Live Vulnerability Intelligence
Threat Database
Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.
Threat Entry
Updated 2024-11-21
CVE-2023-50849 - E2pdf Plugin
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in E2Pdf.Com E2Pdf – Export To Pdf Tool for WordPress.This issue affects E2Pdf – Export To Pdf Tool for WordPress: from n/a through 1.20.23.
PLUGIN
E2pdf
CVE-2023-50849
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2023-46154 - E2pdf Plugin
Deserialization of Untrusted Data vulnerability in E2Pdf.Com E2Pdf – Export To Pdf Tool for WordPress.This issue affects E2Pdf – Export To Pdf Tool for WordPress: from n/a through 1.20.18.
PLUGIN
E2pdf
CVE-2023-46154
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2023-6826 - E2pdf Plugin
The E2Pdf plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation on the 'import_action' function in versions up to, and including, 1.20.25. This makes it possible for authenticated attackers with a role that the administrator previously granted access to the plugin, to upload arbitrary files on the affected site's server which may make remote code execution possible.
PLUGIN
E2pdf
CVE-2023-6826
Risk Score
Threat Entry
Updated 2025-04-23
CVE-2023-5229 - E2pdf Plugin
The E2Pdf WordPress plugin before 1.20.20 does not sanitize and escape some of its settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed
PLUGIN
E2pdf
CVE-2023-5229
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2022-0535 - E2pdf Plugin
The E2Pdf WordPress plugin before 1.16.45 does not sanitise and escape some of its settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed
PLUGIN
E2pdf
CVE-2022-0535
Risk Score