4 matches found
CVE-2024-11276
creationtimestamp| type| source ---|---|--- 2024-12-06 08:51:17+00:00| seen| https://infosec.exchange/users/cve/statuses/113605022650382384...
CVE-2024-11276 PDF Builder for WooCommerce. Create invoices,packing slips and more <= 1.2.136 - Reflected Cross-Site Scripting
The PDF Builder for WooCommerce. Create invoices,packing slips and more plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'page' parameter in all versions up to, and including, 1.2.136 due to insufficient input sanitization and output escaping. This makes it possible fo...
CVE-2024-11276
CVE-2024-11276: Reflected Cross‑Site Scripting in PDF Builder for WooCommerce (WordPress) up to version 1.2.136 via the page parameter. Affected: PDF Builder for WooCommerce plugin. Auth: unauthenticated. Impact: injection of web scripts in pages executed after user actions. Public details exist ...
CVE-2024-11276 PDF Builder for WooCommerce. Create invoices,packing slips and more <= 1.2.136 - Reflected Cross-Site Scripting
The PDF Builder for WooCommerce. Create invoices,packing slips and more plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'page' parameter in all versions up to, and including, 1.2.136 due to insufficient input sanitization and output escaping. This makes it possible fo...