CVE CVE-2018-19207 Mappings

The Van Ons WP GDPR Compliance (aka wp-gdpr-compliance) plugin before 1.4.3 for WordPress allows remote attackers to execute arbitrary code because $wpdb->prepare() input is mishandled, as exploited in the wild in November 2018.


Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name
CVE-2018-19207 n/a uncategorized T1190 Exploit Public-Facing Application
CVE-2018-19207 n/a uncategorized T1499.004 Application or System Exploitation