cleantalk
Vulnerabilities and Security Researches

Cookie Notice & Consent, CVE-2025-49390

CVE, Research URL

CVE-2025-49390

Home page URL

Security reports for Cookie Notice & Consent

Application

Cookie Notice & Consent

Published on
Nov 06, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in christophrado Cookie Notice & Consent cookie-notice-consent allows Stored XSS.This issue affects Cookie Notice & Consent: from n/a through <= 1.6.4.
Affected versions
max 1.6.4.
Status
vulnerable
Previous vulnerability researches
OOPSpam Anti-Spam (CVE-2025-12094) , Nov 10, 2025
OOPSpam Anti-Spam (2abea83e21a0323c5a51444c6b7c720291723c81) , Jun 07, 2024
OOPSpam Anti-Spam (CVE-2023-22716) , Jun 07, 2024
OOPSpam Anti-Spam (CVE-2023-35913) , Jun 07, 2024
New vulnerability
WPC Smart Quick View for WooCommerce (CVE-2025-11741) , Nov 11, 2025
Outdoor (CVE-2025-10743) , Nov 11, 2025
WP AD Gallery (CVE-2025-11834) , Nov 11, 2025
MSTW CSV EXPORTER (CVE-2025-62944) , Nov 11, 2025
TopBar (CVE-2025-10300) , Nov 11, 2025