Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Pdfcrowd — Vulnerabilities & Security Advisories 8

Browse all 8 CVE security advisories affecting Pdfcrowd. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Pdfcrowd is a web-based PDF conversion service that transforms HTML, URLs, and other formats into PDF documents. Historically, the platform has been susceptible to multiple cross-site scripting (XSS) vulnerabilities and remote code execution (RCE) flaws, often stemming from improper input validation and insecure file handling. The service has accumulated eight CVEs, with several critical issues allowing attackers to execute arbitrary code or inject malicious scripts. While no major public security incidents have been widely documented, the consistent pattern of vulnerabilities suggests potential risks for organizations relying on the service for document generation, particularly when processing untrusted input sources.

Top products by Pdfcrowd: Save as PDF plugin by Pdfcrowd Save as Image plugin by Pdfcrowd
CVE IDTitleCVSSSeverityPublished
CVE-2026-0862 Save as PDF Plugin by PDFCrowd <= 4.5.5 - Reflected Cross-Site Scripting via options — Save as PDF Plugin by PDFCrowdCWE-79 6.1 Medium2026-01-24
CVE-2024-10891 Save as PDF Plugin by Pdfcrowd <= 4.2.1 - Authenticated (Contributor+) Stored Cross-Site Scripting — Save as PDF Plugin by PDFCrowdCWE-79 6.4 Medium2024-11-20
CVE-2024-37549 WordPress Save as PDF plugin by Pdfcrowd plugin <= 4.0.0 - Cross Site Scripting (XSS) vulnerability — Save as PDF plugin by PdfcrowdCWE-79 5.9 Medium2024-07-21
CVE-2024-35649 WordPress Save as PDF Plugin by Pdfcrowd plugin <= 3.2.3 - Cross Site Scripting (XSS) vulnerability — Save as PDF plugin by PdfcrowdCWE-79 6.5 Medium2024-06-04
CVE-2024-33684 WordPress Save as PDF plugin by Pdfcrowd plugin <= 3.2.0 - Broken Access Control to Stored XSS vulnerability — Save as PDF plugin by PdfcrowdCWE-862 6.5 Medium2024-04-29
CVE-2024-31930 WordPress Save as PDF by Pdfcrowd plugin <= 3.2.1 - Cross Site Scripting (XSS) vulnerability — Save as PDF plugin by PdfcrowdCWE-79 5.9 Medium2024-04-11
CVE-2023-40668 WordPress Save as PDF plugin by Pdfcrowd Plugin <= 2.16.0 is vulnerable to Cross Site Scripting (XSS) — Save as PDF plugin by PdfcrowdCWE-79 5.9 Medium2023-09-27
CVE-2023-40665 WordPress Save as Image plugin by Pdfcrowd Plugin <= 2.16.0 is vulnerable to Cross Site Scripting (XSS) — Save as Image plugin by PdfcrowdCWE-79 5.9 Medium2023-09-27

This page lists every published CVE security advisory associated with Pdfcrowd. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.