cleantalk
Vulnerabilities and Security Researches

GDPR Cookie Compliance (CCPA, DSGVO, Cookie Consent), 5ac51325-a7f5-4d38-9b41-61855206083d

CVE, Research URL

5ac51325-a7f5-4d38-9b41-61855206083d

Home page URL

Security reports for GDPR Cookie Compliance (CCPA, DSGVO, Cookie Consent)

Application

GDPR Cookie Compliance (CCPA, DSGVO, Cookie Consent)

Published on
-
Research Description
GDPR Cookie Compliance &#8211; Cookie Banner, Cookie Consent, Cookie Notice for CCPA, EU Cookie Law [gdpr-cookie-compliance] < 4.0.3 GDPR Cookie Compliance &lt;= 4.0.2 - Authenticated Settings Reset The gdpr_cookie_compliance_reset_settings AJAX action registered for authenticated users lacks authorisation and CSRF checks, allowing unauthorised authenticated users to call it, which would result in the settings being reset.
Affected versions
max 4.0.3.
Status
vulnerable
Previous vulnerability researches
Simple GDPR Cookie Compliance (CVE-2026-24604) , Jan 27, 2026
GDPR Cookie Compliance (CCPA, DSGVO, Cookie Consent) (CVE-2019-25143) , Jun 07, 2024
GDPR Cookie Compliance (CCPA, DSGVO, Cookie Consent) (7d5b4ba83a5c6004460bf267fe534a359e1416b0) , Jun 07, 2024
GDPR Cookie Compliance (CCPA, DSGVO, Cookie Consent) (CVE-2023-4013) , Jun 07, 2024
GDPR Cookie Compliance (CCPA, DSGVO, Cookie Consent) (CVE-2025-1621) , Mar 14, 2025
New vulnerability
Customize My Account for WooCommerce (CVE-2026-12136) , Jun 20, 2026
Customize My Account for WooCommerce (CVE-2026-12137) , Jun 20, 2026
Listdom – Business Directory and Classified Ads Listings WordPress Plugin (CVE-2026-54819) , Jun 20, 2026
GIFT4U &#8211; Gift Cards All in One for Woo (CVE-2026-54809) , Jun 20, 2026
WP DSGVO Tools (GDPR) (CVE-2026-10034) , Jun 20, 2026