Vulnerabilities > Iubenda

DATE	CVE	VULNERABILITY TITLE	RISK
2023-01-02	CVE-2022-3911	Missing Authorization vulnerability in Iubenda Iubenda-Cookie-Law-Solution The iubenda WordPress plugin before 3.3.3 does does not have authorisation and CSRF in an AJAX action, and does not ensure that the options to be updated belong to the plugin as long as they are arrays. network low complexity iubenda CWE-862	8.8
2020-05-13	CVE-2020-12742	Improper Input Validation vulnerability in Iubenda Iubenda-Cookie-Law-Solution The iubenda-cookie-law-solution plugin before 2.3.5 for WordPress does not restrict URL sanitization to http protocols. network low complexity iubenda CWE-20	6.1

Vulnerabilities > Iubenda {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Iubenda"}]}