CVE-2025-24671 - Vulnerability Details

- WordPress Save as PDF Plugin by Pdfcrowd Plugin <= 4.4.0 - PHP Object Injection vulnerability

Description

Deserialization of Untrusted Data vulnerability in Pdfcrowd Dev Team Save as PDF save-as-pdf-by-pdfcrowd allows Object Injection.This issue affects Save as PDF: from n/a through <= 4.4.0.

Published: 2025-01-27

Score: 9.8 Critical

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

The vulnerability is a PHP Object Injection flaw caused by insecure deserialization of untrusted data in the Pdfcrowd Dev Team "Save as PDF" plugin up to version 4.4.0. Exploitation of this fault allows an attacker to inject malicious objects that can execute arbitrary code on the hosting server, thereby compromising both confidentiality and integrity of site data.

Affected Systems

Vulnerable products are the Pdfcrowd Dev Team "Save as PDF" WordPress plugin listed through version 4.4.0. Any WordPress installation using this plugin without a newer release is affected.

Risk and Exploitability

The CVSS score of 9.8 marks the issue as critical, while the EPSS score of less than 1% indicates a low current exploitation probability. The vulnerability is not catalogued in CISA’s KEV. Attackers can exploit the flaw remotely by sending crafted requests to the plugin’s processing endpoint, although the precise authentication or privilege prerequisites are not detailed in the advisory. Given the severity, the risk remains high if the plugin is active on a publicly accessible server.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Pdfcrowd Dev Team

Save as PDF

unaffected

Version	Status	Constraints
`0`	affected	≤ 4.4.0

No data.

No data available yet.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Update the "Save as PDF" plugin to the latest version (4.4.1 or later) as issued by the vendor.
If an immediate update is not feasible, deactivate or uninstall the plugin to prevent potential exploitation.
Apply a temporary input validation safeguard by ensuring that only trusted data is deserialized, for example by reviewing and restricting the plugin’s serialize/deserialize calls or by blocking untrusted endpoints with web‑application firewall rules.

Generated by OpenCVE AI on May 1, 2026 at 18:07 UTC.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
EUVD	EUVD-2025-3865	Deserialization of Untrusted Data vulnerability in Pdfcrowd Save as PDF plugin by Pdfcrowd allows Object Injection. This issue affects Save as PDF plugin by Pdfcrowd: from n/a through 4.4.0.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00202.

Exploitation none

Automatable yes

Technical Impact total

References

Link	Providers
https://patchstack.com/database/Wordpress/Plugin/save-as-pdf-by-pdfcrowd/vulnerability/wordpress-save-as-pdf-plugin-by-pdfcrowd-plugin-4-4-0-php-object-injection-vulnerability?_s_id=cve

History

Thu, 23 Apr 2026 15:00:00 +0000

Type	Values Removed	Values Added
Metrics		cvssV3_1 `{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}`

Fri, 03 Apr 2026 06:30:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Wed, 01 Apr 2026 23:45:00 +0000

Type	Values Removed	Values Added
Description	Deserialization of Untrusted Data vulnerability in Pdfcrowd Save as PDF plugin by Pdfcrowd allows Object Injection. This issue affects Save as PDF plugin by Pdfcrowd: from n/a through 4.4.0.	Deserialization of Untrusted Data vulnerability in Pdfcrowd Dev Team Save as PDF save-as-pdf-by-pdfcrowd allows Object Injection.This issue affects Save as PDF: from n/a through <= 4.4.0.
References	https://patchstack.com/database/wordpress/plugin/save-as-pdf-by-pdfcrowd/vulnerability/wordpress-save-as-pdf-plugin-by-pdfcrowd-plugin-4-4-0-php-object-injection-vulnerability?_s_id=cve	https://patchstack.com/database/Wordpress/Plugin/save-as-pdf-by-pdfcrowd/vulnerability/wordpress-save-as-pdf-plugin-by-pdfcrowd-plugin-4-4-0-php-object-injection-vulnerability?_s_id=cve
Metrics	cvssV3_1 `{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}`

Mon, 27 Jan 2025 14:30:00 +0000

Type	Values Removed	Values Added
Description		Deserialization of Untrusted Data vulnerability in Pdfcrowd Save as PDF plugin by Pdfcrowd allows Object Injection. This issue affects Save as PDF plugin by Pdfcrowd: from n/a through 4.4.0.
Title		WordPress Save as PDF Plugin by Pdfcrowd Plugin <= 4.4.0 - PHP Object Injection vulnerability
Weaknesses		CWE-502
References		https://patchstack.com/database/wordpress/plugin/save-as-pdf-by-pdfcrowd/vulnerability/wordpress-save-as-pdf-plugin-by-pdfcrowd-plugin-4-4-0-php-object-injection-vulnerability?_s_id=cve
Metrics		cvssV3_1 `{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}`

Subscriptions

No data.

MITRE

Status: PUBLISHED

Assigner: Patchstack

Published: 2025-01-27T14:22:17.211Z

Updated: 2026-05-11T23:20:44.013Z

Reserved: 2025-01-23T14:51:57.436Z

Link: CVE-2025-24671

Vulnrichment

Updated: 2025-02-12T20:39:50.374Z

NVD

Status : Deferred

Published: 2025-01-27T15:15:15.703

Modified: 2026-04-23T15:25:15.457

Link: CVE-2025-24671

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-05-01T18:15:22Z

Weaknesses

CWE-502

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Exploitation none

Automatable yes

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object