Ccpa

CVSS 5.4 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

LOW

Integrity impact

LOW

Availability impact

NONE

network

low complexity

hu-manity

NVD

Published: 2023-03-27

Updated: 2023-11-07

Summary

The Cookie Notice & Compliance for GDPR / CCPA WordPress plugin before 2.4.7 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks

Vulnerable Configurations

Part	Description	Count
Application	Hu-Manity HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa - HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.0.0 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.0.1 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.0.2 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.1.0 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.0 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.1 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.2 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.3 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.4 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.5 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.6 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.7 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.8 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.9.1 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.10 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.11 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.12 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.13 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.14 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.15 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.16 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.17 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.18 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.18.1 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.19 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.20 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.21 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.22 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.23 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.24 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.25 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.26 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.27 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.28 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.29 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.30 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.31 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.32 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.33 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.34 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.35 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.36 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.36.1 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.37 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.38 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.39 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.40 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.41 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.42 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.43 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.44 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.45 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.46 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.47 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.48 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.49 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.50 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.2.51 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.3.0 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.3.1 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 1.3.2 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 2.0.0 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 2.0.1 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 2.0.2 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 2.0.3 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 2.0.4 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 2.1.0 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 2.1.1 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 2.1.2 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 2.1.3 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 2.1.4 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 2.1.5 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 2.2.0 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 2.2.1 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 2.2.2 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 2.2.3 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 2.3.0 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 2.3.1 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 2.4.0 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 2.4.1 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 2.4.2 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 2.4.3 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 2.4.4 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 2.4.5 HU Manity Cookie Notice & Compliance FOR Gdpr / Ccpa 2.4.6	86

References

https://wpscan.com/vulnerability/83f23a9f-9ace-47d2-a5f3-a4915129b16c