cleantalk
Vulnerabilities and Security Researches

Cookie Notice & Consent, CVE-2025-49390

CVE, Research URL

CVE-2025-49390

Home page URL

Security reports for Cookie Notice & Consent

Application

Cookie Notice & Consent

Published on
Nov 06, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in christophrado Cookie Notice & Consent cookie-notice-consent allows Stored XSS.This issue affects Cookie Notice & Consent: from n/a through <= 1.6.4.
Affected versions
max 1.6.4.
Status
vulnerable
Previous vulnerability researches
One Click Accessibility (CVE-2025-32640) , Apr 10, 2025
One Click Accessibility (CVE-2025-10700) , Nov 10, 2025
New vulnerability
WPC Smart Quick View for WooCommerce (CVE-2025-11741) , Nov 11, 2025
Outdoor (CVE-2025-10743) , Nov 11, 2025
WP AD Gallery (CVE-2025-11834) , Nov 11, 2025
MSTW CSV EXPORTER (CVE-2025-62944) , Nov 11, 2025
TopBar (CVE-2025-10300) , Nov 11, 2025