cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2023-4013,https://securityvulnerability.io/vulnerability/CVE-2023-4013,GDPR Cookie Compliance < 4.12.5 - License Update/Deactivation via CSRF,"The GDPR Cookie Compliance (CCPA, DSGVO, Cookie Consent) WordPress plugin before 4.12.5 does not have proper CSRF checks when managing its license, which could allow attackers to make logged in admins update and deactivate the plugin's license via CSRF attacks",Wordpress,"GDPR Cookie Compliance (CCPA, DSGVO, Cookie Consent)",6.5,MEDIUM,0.000539999979082495,false,,false,false,false,,false,false,2023-08-30T15:15:00.000Z,0
CVE-2019-25143,https://securityvulnerability.io/vulnerability/CVE-2019-25143,Authorization Bypass Vulnerability in GDPR Cookie Compliance Plugin for WordPress,"The GDPR Cookie Compliance plugin for WordPress is susceptible to an authorization bypass vulnerability due to a lack of capability checks on the gdpr_cookie_compliance_reset_settings AJAX action. This weakness, present in versions up to and including 4.0.2, allows authenticated attackers to effortlessly reset all plugin settings, potentially leading to unauthorized configuration alterations.",Wordpress,"Gdpr Cookie Compliance (ccpa, Dsgvo, Cookie Consent)",5.4,MEDIUM,0.0012799999676644802,false,,false,false,false,,false,false,2023-06-07T01:51:31.166Z,0