cleantalk
Vulnerabilities and Security Researches

PDF Invoices & Packing Slips for WooCommerce, CVE-2022-2092

CVE, Research URL

CVE-2022-2092

Home page URL

Security reports for PDF Invoices & Packing Slips for WooCommerce

Application

PDF Invoices & Packing Slips for WooCommerce

Published on
Jul 11, 2022
Research Description
The WooCommerce PDF Invoices & Packing Slips WordPress plugin before 2.16.0 doesn't escape a parameter on its setting page, making it possible for attackers to conduct reflected cross-site scripting attacks.
Affected versions
max 2.16.0.
Status
vulnerable
Previous vulnerability researches
PDF Invoices & Packing Slips for WooCommerce (CVE-2022-2537) , Jun 06, 2024
PDF Invoices & Packing Slips for WooCommerce (CVE-2024-3047) , Jun 06, 2024
PDF Invoices & Packing Slips for WooCommerce (CVE-2026-1906) , Apr 15, 2026
PDF Invoices & Packing Slips for WooCommerce (CVE-2024-50421) , Oct 27, 2024
PDF Invoices & Packing Slips for WooCommerce (CVE-2025-67589) , Jan 09, 2026
New vulnerability
Customer Reviews for WooCommerce (CVE-2026-1316) , Apr 15, 2026
WP Recipe Maker (CVE-2026-1558) , Apr 15, 2026
Page and Post Clone (CVE-2026-2893) , Apr 15, 2026
Greenshift – animation and page builder blocks (CVE-2026-2589) , Apr 15, 2026
Greenshift – animation and page builder blocks (CVE-2026-1927) , Apr 15, 2026