Description
WordPress Plugin GDPR Cookie Compliance is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently delete its settings. WordPress Plugin GDPR Cookie Compliance version 4.0.2 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 4.0.3 or latest
References
Related Vulnerabilities
Sqlite Out-of-bounds Read Vulnerability (CVE-2021-31239)
WordPress Plugin Gallery-Video Gallery and Youtube Gallery Multiple Vulnerabilities (2.0.3)
WordPress Plugin Woopra Analytics Arbitrary File Upload (1.4.3.1)
phpMyFAQ Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-0792)
WordPress Plugin Store Locator Plus for WordPress Cross-Site Scripting (5.5.15)