The flaw has been patched in the privacy-focused plugin WP GDPR Compliance, which has more than 100,000 downloads.