| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-4245 | WooCommerce PDF Invoice Builder <= 1.2.89 - Missing Authorization to Sensitive Information Exposure | edgarrojas | PDF Builder for WooCommerce. Create invoices,packing slips and more | Medium | 4.3 | 2023-08-31 05:33:04 | Deep Dive |
| CVE-2023-4282 | EmbedPress <= 3.8.2 - Missing Authorization to Authenticated (Subscriber+) Plugin Settings Delete via admin_post_remove and remove_private_data | wpdevteam | EmbedPress – PDF Embedder, Embed YouTube Videos, 3D FlipBook, Social feeds, Docs & more | Medium | 5.4 | 2023-08-10 11:05:43 | Deep Dive |
| CVE-2023-4283 | EmbedPress <= 3.8.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode | wpdevteam | EmbedPress – PDF Embedder, Embed YouTube Videos, 3D FlipBook, Social feeds, Docs & more | Medium | 6.4 | 2023-08-10 11:05:43 | Deep Dive |
| CVE-2023-35038 | WordPress WP PDF Generator Plugin <= 1.2.2 is vulnerable to Cross Site Request Forgery (CSRF) | wpexperts.io | WP PDF Generator | Medium | 5.4 | 2023-07-17 13:26:20 | Deep Dive |
| CVE-2023-36810 | Quadratic runtime with malformed PDF missing xref marker in pypdf | py-pdf | pypdf | Medium | 6.2 | 2023-06-30 18:43:13 | Deep Dive |
| CVE-2023-36807 | Infinite Loop when reading malformed objects in pypdf | py-pdf | pypdf | Medium | 6.2 | 2023-06-30 18:38:10 | Deep Dive |
| CVE-2023-36464 | Infinite Loop when a comment isn't followed by a character in pypdf | py-pdf | pypdf | Medium | 6.2 | 2023-06-27 21:24:31 | Deep Dive |
| CVE-2023-3371 | EmbedPress <= 3.7.3 - Sensitive Information Exposure | wpdevteam | EmbedPress – PDF Embedder, Embed YouTube Videos, 3D FlipBook, Social feeds, Docs & more | Medium | 5.3 | 2023-06-27 01:55:28 | Deep Dive |
| CVE-2021-4337 | Multiple XforWooCommerce Add-On Plugins (Various Versions) - Missing Authorization | XforWooCommerce | Package Quantity Discount | High | 8.8 | 2023-06-07 12:43:07 | Deep Dive |
| CVE-2023-2180 | KIWIZ Invoices Certification & PDF System <= 2.1.3 - Unauthenticated Arbitrary File Download | Unknown | KIWIZ Invoices Certification & PDF System | 高危 | - | 2023-05-15 12:15:35 | Deep Dive |
| CVE-2023-23817 | WordPress Simple PDF Viewer Plugin <= 1.9 is vulnerable to Cross Site Scripting (XSS) | WebArea | Vera Nedvyzhenko | Simple PDF Viewer | Medium | 6.5 | 2023-04-23 10:27:21 | Deep Dive |
| CVE-2023-0835 | markdown-pdf 11.0.0 - Local File Read via Server Side XSS | - | markdown-pdf | 高危 | - | 2023-04-04 00:00:00 | Deep Dive |
| CVE-2022-37349 | PDF-XChange Editor 缓冲区错误漏洞 | PDF-XChange | PDF-XChange Editor | 高危 | - | 2023-03-29 00:00:00 | Deep Dive |
| CVE-2022-37350 | PDF-XChange Editor 缓冲区错误漏洞 | PDF-XChange | PDF-XChange Editor | 高危 | - | 2023-03-29 00:00:00 | Deep Dive |
| CVE-2022-37351 | PDF-XChange Editor 缓冲区错误漏洞 | PDF-XChange | PDF-XChange Editor | 中危 | - | 2023-03-29 00:00:00 | Deep Dive |
| CVE-2022-37352 | PDF-XChange Editor 缓冲区错误漏洞 | PDF-XChange | PDF-XChange Editor | 中危 | - | 2023-03-29 00:00:00 | Deep Dive |
| CVE-2022-37353 | PDF-XChange Editor 缓冲区错误漏洞 | PDF-XChange | PDF-XChange Editor | 中危 | - | 2023-03-29 00:00:00 | Deep Dive |
| CVE-2022-37354 | PDF-XChange Editor 缓冲区错误漏洞 | PDF-XChange | PDF-XChange Editor | 高危 | - | 2023-03-29 00:00:00 | Deep Dive |
| CVE-2022-37355 | PDF-XChange Editor 缓冲区错误漏洞 | PDF-XChange | PDF-XChange Editor | 高危 | - | 2023-03-29 00:00:00 | Deep Dive |
| CVE-2022-37356 | PDF-XChange Editor 缓冲区错误漏洞 | PDF-XChange | PDF-XChange Editor | 高危 | - | 2023-03-29 00:00:00 | Deep Dive |