What is the severity of CVE-2024-30230?

CVE-2024-30230 is classified as a high severity vulnerability due to its potential impact on the security of affected systems.

How do I fix CVE-2024-30230?

To fix CVE-2024-30230, update the PDF Invoices and Packing Slips For WooCommerce plugin to version 1.3.8 or later.

What is the nature of the vulnerability described in CVE-2024-30230?

CVE-2024-30230 is a deserialization of untrusted data vulnerability that can lead to remote code execution.

Can CVE-2024-30230 lead to data compromise?

Yes, CVE-2024-30230 can potentially lead to data compromise if exploited, as it allows attackers to manipulate serialized data.

Vulnerability/
CVE-2024-30230

high

8.8

CWE

502

EPSS

0.043%

28/3/2024

8/4/2025

CVE-2024-30230: WordPress PDF Invoices and Packing Slips For WooCommerce plugin <= 1.3.7 - PHP Object Injection vulnerability

Q: What does CVE-2024-30230 affect?

CVE-2024-30230 affects the PDF Invoices and Packing Slips For WooCommerce plugin versions up to and including 1.3.7.

First published: Thu Mar 28 2024(Updated: )

Deserialization of Untrusted Data vulnerability in Acowebs PDF Invoices and Packing Slips For WooCommerce.This issue affects PDF Invoices and Packing Slips For WooCommerce: from n/a through 1.3.7.

Credit: audit@patchstack.com

Affected Software	Affected Version	How to fix
WordPress PDF Invoices & Packing Slips for WooCommerce	<=1.3.7
WP Overnight WooCommerce PDF Invoices & Packing Slips	<=1.3.7
Acowebs PDF Invoices and Packing Slips for WooCommerce	<1.3.8

Remedy

Update to 1.3.8 or a higher version.

Never miss a vulnerability like this again

Reference Links

https://patchstack.com/database/vulnerability/pdf-invoices-and-packing-slips-for-woocommerce/wordpress-pdf-invoices-and-packing-slips-for-woocommerce-plugin-1-3-7-php-object-injection-vulnerability?_s_id=cve

Frequently Asked Questions

What is the severity of CVE-2024-30230?
CVE-2024-30230 is classified as a high severity vulnerability due to its potential impact on the security of affected systems.
How do I fix CVE-2024-30230?
To fix CVE-2024-30230, update the PDF Invoices and Packing Slips For WooCommerce plugin to version 1.3.8 or later.
What does CVE-2024-30230 affect?
CVE-2024-30230 affects the PDF Invoices and Packing Slips For WooCommerce plugin versions up to and including 1.3.7.
What is the nature of the vulnerability described in CVE-2024-30230?
CVE-2024-30230 is a deserialization of untrusted data vulnerability that can lead to remote code execution.
Can CVE-2024-30230 lead to data compromise?
Yes, CVE-2024-30230 can potentially lead to data compromise if exploited, as it allows attackers to manipulate serialized data.

agent/remedy
agent/weakness
agent/title
agent/references
agent/type
agent/first-publish-date
agent/description
agent/author
agent/severity
agent/event
collector/epss-latest
source/FIRST
agent/epss
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/source
agent/guess-ai
agent/software-canonical-lookup
agent/software-canonical-lookup-request
agent/softwarecombine
agent/tags
collector/nvd-api
source/NVD
vendor/acowebs
canonical/wordpress pdf invoices & packing slips for woocommerce
vendor/wordpress
canonical/wp overnight woocommerce pdf invoices & packing slips
canonical/acowebs pdf invoices and packing slips for woocommerce

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.