Lucene search
K

81 matches found

CNNVD
CNNVD
added 2025/11/22 12:0 a.m.9 views

WordPress plugin Cookie Notice & Compliance for GDPR / CCPA 跨站脚本漏洞

WordPress and the WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. WordPress is a blogging platform developed using the PHP language, which provides the ability to host a personal blog site on a PHP and MySQL based...

6.4CVSS5.6AI score0.00194EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/11/21 12:0 a.m.5 views

PT-2025-47747

Missing Authorization vulnerability in WP Legal Pages WP Cookie Notice for GDPR, CCPA & ePrivacy Consent gdpr-cookie-consent allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Cookie Notice for GDPR, CCPA & ePrivacy Consent: from n/a through = 4.0.3...

7AI score0.00249EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/11/08 8:55 a.m.6 views

WordPress WP Cookie Notice for GDPR, CCPA & ePrivacy Consent plugin <= 4.0.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin WP Cookie Notice for GDPR, CCPA & ePrivacy Consent versions = 4.0.3...

4.2CVSS7AI score0.00249EPSS
Exploits0Affected Software1
EUVD
EUVD
added 2025/10/22 6:40 a.m.5 views

EUVD-2025-35350

The PixelYourSite – Your smart PIXEL TAG & API Manager plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 11.1.2. This is due to missing or incorrect nonce validation on the adminEnableGdprAjax function. This makes it possible for unauthenticate...

4.3CVSS4.8AI score0.00147EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/10/22 12:0 a.m.4 views

WordPress plugin PixelYourSite 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site request...

4.3CVSS6.5AI score0.00147EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-9017

Malicious code in bioql PyPI...

8.1CVSS6.4AI score0.00193EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-26559

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.0019EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/05 3:22 p.m.8 views

CVE-2025-58607

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in GDPR Info Cookie Notice & Consent Banner for GDPR & CCPA Compliance cookie-notice-and-consent-banner allows Stored XSS.This issue affects Cookie Notice & Consent Banner for GDPR & CCPA Compliance:...

6.5CVSS5.9AI score0.0019EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/09/03 12:0 a.m.4 views

WordPress plugin Cookie Notice & Consent Banner for GDPR & CCPA Compliance 跨站脚本漏洞

WordPress and the WordPress plugin are products of the WordPress Foundation, a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blogs on PHP and MySQL servers. A cross-site scripting vulnerability exists in WordPress plugin Cookie...

6.5CVSS5.7AI score0.0019EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2025/08/18 10:15 a.m.8 views

Wazuh for Regulatory Compliance

Organizations handling various forms of sensitive data or personally identifiable information PII require adherence to regulatory compliance standards and frameworks. These compliance standards also apply to organizations operating in regulated sectors such as healthcare, finance, government...

6.8AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/08/18 7:16 a.m.8 views

CVE-2025-8896

The User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'gdprcommunicationpreferences' parameter in all versions up to, and including, 3.14.3 due to insufficient input sanitization and...

6.4CVSS6AI score0.00185EPSS
Exploits0References1
Microsoft Secure
Microsoft Secure
added 2025/06/18 4:0 p.m.10 views

Data Breach Reporting for regulatory requirements with Microsoft Data Security Investigations​​

Seventy-four percent of organizations surveyed experienced at least one data security incident with their business data exposed in the previous year as reported in Microsoft’s Data Security Index: Trends, insights, and strategies to secure data report. Despite the best people, process and...

6.8AI score
Exploits0
CNNVD
CNNVD
added 2025/06/06 12:0 a.m.6 views

WordPress plugin WP Cookie Notice for GDPR, CCPA & ePrivacy Consent 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...

4.3CVSS4.8AI score0.0014EPSS
Exploits0References1
OSV
OSV
added 2025/05/28 5:43 p.m.3 views

DRUPAL-CONTRIB-2025-072

This module addresses the General Data Protection Regulation GDPR and the EU Directive on Privacy and Electronic Communications. The module doesn't sufficiently verify whether "disabled JavaScript" entries are valid or correspond to actual scripts on the page. As a result, an attacker could injec...

5CVSS7.1AI score0.00187EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/05/28 12:0 a.m.8 views

Drupal EU Cookie Compliance (GDPR Compliance) module < 1.26.0 - Authenticated Cross Site Scripting (XSS) vulnerability

Authenticated Cross Site Scripting XSS vulnerability discovered by Pierre Rudloff prudloff in WordPress Module EU Cookie Compliance GDPR Compliance versions 1.26.0...

5CVSS6.1AI score0.00187EPSS
Exploits0References1Affected Software1
The Hacker News
The Hacker News
added 2025/05/15 4:45 p.m.15 views

Noyb Threatens Meta with Lawsuit for Violating GDPR to Train AI on E.U. User Data From May 27

Austrian privacy non-profit noyb none of your business has sent Meta's Irish headquarters a cease-and-desist letter, threatening the company with a class action lawsuit if it proceeds with its plans to train users' data for training its artificial intelligence AI models without an explicit opt-in...

6.6AI score
Exploits0
CNNVD
CNNVD
added 2025/05/15 12:0 a.m.3 views

WordPress plugin GDPR Framework By Data443 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability exists in...

4.8CVSS4.9AI score0.00266EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/04/02 10:58 p.m.16 views

CVE-2025-31689

Cross-Site Request Forgery CSRF vulnerability in Drupal General Data Protection Regulation allows Cross Site Request Forgery.This issue affects General Data Protection Regulation: from 0.0.0 before 3.0.1, from 3.1.0 before 3.1.2...

8.1CVSS7.2AI score0.00193EPSS
Exploits0References3
OSV
OSV
added 2025/04/01 12:30 a.m.5 views

GHSA-JV6R-MJ9P-9XFF Drupal General Data Protection Regulation Cross-Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Drupal General Data Protection Regulation allows Cross Site Request Forgery. This issue affects General Data Protection Regulation: from 0.0.0 before 3.0.1, from 3.1.0 before 3.1.2...

8.1CVSS7.1AI score0.00193EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2025/04/01 12:30 a.m.12 views

Drupal General Data Protection Regulation Cross-Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Drupal General Data Protection Regulation allows Cross Site Request Forgery. This issue affects General Data Protection Regulation: from 0.0.0 before 3.0.1, from 3.1.0 before 3.1.2...

8.1CVSS7.1AI score0.00193EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder