Vulnerabilities > Zealousweb > Generate PDF Using Contact Form 7 > 2.11

DATE	CVE	VULNERABILITY TITLE	RISK
2024-07-09	CVE-2024-37555	Unspecified vulnerability in Zealousweb Generate PDF Using Contact Form 7 Unrestricted Upload of File with Dangerous Type vulnerability in ZealousWeb Generate PDF using Contact Form 7.This issue affects Generate PDF using Contact Form 7: from n/a through 4.0.6. network low complexity zealousweb critical	9.8
2022-09-26	CVE-2022-3070	Unspecified vulnerability in Zealousweb Generate PDF Using Contact Form 7 The Generate PDF WordPress plugin before 3.6 does not sanitise and escape its settings, allowing high privilege users such as admin to perform cross-Site Scripting attacks even when the unfiltered_html capability is disallowed. network low complexity zealousweb	4.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.