WooCommerce PDF Invoice Builder, Create invoices, packing slips and more

Wordfence Intelligence   >   Vulnerability Database   >   WordPress Plugins   >   WooCommerce PDF Invoice Builder, Create invoices, packing slips and more

Information

Software Type Plugin
Software Slug woo-pdf-invoice-builder (view on wordpress.org)
Software Status Active
Software Author edgarrojas
Software Website wooinvoice.rednao.com
Software Downloads 199,163
Software Active Installs 3,000
Software Record Last Updated May 11, 2024

7 Vulnerabilities

WooCommerce PDF Invoice Builder <= 1.2.101 - Cross-Site Request Forgery
4.3
CVE-2023-51486
Dec 27, 2023
Researcher: Nguyen Xuan Chien
WooCommerce PDF Invoice Builder <= 1.2.103 - Reflected Cross-Site Scripting
6.1
CVE-2023-46076
Oct 16, 2023
Researcher: LEE SE HYOUNG
WooCommerce PDF Invoice Builder <= 1.2.89 - Missing Authorization to Sensitive Information Exposure
4.3
CVE-2023-4245
Aug 18, 2023
Researcher: Marco Wotschka
WooCommerce PDF Invoice Builder <= 1.2.90 - Authenticated (Administrator+) Cross-Site Scripting
4.4
CVE-2023-4160
Aug 18, 2023
Researcher: Marco Wotschka
WooCommerce PDF Invoice Builder <= 1.2.90 - Cross-Site Request Forgery to Custom Field Creation
4.3
CVE-2023-4161
Aug 16, 2023
Researcher: Marco Wotschka
WooCommerce PDF Invoice Builder <= 1.2.89 - Authenticated (Subscriber+) SQL Injection via Export
8.8
CVE-2023-3677
Aug 11, 2023
Researcher: Marco Wotschka
WooCommerce PDF Invoice Builder <= 1.2.90 - Cross-Site Request Forgery via Save
4.3
CVE-2023-3764
Aug 11, 2023
Researcher: Marco Wotschka
Title CVE ID CVSS Researchers Date
WooCommerce PDF Invoice Builder <= 1.2.101 - Cross-Site Request Forgery CVE-2023-51486 4.3 Nguyen Xuan Chien December 27, 2023
WooCommerce PDF Invoice Builder <= 1.2.103 - Reflected Cross-Site Scripting CVE-2023-46076 6.1 LEE SE HYOUNG October 16, 2023
WooCommerce PDF Invoice Builder <= 1.2.89 - Missing Authorization to Sensitive Information Exposure CVE-2023-4245 4.3 Marco Wotschka August 18, 2023
WooCommerce PDF Invoice Builder <= 1.2.90 - Authenticated (Administrator+) Cross-Site Scripting CVE-2023-4160 4.4 Marco Wotschka August 18, 2023
WooCommerce PDF Invoice Builder <= 1.2.90 - Cross-Site Request Forgery to Custom Field Creation CVE-2023-4161 4.3 Marco Wotschka August 16, 2023
WooCommerce PDF Invoice Builder <= 1.2.89 - Authenticated (Subscriber+) SQL Injection via Export CVE-2023-3677 8.8 Marco Wotschka August 11, 2023
WooCommerce PDF Invoice Builder <= 1.2.90 - Cross-Site Request Forgery via Save CVE-2023-3764 4.3 Marco Wotschka August 11, 2023

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation