Wpovernight Woocommerce_pdf_invoices\&_packing_slips
9 CVEs affecting Wpovernight Woocommerce_pdf_invoices\&_packing_slips. Latest disclosed: 2025-02-04. Critical: 0, High: 3.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-22147 | High | 7.6 | 2024-01-27 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WP Overnight PDF Invoices & Packing Slips for WooCommerce… |
CVE-2024-3047 | High | 7.2 | 2024-05-02 | The PDF Invoices & Packing Slips for WooCommerce plugin for WordPress is vulnerable to Server-Side Request Forgery in versions up to, and including, 3.8.0 via… |
CVE-2024-3045 | High | 7.2 | 2024-05-02 | The PDF Invoices & Packing Slips for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several parameters in versions up to, an… |
CVE-2025-24373 | Medium | 6.5 | 2025-02-04 | woocommerce-pdf-invoices-packing-slips is an extension which allows users to create, print & automatically email PDF invoices & packing slips for WooCommerce o… |
CVE-2022-2537 | Medium | 6.1 | 2022-08-29 | The WooCommerce PDF Invoices & Packing Slips WordPress plugin before 3.0.1 does not sanitise and escape some parameters before outputting them back in an attri… |
CVE-2022-2092 | Medium | 6.1 | 2022-07-11 | The WooCommerce PDF Invoices & Packing Slips WordPress plugin before 2.16.0 doesn't escape a parameter on its setting page, making it possible for attackers to… |
CVE-2017-18506 | Medium | 6.1 | 2019-08-12 | The woocommerce-pdf-invoices-packing-slips plugin before 2.0.13 for WordPress has XSS via the tab or section variable on settings screens. |
CVE-2021-24991 | Medium | 4.8 | 2022-01-03 | The WooCommerce PDF Invoices & Packing Slips WordPress plugin before 2.10.5 does not escape the tab and section parameters before outputting it back in an attr… |
CVE-2022-47148 | Medium | 4.3 | 2023-03-01 | Cross-Site Request Forgery (CSRF) vulnerability in WP Overnight PDF Invoices & Packing Slips for WooCommerce plugin <= 3.2.5 leading to popup dismiss. |