Vulnerability Database

296,772

Total vulnerabilities in the database

CVE-2025-51529

Incorrect Access Control in the AJAX endpoint functionality in jonkastonka Cookies and Content Security Policy plugin through version 2.29 allows remote attackers to cause a denial of service (database server resource exhaustion) via unlimited database write operations to the wp_ajax_nopriv_cacsp_insert_consent_data endpoint.

Published: Aug 19, 2025
Updated: Aug 20, 2025
CVE: CVE-2025-51529
Exploit:

No technical information available.

No CWE or OWASP classifications available.

Affected Software
References

No affected software listed.

http://cookies.com
http://johan.com
https://gist.github.com/piotrmaciejbednarski/f738145c0ab24a110649dc16907e395b
https://github.com/piotrmaciejbednarski/CVE-2025-51529

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo