Vulnerabilities > Really Simple Plugins > Complianz > 4.7.3
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-04 | CVE-2023-6498 | Cross-site Scripting vulnerability in Really-Simple-Plugins Complianz The Complianz – GDPR/CCPA Cookie Consent plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to and including 6.5.5 due to insufficient input sanitization and output escaping. | 4.8 |
| 2023-11-30 | CVE-2023-33333 | Cross-Site Request Forgery (CSRF) vulnerability in Really-Simple-Plugins Complianz Cross-Site Request Forgery (CSRF) vulnerability in Really Simple Plugins Complianz, Really Simple Plugins Complianz Premium allows Cross-Site Scripting (XSS).This issue affects Complianz: from n/a through 6.4.4; Complianz Premium: from n/a through 6.4.6.1. | 8.8 |
| 2022-02-14 | CVE-2022-0193 | Cross-site Scripting vulnerability in Really-Simple-Plugins Complianz The Complianz WordPress plugin before 6.0.0 does not escape the s parameter before outputting it back in an attribute in an admin page, leading to a Reflected Cross-Site Scripting | 4.3 |