CVE-2022-0220
N/A
N/A
Summary
The check_privacy_settings AJAX action of the WordPress GDPR WordPress plugin before 1.9.27, available to both unauthenticated and authenticated users, responds with JSON data without an "application/json" content-type. Since an HTML payload isn't properly escaped, it may be interpreted by a web browser led to this endpoint. Javascript code may be executed on a victim's browser. Due to v1.9.26 adding a CSRF check, the XSS is only exploitable against unauthenticated users (as they all share the same nonce)
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Unknown | WordPress GDPR | 0 < 1.9.27 | affected |
Weaknesses
- CWE-116 Improper Encoding or Escaping of Output
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.