CVE-2024-37549 – This stored XSS vulnerability in the Pdfcrowd S... (How to Fix)

Q: What is the severity of CVE-2024-37549?

CVE-2024-37549 has a CVSS score of 5.9 (MEDIUM). This stored XSS vulnerability in the Pdfcrowd Save as PDF WordPress plugin allows attackers to inject malicious scripts into web pages. When users view affected pages, the scripts execute in their browsers, potentially stealing credentials or performing unauthorized actions. All WordPress sites using this plugin version 4.0.0 or earlier are affected.

📋 TL;DR

This stored XSS vulnerability in the Pdfcrowd Save as PDF WordPress plugin allows attackers to inject malicious scripts into web pages. When users view affected pages, the scripts execute in their browsers, potentially stealing credentials or performing unauthorized actions. All WordPress sites using this plugin version 4.0.0 or earlier are affected.

💻 Affected Systems

Products:

Save as PDF plugin by Pdfcrowd for WordPress

Versions: All versions up to and including 4.0.0

Operating Systems: Any OS running WordPress

Default Config Vulnerable: ⚠️ Yes

Notes: All WordPress installations with this plugin enabled are vulnerable regardless of configuration.

📦 What is this software?

Save As Pdf by Pdfcrowd

View all CVEs affecting Save As Pdf →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers could steal administrator credentials, take over WordPress sites, install backdoors, or redirect visitors to malicious sites.

🟠

Likely Case

Attackers steal session cookies or user credentials, perform actions as authenticated users, or deface websites.

🟢

If Mitigated

With proper input validation and output encoding, malicious scripts are neutralized before reaching users' browsers.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: LIKELY

Unauthenticated Exploit: ✅ No

Complexity: LOW

XSS vulnerabilities are commonly exploited, though specific exploit details for this CVE aren't publicly documented.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 4.0.1 or later

Vendor Advisory: https://patchstack.com/database/vulnerability/save-as-pdf-by-pdfcrowd/wordpress-save-as-pdf-plugin-by-pdfcrowd-plugin-3-4-0-cross-site-scripting-xss-vulnerability?_s_id=cve

Restart Required: No

Instructions:

1. Log into WordPress admin panel. 2. Navigate to Plugins → Installed Plugins. 3. Find 'Save as PDF by Pdfcrowd'. 4. Click 'Update Now' if available. 5. Alternatively, download latest version from WordPress repository and manually update.

🔧 Temporary Workarounds

Disable Plugin

all

Temporarily disable the vulnerable plugin until patched.

wp plugin deactivate save-as-pdf-by-pdfcrowd

Implement WAF Rules

all

Configure web application firewall to block XSS payloads targeting this plugin.

🧯 If You Can't Patch

Remove the plugin entirely if patching isn't possible
Implement strict Content Security Policy (CSP) headers to mitigate script execution

🔍 How to Verify

Check if Vulnerable:

Check WordPress admin → Plugins → Installed Plugins for 'Save as PDF by Pdfcrowd' version 4.0.0 or earlier.

Check Version:

wp plugin get save-as-pdf-by-pdfcrowd --field=version

Verify Fix Applied:

Confirm plugin version is 4.0.1 or later in WordPress admin panel.

📡 Detection & Monitoring

Log Indicators:

Unusual POST requests to plugin endpoints
Script tags or JavaScript in plugin-related form submissions

Network Indicators:

HTTP requests containing script tags or JavaScript to plugin URLs

SIEM Query:

source="wordpress" AND (plugin="save-as-pdf-by-pdfcrowd" OR uri="/wp-content/plugins/save-as-pdf-by-pdfcrowd/") AND (payload CONTAINS "<script>" OR payload CONTAINS "javascript:")

📊 Metadata

CVE ID: CVE-2024-37549

CVSS v3 Score: 5.9 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L

CWE: CWE-79

Published: July 21, 2024

Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-37549, you might also want to check these: