cleantalk
Vulnerabilities and Security Researches

PDF Invoices & Packing Slips for WooCommerce, CVE-2017-18506

CVE, Research URL

CVE-2017-18506

Home page URL

Security reports for PDF Invoices & Packing Slips for WooCommerce

Application

PDF Invoices & Packing Slips for WooCommerce

Published on
Aug 12, 2019
Research Description
The woocommerce-pdf-invoices-packing-slips plugin before 2.0.13 for WordPress has XSS via the tab or section variable on settings screens.
Affected versions
max 2.15.0.
Status
vulnerable
Previous vulnerability researches
PDF Invoices & Packing Slips for WooCommerce (CVE-2022-2537) , Jun 06, 2024
PDF Invoices & Packing Slips for WooCommerce (CVE-2024-3047) , Jun 06, 2024
PDF Invoices & Packing Slips for WooCommerce (CVE-2026-1906) , Apr 15, 2026
PDF Invoices & Packing Slips for WooCommerce (CVE-2024-50421) , Oct 27, 2024
PDF Invoices & Packing Slips for WooCommerce (CVE-2025-67589) , Jan 09, 2026
New vulnerability
Customer Reviews for WooCommerce (CVE-2026-1316) , Apr 15, 2026
WP Recipe Maker (CVE-2026-1558) , Apr 15, 2026
Page and Post Clone (CVE-2026-2893) , Apr 15, 2026
Greenshift – animation and page builder blocks (CVE-2026-2589) , Apr 15, 2026
Greenshift – animation and page builder blocks (CVE-2026-1927) , Apr 15, 2026