CVE-2023-39062
CVE-2023-39062 affects Spipu HTML2PDF prior to v5.2.8. A cross‑site scripting flaw in forms.php allows remote attackers to inject/execute arbitrary JavaScript. Impact is XSS with potential user impact, and mitigation is upgrading to v5.2.8 or later; no exploitable details are provided beyond the ...