Does HTML to PDF Converter have any unpatched vulnerabilities?

No. All known vulnerabilities in HTML to PDF Converter have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is HTML to PDF Converter compatible with WordPress 6.7.5?

According to WordPress.org data, HTML to PDF Converter 1.0.8 has been tested up to WordPress 6.7.5. Check the plugin's changelog for the latest compatibility information.

Is HTML to PDF Converter compatible with PHP 7.0+?

HTML to PDF Converter requires PHP 7.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is HTML to PDF Converter updated?

HTML to PDF Converter was last updated on Dec 24, 2024. Frequent updates are generally a positive security signal.

What is HTML to PDF Converter's security score?

HTML to PDF Converter has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

HTML to PDF Converter Security & Risk Analysis

wordpress.org/plugins/html-to-pdf-converter

A WordPress plugin that allows you to convert any WordPress page or post to a PDF file using the html2pdf.app API.

70 active installs v1.0.8 PHP 7.0+ WP 5.0+ Updated Dec 24, 2024

convert-to-pdfhtml2pdfpage-to-pdfpdfsave-to-pdf

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is HTML to PDF Converter Safe to Use in 2026?

Generally Safe

Score 92/100

HTML to PDF Converter has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The 'html-to-pdf-converter' plugin version 1.0.8 exhibits a generally good security posture due to its adherence to several best practices. The absence of direct SQL queries, the consistent use of prepared statements for any database interactions, and the high percentage of properly escaped output are positive indicators. Furthermore, the plugin has no recorded vulnerability history, suggesting a well-maintained codebase or a lack of past discovery.

However, there are notable areas of concern. The plugin's static analysis reveals two flows with unsanitized paths, which, although not classified as critical or high severity in the taint analysis, represent a potential risk if these paths are exposed to user input without proper sanitization or validation. Additionally, the lack of nonce checks and capability checks on its single entry point (the shortcode) is a significant security gap. This means that any user, regardless of their role or permissions, could potentially trigger the shortcode's functionality, which could lead to unintended consequences or be exploited if the underlying code has hidden vulnerabilities.

In conclusion, while the plugin demonstrates a commitment to secure coding practices in areas like SQL and output escaping, the identified unsanitized paths and the complete absence of authentication/authorization checks on its shortcode are weaknesses that warrant attention. The lack of past vulnerabilities is a positive sign, but it does not negate the risks presented by the current analysis.

Key Concerns

Unsanitized paths found
No nonce checks on entry point
No capability checks on entry point

Vulnerabilities

None known

HTML to PDF Converter Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

HTML to PDF Converter Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

27 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

96% escaped28 total outputs

Data Flows

2 unsanitized

Data Flow Analysis

2 flows2 with unsanitized paths

html2pdf_generate (html-to-pdf-converter.php:176)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

HTML to PDF Converter Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[html2pdf] html-to-pdf-converter.php:163

WordPress Hooks 3

actionadmin_menuhtml-to-pdf-converter.php:14

actionadmin_inithtml-to-pdf-converter.php:112

actioninithtml-to-pdf-converter.php:175

Maintenance & Trust

HTML to PDF Converter Maintenance & Trust

Maintenance Signals

WordPress version tested6.7.5

Last updatedDec 24, 2024

PHP min version7.0

Downloads3K

Community Trust

Rating20/100

Number of ratings1

Active installs70

Alternatives

HTML to PDF Converter Alternatives

Convert Articles to PDF

convert-articles-to-pdf

100

Easily convert your WordPress posts into high-quality downloadable PDF documents using DOMPDF.

80 No CVEs

Post to PDF Exporter

post-to-pdf-exporter

100

Convert WordPress posts to downloadable PDFs with custom settings, including watermark and more.

40 No CVEs

PDF Embedder

pdf-embedder

100

Seamlessly embed PDFs into your content, with customizations and intelligent responsive resizing, and no third-party services or iframes.

300K 1 CVE

PDF Invoices & Packing Slips for WooCommerce

woocommerce-pdf-invoices-packing-slips

Create, print & automatically email PDF or XML Invoices & PDF Packing Slips for WooCommerce orders.

300K 12 CVEs

Dear Flipbook – PDF Flipbook, 3D Flipbook, PDF embed, PDF viewer

3d-flipbook-dflip-lite

Dear Flipbook creates PDF Flipbook, 3D Flipbook, PDF viewer, PDF embed for WordPress sites. Create impressive and realistic 3D flipbooks with PDFs.

100K 8 CVEs

Developer Profile

HTML to PDF Converter Developer Profile

html2pdf.app

1 plugin · 70 total installs

trust score

Avg Security Score

92/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect HTML to PDF Converter

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

CSS Classes

html2pdf_button

Shortcode Output

<a class="html2pdf_button" href="

FAQ