Description
WordPress Plugin GDPR Cookie Compliance is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently delete its settings. WordPress Plugin GDPR Cookie Compliance version 4.0.2 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 4.0.3 or latest
References
Related Vulnerabilities
Envoy Proxy Origin Validation Error Vulnerability (CVE-2020-15104)
Ruby on Rails Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-0155)
WordPress Plugin Product Catalog Multiple Vulnerabilities (4.2.11)
WordPress Plugin ARPrice-Responsive Pricing Table Cross-Site Scripting (2.2)
e107 Credentials Management Errors Vulnerability (CVE-2013-7305)