Lucene search
K

4 matches found

NVD
NVD
added 2026/03/26 2:16 p.m.5 views

CVE-2026-2389

The Complianz – GDPR/CCPA Cookie Consent plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 7.4.4.2. This is due to the revertdivstosummary function replacing HTML entities with literal double-quote characters " in post content without subseque...

4.9CVSS0.00222EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/03/26 1:26 p.m.3 views

CVE-2026-2389 Complianz – GDPR/CCPA Cookie Consent <= 7.4.4.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Content Filter

The Complianz – GDPR/CCPA Cookie Consent plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 7.4.4.2. This is due to the revertdivstosummary function replacing HTML entities with literal double-quote characters " in post content without subseque...

4.9CVSS6AI score0.00222EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/03/26 1:26 p.m.29 views

CVE-2026-2389 Complianz – GDPR/CCPA Cookie Consent <= 7.4.4.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Content Filter

The Complianz – GDPR/CCPA Cookie Consent plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 7.4.4.2. This is due to the revertdivstosummary function replacing HTML entities with literal double-quote characters " in post content without subseque...

4.9CVSS0.00222EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/03/26 1:26 p.m.3 views

CVE-2026-2389

The Complianz – GDPR/CCPA Cookie Consent plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 7.4.4.2. This is due to the revertdivstosummary function replacing HTML entities with literal double-quote characters " in post content without subseque...

4.9CVSS6AI score0.00222EPSS
Exploits0References5
Rows per page
Query Builder