CVE-2023-46154

MEDIUM

E2Pdf - Export To Pdf Tool for WordPress <= 1.20.18 - PHP Object Injection

Title source: llm

Description

Deserialization of Untrusted Data vulnerability in E2Pdf.Com E2Pdf – Export To Pdf Tool for WordPress.This issue affects E2Pdf – Export To Pdf Tool for WordPress: from n/a through 1.20.18.

References (1)

Core 1

Core References

Third Party Advisory vdb-entry

https://patchstack.com/database/vulnerability/e2pdf/wordpress-e2pdf-plugin-1-20-18-php-object-injection-vulnerability?_s_id=cve

Scores

CVSS v3 6.6

EPSS 0.0073

EPSS Percentile 49.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-502

Status published

Products (2)

e2pdf/e2pdf < 1.20.18

E2Pdf.com/E2Pdf – Export To Pdf Tool for WordPress < 1.20.18

Published Dec 19, 2023

Tracked Since Feb 18, 2026