Skip to main content

PDF Generator for WordPress CVE-2026-57407

| EUVDEUVD-2026-43478 HIGH
Server-Side Request Forgery (SSRF) (CWE-918)
2026-07-13 Patchstack
7.2
CVSS 3.1 · Vendor: Patchstack
Share

Severity by source

Vendor (Patchstack) PRIMARY
7.2 HIGH
AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N
vuln.today AI
6.4 MEDIUM

SSRF is network-reachable and low-complexity with scope change to internal systems; PR:L reflects that WordPress plugin SSRFs of this type typically require at least authenticated access, diverging from the source PR:N.

3.1 AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
4.0 AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:L/SI:L/SA:N

Primary rating from Vendor (Patchstack).

CVSS VectorVendor: Patchstack

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Changed
Confidentiality
Low
Integrity
Low
Availability
None

Lifecycle Timeline

2
Analysis Generated
Jul 13, 2026 - 10:57 vuln.today
CVE Published
Jul 13, 2026 - 08:41 cve.org
HIGH 7.2

DescriptionCVE.org

Server-Side Request Forgery (SSRF) vulnerability in WP Swings PDF Generator for WordPress pdf-generator-for-wp allows Server Side Request Forgery.This issue affects PDF Generator for WordPress: from n/a through <= 1.6.2.

AnalysisAI

Server-Side Request Forgery in WP Swings' PDF Generator for WordPress plugin (all versions up to and including 1.6.2) lets remote attackers coerce the WordPress server into issuing attacker-controlled outbound requests, with a scope-changed impact reaching adjacent internal systems. Reported by Patchstack and tracked as CWE-918 with a CVSS 3.1 base score of 7.2, it currently has no public exploit identified at time of analysis and is not listed in CISA KEV. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Identify WordPress site running PDF Generator <=1.6.2
Delivery
Locate PDF-generation endpoint accepting a URL
Exploit
Submit crafted internal/metadata URL
Execution
Server fetches attacker-chosen destination
Persist
Retrieve internal response or trigger internal request
Impact
Pivot to cloud metadata or intranet services

Vulnerability AssessmentAI

Exploitation Exploitation requires reaching the plugin's server-side URL-fetch/PDF-rendering functionality with an attacker-controlled destination URL; the source CVSS vector (AV:N/AC:L/PR:N/UI:N) implies remote, low-complexity, no-authentication, no-user-interaction access against a WordPress site with PDF Generator for WordPress <= 1.6.2 installed and active. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 3.1 vector CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N scores 7.2 (High), driven largely by the changed scope and network reachability rather than by high per-system impact (confidentiality and integrity are Low, availability None). … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker submits a request to the plugin's PDF-generation function containing a URL pointing at an internal target - for example a cloud metadata endpoint (http://169.254.169.254/latest/meta-data/) or an intranet admin panel. The server fetches that URL while rendering the PDF and returns or embeds the response, disclosing internal data or triggering internal state-changing requests. …
Remediation No vendor-released patch identified at time of analysis - the data lists all versions through 1.6.2 as affected without a confirmed fixed release, so consult the Patchstack advisory (https://patchstack.com/database/Wordpress/Plugin/pdf-generator-for-wp/vulnerability/wordpress-pdf-generator-for-wordpress-plugin-1-6-2-server-side-request-forgery-ssrf-vulnerability) and the plugin changelog for an update beyond 1.6.2 and upgrade as soon as one is published. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours, complete an inventory of all WordPress deployments running WP Swings PDF Generator and identify which are at version 1.6.2 or earlier. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-57407 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy