CVE-2023-35038: WordPress WP PDF Generator Plugin <= 1.2.2 is vulnerable to Cross Site Request Forgery (CSRF)
First published: Mon Jul 17 2023(Updated: )
Cross-Site Request Forgery (CSRF) vulnerability in wpexperts.Io WP PDF Generator plugin <= 1.2.2 versions.
Credit: audit@patchstack.com audit@patchstack.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Wpexperts Wp Pdf Generator | <1.2.3 |
Remedy
Update to 1.2.3 or a higher version.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this CSRF vulnerability?
The vulnerability ID for this Cross-Site Request Forgery (CSRF) vulnerability is CVE-2023-35038.
What is the severity of CVE-2023-35038?
CVE-2023-35038 has a severity value of 8.8, which is considered high.
Which software versions are affected by CVE-2023-35038?
The wpexperts.Io WP PDF Generator plugin <= 1.2.2 versions are affected by CVE-2023-35038.
How can I fix the CSRF vulnerability in wpexperts.Io WP PDF Generator plugin?
To fix the CSRF vulnerability in wpexperts.Io WP PDF Generator plugin, you should update to version 1.2.3 or later.
Where can I find more information about CVE-2023-35038?
You can find more information about CVE-2023-35038 at [this link](https://patchstack.com/database/vulnerability/wp-pdf-generator/wordpress-wp-pdf-generator-plugin-1-2-2-cross-site-request-forgery-csrf-vulnerability?_s_id=cve).
- collector/nvd-latest
- collector/nvd-api
- collector/nvd-index
- agent/type
- agent/author
- agent/softwarecombine
- agent/weakness
- agent/references
- agent/title
- agent/remedy
- agent/severity
- agent/description
- agent/first-publish-date
- agent/event
- agent/tags
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- vendor/wpexperts
- canonical/wpexperts wp pdf generator