Woocommerce Pdf Invoice Builder, Create Invoices, Packing Slips And More
Approved changes feed: RSS · Atom
cpe:2.3:a:edgarrojas:woocommerce_pdf_invoice_builder,_create_invoices,_packing_slips_and_more:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Edgarrojas (ceed15b4-b207-5145-9857-80b6c9fef626) |
|---|---|
| Product | Woocommerce Pdf Invoice Builder, Create Invoices, Packing Slips And More (35037a1c-fb0e-5937-96ff-3b4ccec99a44) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2023-3764 |
vulnerable | 2026-06-08 06:09:40.501910 |
WooCommerce PDF Invoice Builder <= 1.2.90 - Cross-Site Request Forgery via Save
MEDIUM (4.3)
The WooCommerce PDF Invoice Builder plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.2.90. This is due to missing or incorrect nonce validation on the Save function. This makes it possible for unauthenticated attackers to make changes to invoices via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.
Published: 2023-08-31T05:33:14.499Z
Updated: 2026-04-08T17:31:19.276Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.