CVE-2022-0445

Publication date

2022-03-07 08:16:46

Family

WPScan

State

PUBLISHED

Description

The WordPress Real Cookie Banner: GDPR (DSGVO) & ePrivacy Cookie Consent WordPress plugin before 2.14.2 does not have CSRF checks in place when resetting its settings, allowing attackers to make a logged in admin reset them via a CSRF attack