CVE-2022-0663

The Print, PDF, Email by PrintFriendly WordPress plugin before 5.2.3 does not sanitise and escape the Custom Button Text settings, which could allow high privilege users such as admin to perform cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

CVE-2023-25032

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Print, PDF, Email by PrintFriendly plugin = 5.5.1 versions...

EUVD-2023-29011

Malicious code in bioql PyPI...

CVE-2023-25032

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Print, PDF, Email by PrintFriendly plugin = 5.5.1 versions...

CVE-2023-25032

CVE-2023-25032 applies to the WordPress plugin Print, PDF, Email by PrintFriendly (versions <= 5.5.1). The vulnerability is a Stored XSS that requires admin+ authentication to exploit. Root cause: input handling in the PrintFriendly feature allows injected script to be stored and later rendere...

WordPress Print, PDF, Email by PrintFriendly Plugin <= 5.5.1 is vulnerable to Cross Site Scripting (XSS)

Software Print, PDF, Email by PrintFriendly Type Plugin Vulnerable versions = 5.5.1 Fixed in 5.5.2 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-25032 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID d63fd651e5b7 Credits Abdi...

WordPress plugin Print, PDF, Email by PrintFriendly 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plug-in. A cross-site scripting vulnerability exists in versions of WordPress prior to PrintFriendly 5.2.3...