PatchSiren

Edgar Rojas CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

CRITICAL Edgar Rojas CVE published 2026-06-15

CVE-2026-52704

CVE-2026-52704 is a critical vulnerability in WooCommerce PDF Invoice Builder, a WordPress plugin. The vulnerability is classified as 'Improper Control of Generation of Code ('Code Injection')' and allows for Remote Code Inclusion. The CVSS score for this vulnerability is 10, indicating the highest severity. The vulnerability affects WooCommerce PDF Invoice Builder versions from n/a through 2.0.8.