Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 9:3 p.m.8 views

CVE-2021-24814

The checkprivacysettings AJAX action of the WordPress GDPR WordPress plugin before 1.9.26, available to both unauthenticated and authenticated users, responds with JSON data without an "application/json" content-type. Since an HTML payload isn't properly escaped, it may be interpreted by a web...

9.6CVSS6.8AI score0.02085EPSS
Exploits2References1
OSV
OSV
added 2022/02/01 1:15 p.m.2 views

CVE-2022-0220

The checkprivacysettings AJAX action of the WordPress GDPR WordPress plugin before 1.9.27, available to both unauthenticated and authenticated users, responds with JSON data without an "application/json" content-type. Since an HTML payload isn't properly escaped, it may be interpreted by a web...

6.1CVSS6.4AI score0.0231EPSS
Exploits2References1
ATTACKERKB
ATTACKERKB
added 2022/02/01 1:15 p.m.8 views

CVE-2022-0220

The checkprivacysettings AJAX action of the WordPress GDPR WordPress plugin before 1.9.27, available to both unauthenticated and authenticated users, responds with JSON data without an "application/json" content-type. Since an HTML payload isn't properly escaped, it may be interpreted by a web...

6.1CVSS6.3AI score0.0231EPSS
Exploits2References3
Positive Technologies
Positive Technologies
added 2022/01/26 12:0 a.m.7 views

PT-2022-7141 · WordPress · Wordpress Gdpr Plugin

Name of the Vulnerable Software and Affected Versions: WordPress GDPR plugin versions prior to 1.9.27 Description: The issue concerns the check privacy settings AJAX action in the WordPress GDPR plugin, which is accessible to both unauthenticated and authenticated users. This action responds with...

6.4CVSS6.3AI score0.0231EPSS
Exploits2References4
Rows per page
Query Builder