2 matches found
CVE-2021-4358
The WP DSGVO Tools GDPR plugin for WordPress is vulnerable to Stored Cross-Site Scripting via an unknown parameter in versions up to, and including, 3.1.23 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web...
CVE-2021-4358
The CVE-2021-4358 entry concerns the WP DSGVO Tools (GDPR) WordPress plugin, where versions up to 3.1.23 are vulnerable to Stored Cross-Site Scripting due to insufficient input sanitization and output escaping. This allows unauthenticated attackers to inject arbitrary web scripts in pages that wi...