Security Advisory

CVE-2022-4321

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-02-06 19:59:27
Last updated 2025-03-26 18:35:27
Assigner WPScan
State PUBLISHED

Description

The PDF Generator for WordPress plugin before 1.1.2 includes a vendored dompdf example file which is susceptible to Reflected Cross-Site Scripting and could be used against high privilege users such as admin