cleantalk
Vulnerabilities and Security Researches

Real Cookie Banner: GDPR & ePrivacy Cookie Consent, CVE-2022-0445

CVE, Research URL

CVE-2022-0445

Home page URL

Security reports for Real Cookie Banner: GDPR & ePrivacy Cookie Consent

Application

Real Cookie Banner: GDPR & ePrivacy Cookie Consent

Published on
Mar 07, 2022
Research Description
The WordPress Real Cookie Banner: GDPR (DSGVO) & ePrivacy Cookie Consent WordPress plugin before 2.14.2 does not have CSRF checks in place when resetting its settings, allowing attackers to make a logged in admin reset them via a CSRF attack
Affected versions
max 2.18.2.
Status
vulnerable
Previous vulnerability researches
Real Cookie Banner: GDPR & ePrivacy Cookie Consent (CVE-2025-1485) , Jun 04, 2025
Real Cookie Banner: GDPR & ePrivacy Cookie Consent (CVE-2025-12136) , Nov 09, 2025
Real Cookie Banner: GDPR & ePrivacy Cookie Consent (CVE-2022-4507) , Jun 07, 2024
Real Cookie Banner: GDPR & ePrivacy Cookie Consent (CVE-2022-0445) , Jun 07, 2024
New vulnerability
Popup Maker – Popup for opt-ins, lead gen, & more (CVE-2025-9490) , Nov 09, 2025
Real Cookie Banner: GDPR & ePrivacy Cookie Consent (CVE-2025-12136) , Nov 09, 2025
Smart Coupons For WooCommerce Coupons (CVE-2025-64358) , Nov 09, 2025
Media Library Assistant (CVE-2025-11738) , Nov 09, 2025
FileBird – WordPress Media Library Folders & File Manager (CVE-2025-11510) , Oct 29, 2025