Documentation: Home / Vulnerabilities / Input validation vulnerability in Privacy Policy Generator, Terms & Conditions Generator WordPress Plugin : WPLegalPages 2.9.2

Latest

Input validation vulnerability in Privacy Policy Generator, Terms & Conditions Generator WordPress Plugin : WPLegalPages 2.9.2

CVE-2023-4968

Severity: medium-risk
Status: Fixed
Publication: October 10, 2023

The WPLegalPages plugin for WordPress allows users to create legal pages on their websites. Unfortunately, versions up to and including 2.9.2 of the plugin have a security flaw that makes it possible for an attacker with certain permissions to inject malicious code into pages on the website. This malicious code can be used to access sensitive information or damage the website. It is important to make sure that you have the latest version of the plugin installed so that you are protected from this security issue.

Detected in:

Privacy Policy Generator, Terms & Conditions Generator WordPress Plugin : WPLegalPages fixed vulnerable versions: >= * <= 2.9.2

Open source

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

Incorrect?

Is this information incorrect? Please leave us a message.

Latest

Configuring Really Simple Security with WP-CLI

How to Fix The “Link you followed has Expired” error on WordPress

404 not found errors

Protecting site visitors with Security Headers

Hardening your website’s security

Login protection as essential security

Input validation vulnerability in Privacy Policy Generator, Terms & Conditions Generator WordPress Plugin : WPLegalPages 2.9.2

Detected in:

Join our mailing list - 6 Tips & Tricks in your inbox over the next days!

Plugins

Get Started

About

Popular articles