#8211; CCPA, DSGVO, RGPD [gdpr-cookie-compliance] < 4.0.3 WordPress GDPR Cookie Compliance plugin <= 4.0.2 - Authenticated Settings Reset vulnerability Authenticated Settings Reset vulnerability found by Jerome Bruandet in WordPress GDPR Cookie Compliance plugin (versions <= 4.0.2).
Affected versions
Min -, max -.
Status
vulnerable

GDPR Cookie Compliance (CCPA, DSGVO, Cookie Consent) # CVE-2023-4013

CVE, Research URL

CVE-2023-4013

Home page URL

Security reports for GDPR Cookie Compliance (CCPA, DSGVO, Cookie Consent)

Application

GDPR Cookie Compliance (CCPA, DSGVO, Cookie Consent)

Date
Aug 30, 2023
Research Description
The GDPR Cookie Compliance (CCPA, DSGVO, Cookie Consent) WordPress plugin before 4.12.5 does not have proper CSRF checks when managing its license, which could allow attackers to make logged in admins update and deactivate the plugin's license via CSRF attacks
Affected versions
Min -, max -.
Status
vulnerable