| CVE-2024-38767 | WordPress BSK PDF Manager plugin <= 3.6 - Cross Site Scripting (XSS) vulnerability | BannerSky.com | BSK PDF Manager | Medium | 6.5 | 2024-07-20 07:11:34 | Deep Dive |
| CVE-2024-6316 | Generate PDF using Contact Form 7 <= 4.1.2 - Cross-Site Request Forgery to Arbitrary File Upload | zealopensource | Generate PDF using Contact Form 7 | High | 8.8 | 2024-07-09 07:38:45 | Deep Dive |
| CVE-2024-6317 | Generate PDF using Contact Form 7 <= 4.1.2 - Cross-Site Request Forgery to Arbitrary File Deletion | zealopensource | Generate PDF using Contact Form 7 | High | 8.8 | 2024-07-09 07:38:44 | Deep Dive |
| CVE-2024-37555 | WordPress Generate PDF using Contact Form 7 plugin <= 4.1.2 - CSRF to Arbitrary File Upload vulnerability | ZealousWeb | Generate PDF using Contact Form 7 | Critical | 9.1 | 2024-07-09 07:21:53 | Deep Dive |
| CVE-2024-0845 | PDF Viewer for Elementor <= 2.9.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via render | redlettuce | PDF Viewer for Elementor | Medium | 6.4 | 2024-06-18 02:37:12 | Deep Dive |
| CVE-2024-1565 | EmbedPress <= 3.9.10 - Authenticated(Contributor+) Stored Cross-Site Scripting via PDF Widget URL | wpdevteam | EmbedPress – PDF Embedder, Embed YouTube Videos, 3D FlipBook, Social feeds, Docs & more | Medium | 6.4 | 2024-06-13 08:31:32 | Deep Dive |
| CVE-2024-30373 | Kofax Power PDF JPF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability | Kofax | Power PDF | - | - | 2024-06-06 18:20:51 | Deep Dive |
| CVE-2024-5307 | Kofax Power PDF AcroForm Annotation Out-Of-Bounds Read Information Disclosure Vulnerability | Kofax | Power PDF | - | - | 2024-06-06 18:19:10 | Deep Dive |
| CVE-2024-5306 | Kofax Power PDF PDF File Parsing Memory Corruption Remote Code Execution Vulnerability | Kofax | Power PDF | - | - | 2024-06-06 18:18:54 | Deep Dive |
| CVE-2024-5305 | Kofax Power PDF PDF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability | Kofax | Power PDF | - | - | 2024-06-06 18:04:24 | Deep Dive |
| CVE-2024-5304 | Kofax Power PDF TGA File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability | Kofax | Power PDF | - | - | 2024-06-06 18:04:00 | Deep Dive |
| CVE-2024-5303 | Kofax Power PDF PSD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability | Kofax | Power PDF | - | - | 2024-06-06 18:03:36 | Deep Dive |
| CVE-2024-5302 | Kofax Power PDF PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability | Kofax | Power PDF | - | - | 2024-06-06 17:54:37 | Deep Dive |
| CVE-2024-5301 | Kofax Power PDF PSD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability | Kofax | Power PDF | - | - | 2024-06-06 17:54:17 | Deep Dive |
| CVE-2024-5571 | EmbedPress – Embed PDF, Google Docs, Vimeo, Wistia, Embed YouTube Videos, Audios, Maps & Embed Any Documents in Gutenberg & Elementor <= 4.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via EmbedPress PDF Widget | wpdevteam | EmbedPress – PDF Embedder, Embed YouTube Videos, 3D FlipBook, Social feeds, Docs & more | Medium | 6.4 | 2024-06-05 08:33:16 | Deep Dive |
| CVE-2024-35649 | WordPress Save as PDF Plugin by Pdfcrowd plugin <= 3.2.3 - Cross Site Scripting (XSS) vulnerability | Pdfcrowd | Save as PDF plugin by Pdfcrowd | Medium | 6.5 | 2024-06-04 14:17:07 | Deep Dive |
| CVE-2024-1803 | EmbedPress – Embed PDF, Google Docs, Vimeo, Wistia, Embed YouTube Videos, Audios, Maps & Embed Any Documents in Gutenberg & Elementor <= 3.9.12 - Insufficient Authorization Checks to Block Usual | wpdevteam | EmbedPress – PDF Embedder, Embed YouTube Videos, 3D FlipBook, Social feeds, Docs & more | Medium | 4.3 | 2024-05-23 12:43:29 | Deep Dive |
| CVE-2023-51546 | WordPress WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping Labels plugin <= 4.2.1 - Privilege Escalation vulnerability | WebToffee | WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping Labels | High | 7.2 | 2024-05-17 08:44:58 | Deep Dive |
| CVE-2024-4316 | EmbedPress Embed PDF, Google Docs, Vimeo, Wistia, Embed YouTube Videos, Audios, Maps & Embed Any Documents in Gutenberg & Elementor <= 3.9.16 - Authenticated (Contributor+) Stored Cross-Site Scripting via id Parameter | wpdevteam | EmbedPress – PDF Embedder, Embed YouTube Videos, 3D FlipBook, Social feeds, Docs & more | Medium | 6.4 | 2024-05-09 20:03:23 | Deep Dive |
| CVE-2023-5971 | Save as PDF < 3.2.0 - Admin+ Stored XSS | Unknown | Save as PDF Plugin by Pdfcrowd | 中危 | - | 2024-05-09 06:00:02 | Deep Dive |