WordPress Plugin Vulnerabilities

Cookies and Content Security Policy < 2.35 - Unauthenticated Information Exposure

Description

The Cookies and Content Security Policy plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.34. This makes it possible for unauthenticated attackers to extract sensitive user or configuration data.

Affects Plugins

References

Classification

Type
SENSITIVE DATA DISCLOSURE
CWE

Miscellaneous

Original Researcher
MD ISMAIL
Verified
No

Timeline

Publicly Published
2026-01-05 (about 5 months ago)
Added
2026-01-14 (about 5 months ago)
Last Updated
2026-01-19 (about 5 months ago)

Other