Cheat sheets

CVE-2020-20633: WordPress plugin vulnerability

Share this with people that should know this:

ajax_policy_generator in admin/modules/cli-policy-generator/classes/class-policy-generator-ajax.php in GDPR Cookie Consent (cookie-law-info) 1.8.2 and below plugin for WordPress, allows authenticated stored XSS and privilege escalation.

References

  • blog.nintechnet.com/wordpress-gdpr-cookie-consent-plugin-fixed-vulnerability/
  • Share this with people that should know this: