Skip to main content

Pdf Poster

3 CVEs product

Monthly

CVE-2026-27416 MEDIUM This Month

Missing authorization controls in bPlugins PDF Poster WordPress plugin versions up to 2.4.1 allow unauthenticated remote attackers to read sensitive information by exploiting incorrectly configured access control. The vulnerability exposes limited confidential data without requiring authentication or user interaction, affecting all default installations of the affected plugin versions.

Authentication Bypass Pdf Poster
NVD VulDB
CVSS 3.1
5.3
EPSS
0.0%
CVE-2026-32416 MEDIUM This Month

bPlugins PDF Poster through version 2.4.0 contains an authorization bypass vulnerability that allows authenticated users to modify or disrupt PDF operations due to improperly configured access controls. An attacker with valid credentials could exploit this flaw to manipulate data integrity or cause service disruption without proper authorization checks.

Authentication Bypass Pdf Poster
NVD VulDB
CVSS 3.1
5.4
EPSS
0.0%
CVE-2024-23508 HIGH This Week

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in bPlugins PDF Poster - PDF Embedder Plugin for WordPress allows Reflected XSS.1.17. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS WordPress Pdf Poster
NVD
CVSS 3.1
7.1
EPSS
0.1%
EPSS 0% CVSS 5.3
MEDIUM This Month

Missing authorization controls in bPlugins PDF Poster WordPress plugin versions up to 2.4.1 allow unauthenticated remote attackers to read sensitive information by exploiting incorrectly configured access control. The vulnerability exposes limited confidential data without requiring authentication or user interaction, affecting all default installations of the affected plugin versions.

Authentication Bypass Pdf Poster
NVD VulDB
EPSS 0% CVSS 5.4
MEDIUM This Month

bPlugins PDF Poster through version 2.4.0 contains an authorization bypass vulnerability that allows authenticated users to modify or disrupt PDF operations due to improperly configured access controls. An attacker with valid credentials could exploit this flaw to manipulate data integrity or cause service disruption without proper authorization checks.

Authentication Bypass Pdf Poster
NVD VulDB
EPSS 0% CVSS 7.1
HIGH This Week

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in bPlugins PDF Poster - PDF Embedder Plugin for WordPress allows Reflected XSS.1.17. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS WordPress Pdf Poster
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy