CVE-2022-0535
WordPress E2Pdf plugin prior to 1.16.45 is affected. The vulnerability is a Cross-Site Scripting flaw caused by insufficient sanitization/escaping of certain settings, allowing an attacker to inject scripts in the context of authenticated users even when unfiltered_html is disallowed. Impact coul...