32 matches found
CVE-2025-23434
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in viher3 Easy EU Cookie law easy-eu-cookie-law allows Stored XSS.This issue affects Easy EU Cookie law: from n/a through = 1.3.3.1...
CVE-2019-16522
The eu-cookie-law plugin through 3.0.6 for WordPress aka EU Cookie Law GDPR is susceptible to Stored XSS due to improper encoding of several configuration options in the admin area and the displayed cookie consent message. This affects Font Color, Background Color, and the Disable Cookie text. An...
EUVD-2019-7199
Malware in sbrugna...
EUVD-2025-3180
Malicious code in bioql PyPI...
EUVD-2022-43152
Malicious code in bioql PyPI...
EUVD-2022-47661
Malicious code in bioql PyPI...
CVE-2022-44727
The EU Cookie Law GDPR Banner + Blocker module before 2.1.3 for PrestaShop allows SQL Injection via a cookie lgcookieslaw or lglaw...
CVE-2025-23434
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in viher3 Easy EU Cookie law easy-eu-cookie-law allows Stored XSS.This issue affects Easy EU Cookie law: from n/a through = 1.3.3.1...
CVE-2025-23434 WordPress Easy EU Cookie law plugin <= 1.3.3.1 - Stored Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in viher3 Easy EU Cookie law easy-eu-cookie-law allows Stored XSS.This issue affects Easy EU Cookie law: from n/a through = 1.3.3.1...
CVE-2025-23434
CVE-2025-23434 refers to an Stored XSS vulnerability in the Easy EU Cookie law plugin (Albertolabs.com) affecting versions up to 1.3.3.1, with the issue described as improper neutralization of input during web page generation. The Red Hat advisory RH:CVE-2025-23434 corroborates this Cross-Site Sc...
CVE-2025-23434 WordPress Easy EU Cookie law plugin <= 1.3.3.1 - Stored Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in viher3 Easy EU Cookie law easy-eu-cookie-law allows Stored XSS.This issue affects Easy EU Cookie law: from n/a through = 1.3.3.1...
PT-2025-4877 · Unknown · Easy Eu Cookie Law
Name of the Vulnerable Software and Affected Versions: Easy EU Cookie law versions n/a through 1.3.3.1 Description: The issue is related to improper neutralization of input during web page generation, also known as Cross-site Scripting XSS. This allows for Stored XSS attacks. Recommendations: For...
CVE-2022-3811
The EU Cookie Law for GDPR/CCPA WordPress plugin through 3.1.6 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setu...
CVE-2022-3811
The EU Cookie Law for GDPR/CCPA WordPress plugin through 3.1.6 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setu...
CVE-2022-3811 EU Cookie Law <= 3.1.6 - Admin+ Stored XSS
The EU Cookie Law for GDPR/CCPA WordPress plugin through 3.1.6 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setu...
CVE-2022-3811 EU Cookie Law <= 3.1.6 - Admin+ Stored XSS
The EU Cookie Law for GDPR/CCPA WordPress plugin through 3.1.6 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setu...
CVE-2022-3811
CVE-2022-3811 – EU Cookie Law (WordPress) Stored XSS : In versions up to 3.1.6, the plugin does not sanitize/escape certain settings, allowing an admin (high privileged) to execute a stored XSS, even if unfiltered_html is disallowed (e.g., multisite). Connected sources confirm the affected compon...
WordPress plugin EU Cookie Law for GDPR/CCPA 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...
PT-2023-13591 · WordPress · Eu Cookie Law For Gdpr/Ccpa
Name of the Vulnerable Software and Affected Versions: The EU Cookie Law for GDPR/CCPA WordPress plugin versions 3.1.6 and earlier Description: The issue allows high privilege users, such as admins, to perform Stored Cross-Site Scripting attacks, even when the unfiltered html capability is...
EU Cookie Law <= 3.1.6 - Admin+ Stored XSS
The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup. 1. Enter the setting page of this plugin. 2. In t...