WordPress e2pdf Plugin <= 1.25.05 is vulnerable to Cross Site Scripting (XSS)

Software e2pdf Type Plugin Vulnerable versions = 1.25.05 Fixed in 1.25.11 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-43318 Patch priority Low CVSS severity Low 6.5 Developer E2Pdf.com PSID 618e2ecf6073 Credits LVT-tholv2k Required privilege Contributor Publish...

WordPress e2pdf Plugin <= 1.20.27 is vulnerable to Broken Access Control

Software e2pdf Type Plugin Vulnerable versions = 1.20.27 Fixed in 1.23.00 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-37415 Patch priority Low CVSS severity Low 5.4 Developer E2Pdf.com PSID 4dae4c7543a5 Credits Steven Julian Required privilege Subscrib...

WordPress e2pdf Plugin <= 1.24.00 is vulnerable to Cross Site Scripting (XSS)

Software e2pdf Type Plugin Vulnerable versions = 1.24.00 Fixed in 1.25.01 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-4367 Patch priority Low CVSS severity Low 4 Developer E2Pdf.com PSID cc24959a7a9a Credits Yudistira Arya Required privilege Author Published 27...

WordPress e2pdf Plugin <= 1.20.27 is vulnerable to Cross Site Request Forgery (CSRF)

Software e2pdf Type Plugin Vulnerable versions = 1.20.27 Fixed in 1.23.00 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-31373 Patch priority Low CVSS severity Low 5.4 Developer E2Pdf.com PSID eb7251584702 Credits Steven Julian Required privileg...

WordPress e2pdf Plugin <= 1.20.23 is vulnerable to SQL Injection

Software e2pdf Type Plugin Vulnerable versions = 1.20.23 Fixed in 1.20.24 OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2023-50849 Patch priority Low CVSS severity Low 7.6 Developer E2Pdf.com PSID dd0c2ff3afc5 Credits Muhammad Daffa Required privilege Administrator Published 21...

WordPress e2pdf Plugin < 1.20.20 is vulnerable to Cross Site Scripting (XSS)

Software e2pdf Type Plugin Vulnerable versions 1.20.20 Fixed in 1.20.20 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-5229 Patch priority Low CVSS severity Low 5.9 Developer E2Pdf.com PSID 5dd49f4334ad Credits Yassir Sbai Fahim Required privilege Administrator...