Description
WordPress Plugin GDPR Cookie Compliance is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently delete its settings. WordPress Plugin GDPR Cookie Compliance version 4.0.2 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 4.0.3 or latest
References
Related Vulnerabilities
OpenSSL Cryptographic Issues Vulnerability (CVE-2009-3555)
WordPress 4.6.x Multiple Vulnerabilities (4.6 - 4.6.24)
WordPress 4.9.x Multiple Vulnerabilities (4.9 - 4.9.23)
WordPress Plugin Sagenda-Free booking system PHP Object Injection (1.3.2)
WordPress Plugin Email newsletter Cross-Site Scripting (20.13.6)