A vulnerability labeled as problematic has been found in WP DSGVO Tools Plugin up to 3.1.39. This issue affects some unknown processing of the component Data Subject Access Request. Executing a manipulation of the argument email address can lead to missing authorization.

This vulnerability appears as CVE-2026-11869. The attack may be performed from remote. There is no available exploit.