CVE-2025-8397 | Save as PDF Button Plugin up to 1.9.2 on WordPress Shortcode restpackpdfbutton cross site scripting

Inserito da Angelo Barbosa | Nov 13, 2025 | CVE

A vulnerability marked as problematic has been reported in Save as PDF Button Plugin up to 1.9.2 on WordPress. Impacted is the function restpackpdfbutton of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is referenced as CVE-2025-8397. Remote exploitation of the attack is possible. No exploit is available.

CVE-2025-8397 | Save as PDF Button Plugin up to 1.9.2 on WordPress Shortcode restpackpdfbutton cross site scripting

Post correlati

CVE-2024-0435 | mintplex-labs anything-llm up to 0.0.x Chat cross site scripting

CVE-2024-10291 | ZZCMS 2023 phome.php Ebak_DoExecSQL/Ebak_DotranExecutSQL phome sql injection

CVE-2025-6931 | D-Link DCS-6517/DCS-7517 up to 2.02.0 Root Password Generation /bin/httpd generate_pass_from_mac entropy

CVE-2023-7049 | Custom Field for WP Job Manager Plugin up to 1.2 on WordPress Shortcode resource injection