cleantalk
Vulnerabilities and Security Researches

GDPR CCPA Compliance Support, CVE-2025-48260

CVE, Research URL

CVE-2025-48260

Home page URL

Security reports for GDPR CCPA Compliance Support

Application

GDPR CCPA Compliance Support

Published on
May 19, 2025
Research Description
Missing Authorization vulnerability in Ninja Team GDPR CCPA Compliance Support allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects GDPR CCPA Compliance Support: from n/a through 2.7.3.
Affected versions
Min -, max 2.7.4.
Status
vulnerable
Previous vulnerability researches
Course Booking System (CVE-2025-32253) , Apr 06, 2025
Course Booking System (CVE-2025-22785) , Jan 17, 2025
Course Booking System (CVE-2025-32508) , Apr 19, 2025
New vulnerability
Element Pack Elementor Addons (Header Footer, Free Template Library, Grid, Carousel, Table, Parallax Animation, Register Form, (CVE-2025-5292) , Jun 06, 2025
Newsletters (CVE-2025-4857) , Jun 06, 2025
Royal Elementor Addons and Templates (CVE-2025-3813) , Jun 06, 2025
Post Slider and Post Carousel with Post Vertical Scrolling Widget – A Responsive Post Slider (CVE-2025-4567) , Jun 06, 2025
Popup Maker – Popup for opt-ins, lead gen, & more (CVE-2025-4205) , Jun 06, 2025