Wp-mpdf Security Vulnerabilities and Issues — Wp-mpdf CVE List

Lucene search

FkrauthanWp-mpdf

2 matches found

CVE•added 2024/03/21 5:15 p.m.•58 views

CVE-2024-27962

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Florian 'fkrauthan' Krauthan allows Reflected XSS.This issue affects wp-mpdf: from n/a through 3.7.1.

7.1CVSS7.1AI score0.00144EPSS

CVE•added 2023/07/12 4:15 a.m.•34 views

CVE-2021-4416

The wp-mpdf plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 3.5.1. This is due to missing or incorrect nonce validation on the mpdf_admin_savepost() function. This makes it possible for unauthenticated attackers to save post data via a forged reque...

4.3CVSS4.2AI score0.00146EPSS