← Back

Gdpr Ccpa Compliance & Cookie Consent Banner

gdpr_ccpa_compliance_&_cookie_consent_banner

Vendor: Ninjateam • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2025-24591
1Ninjateam
1Gdpr Ccpa Compliance & Cookie Consent Banner
Apr 23, 2026
Jan 24, 2025
N/A· v4
8.8 HIGH· v3
N/A· v2
Missing Authorization vulnerability in Ninja Team GDPR CCPA Compliance Support ninja-gdpr-compliance allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects GDPR CCPA Compliance Support...Show more
Missing Authorization vulnerability in Ninja Team GDPR CCPA Compliance Support ninja-gdpr-compliance allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects GDPR CCPA Compliance Support: from n/a through <= 2.7.1.Show less
CVE-2024-5607
1Ninjateam
1Gdpr Ccpa Compliance & Cookie Consent Banner
Apr 8, 2026
Jun 7, 2024
N/A· v4
5.4 MEDIUM· v3
N/A· v2
The GDPR CCPA Compliance & Cookie Consent Banner plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on several functions named ajaxUpdateSettings() in all versions u...Show more
The GDPR CCPA Compliance & Cookie Consent Banner plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on several functions named ajaxUpdateSettings() in all versions up to, and including, 2.7.0. This makes it possible for authenticated attackers, with Subscriber-level access and above, to modify the plugin's settings, update page content, send arbitrary emails and inject malicious web scripts.Show less