Log out
Get PRO

Latest

Input validation vulnerability in WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping Labels 4.2.1

  • Severity: high-risk
  • Status: Fixed
  • Publication: December 27, 2023

The WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping Labels plugin for WordPress can be manipulated by attackers with Shop Manager access or higher. This manipulation can occur in all versions up to and including 4.2.1 and allows attackers to update any site options.

Detected in:

WebToffee WooCommerce PDF Invoices, Packing Slips, Delivery Notes & Shipping Labels fixed vulnerable versions:
WebToffee WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping Labels fixed vulnerable versions:
WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping Labels fixed vulnerable versions: >= * <= 4.2.1

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.