VYPR

3d Flipbook Dflip Lite

by WordPress

Source repositories

CVEs (4)

  • CVE-2024-11830MedJan 8, 2025
    risk 0.42cvss 6.4epss 0.00

    The PDF Flipbook, 3D Flipbook—DearFlip plugin for WordPress is vulnerable to Stored Cross-Site Scripting via outline settings in all versions up to 2.3.52 due to insufficient input sanitization and output escaping on user-supplied data. This makes it possible for authenticated…

  • CVE-2025-5314MedJul 1, 2025
    risk 0.33cvss 6.1epss 0.00

    The Dear Flipbook – PDF Flipbook, 3D Flipbook, PDF embed, PDF viewer plugin for WordPress is vulnerable to DOM-Based Reflected Cross-Site Scripting via the ‘pdf-source’ parameter in all versions up to, and including, 2.3.65 due to insufficient input sanitization and output…

  • CVE-2024-8717MedOct 24, 2024
    risk 0.33cvss 6.1epss 0.00

    The PDF Flipbook, 3D Flipbook, PDF embed, PDF viewer – DearFlip plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'pdf_source' parameter in all versions up to, and including, 2.3.32 due to insufficient input sanitization and output escaping. This…

  • CVE-2026-49047MedMay 27, 2026
    risk 0.28cvss 4.3epss 0.00

    Missing Authorization vulnerability in DearHive DearFlip allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects DearFlip: from n/a through 2.4.27.