CVE-2023-33333
WordPress Complianz and Complianz Premium plugins - Cross-Site Request Forgery (CSRF) leading to Cross-Site Scripting (XSS)
Cross-Site Request Forgery (CSRF) vulnerability in Really Simple Plugins Complianz, Really Simple Plugins Complianz Premium allows Cross-Site Scripting (XSS).This issue affects Complianz: from n/a through 6.4.4; Complianz Premium: from n/a through 6.4.6.1.
We have discovered 45,391 live websites that are affected by CVE-2023-33333.
Affected Software
| Product |  Complianz |
| Category | Cookie compliance |
| Vulnerable Versions |
|
| Total Vulnerable Versions | 133 |
| Vulnerable Domains | 45,391 live websites (14.52% of Complianz install base) |
Distribution by Website Rank
The diagram provides a graphic representation of the correlation between the occurrence of CVE-2023-33333 and the relative popularity of websitesDetails
- Published - Nov 30, 2023
- Updated - Nov 30, 2023
Credits
- Rafie Muhammad (Patchstack) (finder)
CWE
CVE References
CWE References
Countries
 United States | 2,268 websites |
 Germany | 14,661 websites |
 Italy | 5,063 websites |
 France | 4,880 websites |
 Spain | 4,805 websites |
 Czech Republic | 2,025 websites |
 Netherlands | 1,519 websites |
 Austria | 1,313 websites |
 GB | 1,164 websites |
 Slovakia | 1,042 websites |
TLDs
| .com | 11,662 websites |
| .de | 11,494 websites |
| .it | 3,460 websites |
| .fr | 2,349 websites |
| .es | 1,820 websites |
| .cz | 1,816 websites |
| .nl | 1,277 websites |
| .at | 1,139 websites |
| .org | 972 websites |
| .be | 743 websites |
Vulnerable Versions
Vulnerable versions are highlighted in redGeographical Distribution
The distribution of websites across the globe that are exposed to CVE-2023-33333 through included software libraries and plugins.References
- https://patchstack.com/database/vulnerability/complianz-gdpr/wordpress-complianz-plugin-6-4-4-csrf-lead-to-site-wide-cross-site-scripting-xss-vulnerability?_s_id=cve
- https://patchstack.com/database/vulnerability/complianz-gdpr-premium/wordpress-complianz-premium-plugin-6-4-6-1-csrf-to-site-wide-cross-site-scripting-xss-vulnerability?_s_id=cve
Websites affected by CVE-2023-33333
Top websites that are affected by CVE-2023-33333. Please click on the "Contact us" button above to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| *********.com | United States | *,*** | |
| *********************.es | Spain | **,*** | |
| ***********.it | Italy | **,*** | |
| *****.com | United States | **,*** | |
| ***.******.com | GB | **,*** | |
| ***.******.nl | Netherlands | **,*** | |
| ******.**********.fr | France | **,*** | |
| ************.com | France | **,*** | |
| ***.********.com | Germany | **,*** | |
| ***********.com | France | **,*** |