5 matches found
EUVD-2021-34243
Malicious code in bioql PyPI...
CVE-2025-60040
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in fkrauthan wp-mpdf wp-mpdf allows Stored XSS.This issue affects wp-mpdf: from n/a through = 3.9.1...
CVE-2025-60040 WordPress wp-mpdf Plugin <= 3.9.1 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in fkrauthan wp-mpdf wp-mpdf allows Stored XSS.This issue affects wp-mpdf: from n/a through = 3.9.1...
CVE-2021-4416
The wp-mpdf plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 3.5.1. This is due to missing or incorrect nonce validation on the mpdfadminsavepost function. This makes it possible for unauthenticated attackers to save post data via a forged request...
CVE-2021-4416
The CVE-2021-4416 entry concerns the WordPress wp-mpdf plugin. Affected software: WordPress wp-mpdf plugin for WordPress, versions up to and including 3.5.1. Vulnerability: Cross-Site Request Forgery due to missing or incorrect nonce validation in the mpdf_admin_savepost() function. Impact: unaut...