ThreatPress

WordPress Vulnerabilities Database

Back

WordPress GDPR Cookie Compliance plugin <= 4.0.2 - Authenticated Settings Reset vulnerability

Product
GDPR Cookie Compliance
Description
Authenticated Settings Reset vulnerability found by Jerome Bruandet in WordPress GDPR Cookie Compliance plugin (versions <= 4.0.2).
Solution
Update the WordPress GDPR Cookie Compliance plugin to the latest available version (at least 4.0.3).
Classification
Type Unknown
OWASP Top 10 A2: Broken Authentication and Session Management
References
Plugin changelog
CVE
Name CVE-N/A
Versions
Affected In <= 4.0.2
Fixed In 4.0.3
Disclosure date
2019-12-27
Credits
Jerome Bruandet (Nintechnet)
Submitter
ThreatPress