Lucene search
HistoryDec 19, 2023 - 12:15 a.m.
CVE-2023-46154
cve
2023
46154
deserialization
untrusted data
e2pdf
export to pdf tool
wordpress
7.2 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
20.7%
Deserialization of Untrusted Data vulnerability in E2Pdf.Com E2Pdf – Export To Pdf Tool for WordPress.This issue affects E2Pdf – Export To Pdf Tool for WordPress: from n/a through 1.20.18.
Affected configurations
Node
e2pdf.come2pdf_–_export_to_pdf_tool_for_wordpressRange≤1.20.18
| CPE | Name | Operator | Version |
|---|---|---|---|
| e2pdf:e2pdf | e2pdf | le | 1.20.18 |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "e2pdf",
"product": "E2Pdf – Export To Pdf Tool for WordPress",
"vendor": "E2Pdf.com",
"versions": [
{
"changes": [
{
"at": "1.20.19",
"status": "unaffected"
}
],
"lessThanOrEqual": "1.20.18",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
prion
prion
Deserialization of untrusted data
2023-12-19 00:15:00
nvd
nvd
CVE-2023-46154
2023-12-19 00:15:07
wpvulndb
wpvulndb
E2Pdf < 1.20.19 - Authenticated (Administrator+) PHP Object Injection
2023-11-23 00:00:00
cvelist
cvelist
wordfence
wordfence
7.2 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
20.7%
Related for CVE-2023-46154