Medium 6.5
2025-09-26< 3.9.2
CVE-2025-60040
wp-mpdf
Minimum safe version
3.9.2
Update to 3.9.2 or later to address 7 fixable vulnerabilities
Latest available3.9.2 ✓
High 7.1
2024-03-21< 3.8
CVE-2024-27962
Medium 4.3
2023-07-12< 3.5.2
CVE-2021-4416
N/A
2023-06-07< 3.5.2
CVE-2021-4342
N/A
< 3.5.2
Various Affected Software (Various Versions) - Cross-Site Request Forgery Bypass
N/A
< 3.5.2
CSRF Bypass in Multiple Plugins
N/A
2021-06-21< 3.5.2
WordPress wp-mpdf plugin <= 3.5.1 - Cross-Site Request Forgery (CSRF) vulnerability