VYPR

PDF For Gravity Forms

by WordPress

Source repositories

CVEs (2)

  • CVE-2025-60080HigDec 18, 2025
    risk 0.49cvss 7.5epss 0.00

    Deserialization of Untrusted Data vulnerability in add-ons.org PDF for Gravity Forms + Drag And Drop Template Builder pdf-for-gravity-forms allows Object Injection.This issue affects PDF for Gravity Forms + Drag And Drop Template Builder: from n/a through <= 6.5.0.

  • CVE-2023-2701Jul 17, 2023
    risk 0.00cvss epss 0.00

    The Gravity Forms WordPress plugin before 2.7.5 does not escape generated URLs before outputting them in attributes, leading to Reflected Cross-Site Scripting which could be used against high-privileged users such as admin.