Description
WordPress Plugin WP DSGVO Tools (GDPR) is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently completely and permanently delete arbitrary posts and pages on a website. WordPress Plugin WP DSGVO Tools (GDPR) version 3.1.23 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 3.1.24 or latest
References
Related Vulnerabilities
Apache Traffic Server Improper Input Validation Vulnerability (CVE-2017-5660)
Pods-Custom Content Types and Fields Multiple Cross-Site Scripting Vulnerabilities (2.7.28)
WordPress Simple Ecommerce Shopping Cart-Sell products through Paypal Arbitrary File Upload (2.2.5)
Backup and Staging by WP Time Capsule Security Bypass (1.21.15)