Complianz WordPress GDPR Compliance Plugin Vulnerability

A well-liked WordPress plugin for privateness compliance with over 800,000 installations just lately patched a saved XSS vulnerability that might enable an attacker to add malicious scripts for launching assaults towards website guests.

Complianz | GDPR/CCPA Cookie Consent WordPress Plugin

The Complianz plugin for WordPress is a robust device that helps web site house owners adjust to privateness rules such because the Normal Knowledge Safety Regulation (GDPR) and the California Shopper Privateness Act (CCPA).

The plugin manages a number of aspects of person privateness together with blocking third-party cookies, managing cookie consent (together with per subregion), and managing a number of points associated to cookie banners.

It’s versatility and usefulness might account for the recognition of the device which at the moment has over 800,000 installations.

Complianz Plugin Saved XSS Vulnerability

The Complianz WordPress plugin was found to have a saved XSS vulnerability which is a kind of vulnerability that enables a person to add a malicious script on to the web site server. In contrast to a mirrored XSS that requires an internet site person to click on a hyperlink, a saved XSS entails a malicious script saved and served from the goal web site’s server.

The vulnerability is within the Complianz admin settings which is within the type of a scarcity of two safety features.

1. Enter Sanitization
The plugin lacked adequate enter sanitization and output escaping. Enter sanitization is a typical course of for checking what’s enter into an internet site, like right into a kind subject, to be sure that what’s enter is what’s anticipated, like a textual content enter versus a script add.

The official WordPress developer guide describes data sanitization as:

“Sanitizing enter is the method of securing/cleansing/filtering enter information. Validation is most popular over sanitization as a result of validation is extra particular. However when “extra particular” isn’t doable, sanitization is the subsequent smartest thing.”

2. Escaping Output
The plugin lacked Output Escaping which is a safety course of that removes undesirable information earlier than it will get rendered for a person.

How Critical Is The Vulnerability?

The vulnerability requires the attacker to acquire admin permission ranges and better with a view to execute the assault. That could be the rationale why this vulnerability is scored 4.4 out of 10, with ten representing the very best degree of vulnerability.

The vulnerability solely impacts particular sorts of installations, too.

In line with Wordfence:

“This makes it doable for authenticated attackers, with administrator-level permissions and above, to inject arbitrary internet scripts in pages that may execute at any time when a person accesses an injected web page.

This solely impacts multi-site installations and installations the place unfiltered_html has been disabled.”

Replace To Newest Model

The vulnerability impacts Complianz variations equal to or lower than model 6.5.5. Customers are inspired to replace to model 6.5.6 or greater.

Learn the Wordfence advisory in regards to the vulnerability:

Complianz | GDPR/CCPA Cookie Consent <= 6.5.5 – Authenticated(Administrator+) Stored Cross-site Scripting via settings