Vulnerabilities in edgarrojas
14 resultsCVE-2023-3677HIGHWooCommerce PDF Invoice Builder <= 1.2.89 - Authenticated (Subscriber+) SQL Injection via ExportEPSS 0.6%CVE-2025-11889HIGHAIO Forms <= 1.3.18 - Authenticated (Admin+) Arbitrary File Upload via Zip ImportEPSS 0.6%CVE-2024-7414MEDIUMPDF Builder for WPForms <= 1.2.116 - Unauthenticated Full Path DisclosureEPSS 0.6%CVE-2023-49856HIGHWordPress Smart Forms plugin <= 2.6.84 - Authenticated Arbitrary Options Change VulnerabilityEPSS 0.5%CVE-2023-4245MEDIUMWooCommerce PDF Invoice Builder <= 1.2.89 - Missing Authorization to Sensitive Information ExposureEPSS 0.4%CVE-2023-4160MEDIUMWooCommerce PDF Invoice Builder <= 1.2.90 - Authenticated (Administrator+) Cross-Site ScriptingEPSS 0.4%CVE-2024-9214MEDIUMExtra Product Options Builder for WooCommerce <= 1.2.133 - Unauthenticated Stored Cross-Site ScriptingEPSS 0.4%CVE-2024-11276MEDIUMPDF Builder for WooCommerce. Create invoices,packing slips and more <= 1.2.136 - Reflected Cross-Site ScriptingEPSS 0.3%CVE-2023-4161MEDIUMWooCommerce PDF Invoice Builder <= 1.2.90 - Cross-Site Request Forgery to Custom Field CreationEPSS 0.3%CVE-2026-2022MEDIUMSmart Forms <= 2.6.99 - Missing Authorization to Authenticated (Subscriber+) Campaign Data ExposureEPSS 0.3%CVE-2023-3764MEDIUMWooCommerce PDF Invoice Builder <= 1.2.90 - Cross-Site Request Forgery via SaveEPSS 0.2%CVE-2025-5055MEDIUMSmart Forms <= 2.6.98 - Authenticated (Admin+) Stored Cross-Site ScriptingEPSS 0.2%CVE-2025-64269MEDIUMWordPress WooCommerce PDF Invoice Builder plugin <= 1.2.150 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-53203MEDIUMWordPress WooCommerce PDF Invoice Builder plugin <= 1.2.148 - Cross Site Request Forgery (CSRF) VulnerabilityEPSS 0.1%