Legalweb Wp Dsgvo Tools (Gdpr)
5 CVEs affecting Legalweb Wp Dsgvo Tools (Gdpr). Latest disclosed: 2026-03-24. Critical: 1, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-4283 | Critical | 9.1 | 2026-03-24 | The WP DSGVO Tools (GDPR) plugin for WordPress is vulnerable to unauthorized account destruction in all versions up to, and including, 3.1.38. This is due to t… |
CVE-2021-42359 | High | 7.5 | 2021-11-05 | WP DSGVO Tools (GDPR) <= 3.1.23 had an AJAX action, ‘admin-dismiss-unsubscribe‘, which lacked a capability check and a nonce check and was available to unauthe… |
CVE-2021-4358 | High | 7.2 | 2023-06-07 | The WP DSGVO Tools (GDPR) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via an unknown parameter in versions up to, and including, 3.1.23 d… |
CVE-2026-0914 | Medium | 6.4 | 2026-01-23 | The WP DSGVO Tools (GDPR) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'lw_content_block' shortcode in all versions up to… |
CVE-2024-3201 | Medium | 6.4 | 2024-05-23 | The WP DSGVO Tools (GDPR) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'pp_link' shortcode in all versions up to, and inc… |