PT-2026-29343

InvoiceShelf is an open-source web & mobile app that helps track expenses, payments and create professional invoices and estimates. Prior to version 2.2.0, a Server-Side Request Forgery SSRF vulnerability exists in the Invoice PDF generation module. User-supplied HTML in the invoice Notes field i...

CVE-2026-25317

CVE-2026-25317 is a Missing Authorization vulnerability in the WordPress plugin Print Invoice & Delivery Notes for WooCommerce (woocommerce-delivery-notes). Affected versions: from n/a up to and including 5.9.0. CVSSv3.1 base score 7.5 (HIGH) with network access, low attack complexity, no privile...

CVE-2026-25317 WordPress Print Invoice & Delivery Notes for WooCommerce plugin <= 5.9.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in tychesoftwares Print Invoice & Delivery Notes for WooCommerce woocommerce-delivery-notes allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Print Invoice & Delivery Notes for WooCommerce: from n/a through = 5.9.0...

CVE-2026-24946

CVE-2026-24946 describes a Missing Authorization (Broken Access Control) vulnerability in the WordPress plugin Print Invoice & Delivery Notes for WooCommerce (woocommerce-delivery-notes) up to version 5.8.0. The issue arises from incorrectly configured access control security levels, potentially ...

VulnCheck KEV: CVE-2025-13773

The Print Invoice & Delivery Notes for WooCommerce plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 5.8.0 via the 'WooCommerceDeliveryNotes::update' function. This is due to missing capability check in the 'WooCommerceDeliveryNotes::update' functio...