cleantalk
Vulnerabilities and Security Researches

Legal Pages – Privacy Policy, Terms & Conditions, GDPR, CCPA, and Cookie Notice Generator, CVE-2025-66077

CVE, Research URL

CVE-2025-66077

Home page URL

Security reports for Legal Pages – Privacy Policy, Terms & Conditions, GDPR, CCPA, and Cookie Notice Generator

Application

Legal Pages – Privacy Policy, Terms & Conditions, GDPR, CCPA, and Cookie Notice Generator

Published on
Nov 21, 2025
Research Description
Missing Authorization vulnerability in wpWax Legal Pages legal-pages allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Legal Pages: from n/a through <= 1.4.6.
Affected versions
max 1.4.6.
Status
vulnerable
Previous vulnerability researches
Legal Pages – Privacy Policy, Terms &amp; Conditions, GDPR, CCPA, and Cookie Notice Generator (CVE-2025-48242) , May 21, 2025
Legal Pages – Privacy Policy, Terms &amp; Conditions, GDPR, CCPA, and Cookie Notice Generator (CVE-2024-32451) , Jun 07, 2024
Legal Pages – Privacy Policy, Terms &amp; Conditions, GDPR, CCPA, and Cookie Notice Generator (084dab8c7b45c08dac1d8e949f0312502db1625f) , Jun 07, 2024
Legal Pages – Privacy Policy, Terms &amp; Conditions, GDPR, CCPA, and Cookie Notice Generator (CVE-2023-47824) , Jun 07, 2024
Legal Pages – Privacy Policy, Terms &amp; Conditions, GDPR, CCPA, and Cookie Notice Generator (CVE-2023-50886) , Jun 07, 2024
New vulnerability
Security & Malware scan by CleanTalk , Apr 03, 2026
OOPSpam Anti-Spam (CVE-2026-32544) , Mar 31, 2026
NotificationX &#8211; Best FOMO, Social Proof, WooCommerce Sales Popup &amp; Notification Bar Plugin With Elementor (CVE-2026-27042) , Mar 31, 2026
The Conference (CVE-2026-32335) , Mar 31, 2026
WP Booking System &#8211; Booking Calendar (CVE-2025-68515) , Mar 31, 2026