PrestaShop M4 Pdf
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in PrestaShop M4 Pdf.
By the Year
In 2026 there have been 0 vulnerabilities in PrestaShop M4 Pdf. M4 Pdf did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 0 | 0.00 |
| 2023 | 2 | 6.30 |
It may take a day or so for new M4 Pdf vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent PrestaShop M4 Pdf Security Vulnerabilities
M4 PDF plugin for Prestashop 3.2.3 vulnerable to arbitrary HTML crafting
CVE-2022-45448
6.1 - Medium
- September 20, 2023
M4 PDF plugin for Prestashop sites, in its 3.2.3 version and before, is vulnerable to an arbitrary HTML Document crafting vulnerability. The resource /m4pdf/pdf.php uses templates to dynamically create documents. In the case that the template does not exist, the application will return a fixed document with a message in mpdf format. An attacker could exploit this vulnerability by inputting a valid HTML/CSS document as the value of the parameter.
XSS
Prestashop M4PDF Plugin <=3.2.3 dir trav via f param
CVE-2022-45447
6.5 - Medium
- September 20, 2023
M4 PDF plugin for Prestashop sites, in its 3.2.3 version and before, is vulnerable to a directory traversal vulnerability. The f parameter is not properly checked in the resource /m4pdf/pdf.php, returning any file given its relative path. An attacker that exploits this vulnerability could download /etc/passwd from the server if the file exists.
Directory traversal
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for PrestaShop M4 Pdf or by PrestaShop? Click the Watch button to subscribe.
