CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Ninjateam: >> Gpdr Ccpa Compliance Support Security Vulnerabilities

CVE-2020-36718

The GDPR CCPA Compliance Support plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 2.3 via deserialization of untrusted input "njt_gdpr_allow_permissions" value. This allows unauthenticated attackers to inject a PHP Object.

CVSS Score

9.8

EPSS Score

0.013

Published

2023-06-07

Page 1

Vulnerabilities

Vulnerable Software

Ninjateam: >> Gpdr Ccpa Compliance Support Security Vulnerabilities

Products

Pricing

Contact Us