Lucene search
Ace Candelario (@0xspade)PATCHSTACK:05341B265A3CF4BAB57BD6059D91016FHistoryJan 26, 2022 - 12:00 a.m.
WordPress WordPress GDPR & CCPA premium plugin <= 1.9.25 - Authenticated Reflected Cross-Site Scripting (XSS) vulnerability
2022-01-2600:00:00
Ace Candelario (@0xspade)
patchstack.com
7
0.003 Low
EPSS
Percentile
66.4%
Authenticated Reflected Cross-Site Scripting (XSS) vulnerability discovered by Ace Candelario (@0xspade) and Victor Paynat-Sautivet (3DS Outscale SOC) in WordPress WordPress GDPR & CCPA premium plugin (versions <= 1.9.25).
Solution
Update the WordPress WordPress GDPR & CCPA premium plugin to the latest available version (at least 1.9.26).
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress gdpr & ccpa | le | 1.9.25 |
Related
cvelist
cvelist
wpexploit
wpexploit
wpvulndb
wpvulndb
prion
prion
Type confusion
2022-02-01 13:15:00
nvd
nvd
CVE-2021-24814
2022-02-01 13:15:08
cve
cve
CVE-2021-24814
2022-02-01 13:15:08