WordPress Plugin Vulnerabilities

Easy Pdf Restaurant Menu Upload < 1.2 - XSS

Description

The Easy PDF Restaurant Menu Upload WordPress plugin was affected by a XSS security vulnerability.

Affects Plugins

Plugin icon
easy-pdf-restaurant-menu-upload
Fixed in 1.2

References

CVE
CVE-2019-15842
URL
https://plugins.trac.wordpress.org/changeset?reponame=&new=2114753%40easy-pdf-restaurant-menu-upload&old=2107565%40easy-pdf-restaurant-menu-upload

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
6.1 (medium)

Miscellaneous

Verified
No
WPVDB ID
ada8c0c1-7eed-47d9-a077-0a650861c4d5

Timeline

Publicly Published
2019-06-18 (about 6 years ago)
Added
2019-06-18 (about 6 years ago)
Last Updated
2020-09-22 (about 5 years ago)

Other

Published
Title
Published
2014-08-01
Title
felici - XSS
Published
2025-10-16
Title
Kallyas <= 4.22.0 - Authenticated (Contributor+) Stored Cross-Site Scripting
Published
2024-07-10
Title
WANotifier < 2.6.1 - Admin+ Stored XSS
Published
2021-08-17
Title
Icegram < 2.0.3 - Admin+ Stored Cross-Site Scripting
Published
2023-05-02
Title
Custom 404 Pro < 3.7.3 - Reflected Cross-Site Scripting