CVE-2025-22686
- EPSS 0.12%
- Veröffentlicht 03.02.2025 15:15:18
- Zuletzt bearbeitet 03.02.2025 15:15:18
Missing Authorization vulnerability in GSheetConnector CF7 Google Sheets Connector allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects CF7 Google Sheets Connector: from n/a through 5.0.17.
CVE-2024-5654
- EPSS 0.33%
- Veröffentlicht 08.06.2024 09:15:09
- Zuletzt bearbeitet 21.11.2024 09:48:06
The CF7 Google Sheets Connector plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'execute_post_data_cg7_free' function in all versions up to, and including, 5.0.9. This makes it possible...
CVE-2023-44989
- EPSS 0.25%
- Veröffentlicht 26.03.2024 18:15:08
- Zuletzt bearbeitet 21.11.2024 08:26:11
Insertion of Sensitive Information into Log File vulnerability in GSheetConnector CF7 Google Sheets Connector.This issue affects CF7 Google Sheets Connector: from n/a through 5.0.5.
CVE-2023-2320
- EPSS 0.1%
- Veröffentlicht 04.07.2023 08:15:10
- Zuletzt bearbeitet 21.11.2024 07:58:22
The CF7 Google Sheets Connector WordPress plugin before 5.0.2, cf7-google-sheets-connector-pro WordPress plugin through 5.0.2 does not escape a parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting which cou...