Real Cookie Banner: GDPR & ePrivacy Cookie Consent, CVE-2022-0445
- CVE, Research URL
- Published on
- Mar 07, 2022
- Research Description
- The WordPress Real Cookie Banner: GDPR (DSGVO) & ePrivacy Cookie Consent WordPress plugin before 2.14.2 does not have CSRF checks in place when resetting its settings, allowing attackers to make a logged in admin reset them via a CSRF attack
- Affected versions
-
Min -, max 2.18.2.
- Status
-
vulnerable