cbcvebase.
CVE-2022-47148
published 2023-03-01

CVE-2022-47148: Cross-Site Request Forgery (CSRF) vulnerability in WP Overnight PDF Invoices & Packing Slips for WooCommerce plugin <= 3.2.5 leading to popup dismiss.

PriorityP415medium4.3CVSS 3.1
AVNACLPRNUIRSUCNILAN
EPSS
0.23%
13.9th percentile
Cross-Site Request Forgery (CSRF) vulnerability in WP Overnight PDF Invoices & Packing Slips for WooCommerce plugin <= 3.2.5 leading to popup dismiss.

Affected

2 ranges
VendorProductVersion rangeFixed in
wp_overnightpdf_invoices_packing_slips_for_woocommercen/a – 3.2.5
wpovernightwoocommerce_pdf_invoices_packing_slips< 3.2.63.2.6
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.