Pdf.js Viewer Project Pdf.js Viewer — known CVE vulnerabilities
Every CVE whose affected-product data names Pdf.js Viewer Project Pdf.js Viewer, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2021-24759 — CVSS 5.4 (medium): The PDF.js Viewer WordPress plugin before 2.0.2 does not escape some of its shortcode and Gutenberg Block attributes, which could allow…
CVE-2022-4670 — CVSS 5.4 (medium): The PDF.js Viewer WordPress plugin before 2.1.8 does not validate and escape some of its shortcode attributes before outputting them back…