CVE-2022-0445

Summary

The WordPress Real Cookie Banner: GDPR (DSGVO) & ePrivacy Cookie Consent WordPress plugin before 2.14.2 does not have CSRF checks in place when resetting its settings, allowing attackers to make a logged in admin reset them via a CSRF attack

Affected Software

VendorProductVersion RangeStatus
UnknownWordPress Real Cookie Banner: GDPR (DSGVO) & ePrivacy Cookie Consent2.14.2 < 2.14.2affected

Weaknesses

  • CWE-352: CWE-352 Cross-Site Request Forgery (CSRF)

ADP Enrichment

CVE Program Container

Additional References

References