[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f0v-FSc7mLXZfAd0m9mwEFL8N_Y141NAeuMNfk8XXtYM":3},{"id":4,"url_slug":5,"title":6,"description":7,"plugin_slug":8,"theme_slug":9,"affected_versions":10,"patched_in_version":11,"severity":12,"cvss_score":13,"cvss_vector":14,"vuln_type":15,"published_date":16,"updated_date":17,"references":18,"days_to_patch":20,"patch_diff_files":21,"patch_trac_url":9,"research_status":30,"research_verified":31,"research_rounds_completed":32,"research_plan":33,"research_summary":9,"research_vulnerable_code":9,"research_fix_diff":9,"research_exploit_outline":9,"research_model_used":34,"research_started_at":35,"research_completed_at":36,"research_error":9,"poc_status":9,"poc_video_id":9,"poc_summary":9,"poc_steps":9,"poc_tested_at":9,"poc_wp_version":9,"poc_php_version":9,"poc_playwright_script":9,"poc_exploit_code":9,"poc_has_trace":31,"poc_model_used":9,"poc_verification_depth":9,"poc_exploit_code_gated":31,"source_links":37},"CVE-2026-48836","easy-invoice-invoice-generator-pdf-quotes-payments-unauthenticated-remote-code-execution","Easy Invoice – Invoice Generator, PDF Quotes & Payments \u003C= 2.1.19 - Unauthenticated Remote Code Execution","The Easy Invoice – Invoice Generator, PDF Quotes & Payments plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 2.1.19. This makes it possible for unauthenticated attackers to execute code on the server.","easy-invoice",null,"\u003C=2.1.19","2.1.20","critical",9.8,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:H\u002FI:H\u002FA:H","Improper Control of Generation of Code ('Code Injection')","2026-06-01 00:00:00","2026-06-11 13:59:13",[19],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fc1d359ef-a6f1-451e-a76b-e8f7a54b4eac?source=api-prod",11,[22,23,24,25,26,27,28,29],"changelog.txt","easy-invoice.php","includes\u002FAdmin\u002FEasyInvoiceAjax.php","includes\u002FControllers\u002FPaymentController.php","includes\u002FControllers\u002FQuoteController.php","includes\u002FServices\u002FEmailManager.php","readme.txt","templates\u002Fquotes\u002Fsingle.php","researched",false,3,"# Exploitation Research Plan - CVE-2026-48836 (Easy Invoice RCE)\n\n## 1. Vulnerability Summary\nThe **Easy Invoice** plugin for WordPress (\u003C= 2.1.19) is vulnerable to **Unauthenticated Remote Code Execution** due to improper control of code generation during PDF document creation. The plugin registers unauthenticated AJAX handlers (`nopriv_easy_invoice_generate_pdf`) that process user-supplied HTML or template data. If the underlying PDF library (likely `dompdf`) is configured with PHP execution enabled (`isPhpEnabled => true`), an attacker can inject and execute arbitrary PHP code on the server.\n\n## 2. Attack Vector Analysis\n*   **Endpoint:** `\u002Fwp-admin\u002Fadmin-ajax.php`\n*   **Action:** `easy_invoice_generate_pdf` or `easy_invoice_generate_quote_pdf`\n*   **Authentication:** None (Unauthenticated via `nopriv` hook)\n*   **Preconditions:** The plugin must be active. A valid Quote or Invoice ID may be required if the handler validates existence, though the vulnerability likely resides in the processing of arbitrary `html` or `data` parameters sent to the PDF engine.\n\n## 3. Code Flow\n1.  **Registration:** `includes\u002FAdmin\u002FEasyInvoiceAjax.php` registers the AJAX actions:\n    ```php\n    add_action('wp_ajax_nopriv_easy_invoice_generate_pdf', array($this, 'generateInvoicePdf'));\n    add_","gemini-3-flash-preview","2026-06-26 06:11:47","2026-06-26 06:13:27",{"type":38,"vulnerable_version":39,"fixed_version":11,"vulnerable_browse":40,"vulnerable_zip":41,"fixed_browse":42,"fixed_zip":43,"all_tags":44},"plugin","2.1.19","https:\u002F\u002Fplugins.trac.wordpress.org\u002Fbrowser\u002Feasy-invoice\u002Ftags\u002F2.1.19","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Feasy-invoice.2.1.19.zip","https:\u002F\u002Fplugins.trac.wordpress.org\u002Fbrowser\u002Feasy-invoice\u002Ftags\u002F2.1.20","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Feasy-invoice.2.1.20.zip","https:\u002F\u002Fplugins.trac.wordpress.org\u002Fbrowser\u002Feasy-invoice\u002Ftags"]