| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-24688 | pypdf has possible Infinite Loop when processing outlines/bookmarks | py-pdf | pypdf | - | - | 2026-01-27 19:44:06 | Deep Dive |
| CVE-2020-36957 | PDF Complete 3.5.310.2002 - 'pdfsvc.exe' Unquoted Service Path | Pdf-Complete | PDF Complete | High | 7.8 | 2026-01-26 17:43:02 | Deep Dive |
| CVE-2026-0862 | Save as PDF Plugin by PDFCrowd <= 4.5.5 - Reflected Cross-Site Scripting via options | pdfcrowd | Save as PDF Plugin by PDFCrowd | Medium | 6.1 | 2026-01-24 15:34:07 | Deep Dive |
| CVE-2021-47896 | PDFCOMPLETE Corporate Edition 4.1.45 - 'pdfcDispatcher' Unquoted Service Path | PDF Complete, Inc. | PDFCOMPLETE Corporate Edition | High | 7.8 | 2026-01-23 16:47:40 | Deep Dive |
| CVE-2025-14793 | DK PDF – WordPress PDF Generator <= 2.3.0 - Authenticated (Author+) Server-Side Request Forgery | torstenbulk | DK PDF – WordPress PDF Generator | Medium | 5.0 | 2026-01-16 06:43:22 | Deep Dive |
| CVE-2025-14464 | PDF Resume Parser <= 1.0 - Unauthenticated Sensitive Information Disclosure in SMTP Credentials | kiwicommerce | PDF Resume Parser | Medium | 5.3 | 2026-01-14 05:28:10 | Deep Dive |
| CVE-2026-22691 | pypdf has possible long runtimes for malformed startxref | py-pdf | pypdf | 中危 | - | 2026-01-10 04:46:12 | Deep Dive |
| CVE-2026-22690 | pypdf has possible long runtimes for missing /Root object with large /Size values | py-pdf | pypdf | 中危 | - | 2026-01-10 04:41:21 | Deep Dive |
| CVE-2025-14626 | QR Code for WooCommerce order emails, PDF invoices, packing slips <= 1.9.42 - Authenticated (Contributor+) Cross-Site Scripting via Shortcode Attributes | www15to | QR Code for WooCommerce order emails, PDF invoices, packing slips | Medium | 6.4 | 2026-01-07 09:20:57 | Deep Dive |
| CVE-2025-62138 | WordPress WP Advanced PDF plugin <= 1.1.7 - Other vulnerability Type vulnerability | cedcommerce | WP Advanced PDF | Medium | 5.3 | 2025-12-31 13:51:42 | Deep Dive |
| CVE-2025-68993 | WordPress Share, Print and PDF Products for WooCommerce plugin <= 3.1.2 - Broken Access Control vulnerability | XforWooCommerce | Share, Print and PDF Products for WooCommerce | Medium | 5.3 | 2025-12-30 10:47:51 | Deep Dive |
| CVE-2025-14414 | Soda PDF Desktop Word File Insufficient UI Warning Remote Code Execution Vulnerability | Soda PDF | Desktop | - | - | 2025-12-23 21:24:58 | Deep Dive |
| CVE-2025-14415 | Soda PDF Desktop Launch Insufficient UI Warning Remote Code Execution Vulnerability | Soda PDF | Desktop | - | - | 2025-12-23 21:24:19 | Deep Dive |
| CVE-2025-14413 | Soda PDF Desktop CBZ File Parsing Directory Traversal Remote Code Execution Vulnerability | Soda PDF | Desktop | - | - | 2025-12-23 21:24:12 | Deep Dive |
| CVE-2025-14412 | Soda PDF Desktop XLS File Insufficient UI Warning Remote Code Execution Vulnerability | Soda PDF | Desktop | - | - | 2025-12-23 21:24:05 | Deep Dive |
| CVE-2025-14411 | Soda PDF Desktop PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability | Soda PDF | Desktop | - | - | 2025-12-23 21:24:00 | Deep Dive |
| CVE-2025-14410 | Soda PDF Desktop PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability | Soda PDF | Desktop | - | - | 2025-12-23 21:23:54 | Deep Dive |
| CVE-2025-14409 | Soda PDF Desktop PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability | Soda PDF | Desktop | - | - | 2025-12-23 21:23:49 | Deep Dive |
| CVE-2025-14408 | Soda PDF Desktop PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability | Soda PDF | Desktop | - | - | 2025-12-23 21:23:45 | Deep Dive |
| CVE-2025-14407 | Soda PDF Desktop PDF File Parsing Memory Corruption Information Disclosure Vulnerability | Soda PDF | Desktop | - | - | 2025-12-23 21:23:41 | Deep Dive |