Saijo George

Curated by Saijo George

Read more
share
Sponsor Newsletter Privacy Affiliate
© 2024

thursday13 Feb 2020

Improper Access Controls in WordPress GDPR Cookie Consent Plugin <= 1.8.2

https://www.wordfence.com

GDPR Cookie Consent WordPress plugin By WebToffee has over 700000+ active installations and a security vulnerability was recently discovered in version 1.8.2 and lower. This vulnerability has been fixed in version 1.8.3. We recommend that users immediately update to the latest version available.

Improper Access Controls issue could allow an authenticated user with low privileges (such as a subscriber) to:

  • Change the status of any post/page from published to draft, removing them from the frontend of the blog
  • Put a payload in the content of one of them, leading to Stored Cross-Site Scripting issues.

 

Link | h/t: Saijo
General
Improper Access Controls in WordPress GDPR Cookie Consent Plugin <= 1.8.2


I love tl;dr Marketing because I can get all the latest SEO news and trends in one spot without having to read lengthy articles. I really look forward to the daily emails to see what's new in our industry!

Google Tests Perspectives Search Results To Show Multiple Results in Featured Snippets 1 - SEO News

Ryan Mews SEO Manager Merkle