6 matches found
CVE-2025-1619
The GDPR Cookie Compliance WordPress plugin before 4.15.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2025-1619
creationtimestamp| type| source ---|---|--- 2025-03-16 06:46:13+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/7705 2025-03-16 08:00:53+00:00| seen| https://t.me/cvedetector/20403...
CVE-2025-1619
The GDPR Cookie Compliance WordPress plugin before 4.15.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2025-1619 GDPR Cookie Compliance < 4.15.7 - Admin+ Stored XSS
The GDPR Cookie Compliance WordPress plugin before 4.15.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2025-1619 GDPR Cookie Compliance < 4.15.7 - Admin+ Stored XSS
The GDPR Cookie Compliance WordPress plugin before 4.15.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2025-1619
CVE-2025-1619 affects GDPR Cookie Compliance (WordPress plugin) up to version 4.15.7. The issue is Admin+ stored XSS due to insufficient sanitization/escaping of settings, potentially exploitable in multisite configurations where unfiltered_html is disallowed. Red Hat and Patchstack corroborate t...