EUVD-2023-49311

Malicious code in bioql PyPI...

CVE-2023-2320

The CF7 Google Sheets Connector WordPress plugin before 5.0.2, cf7-google-sheets-connector-pro WordPress plugin through 5.0.2 does not escape a parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as...

CVE-2025-22686 WordPress CF7 Google Sheets Connector plugin <= 5.0.17 - Broken Access Control vulnerability

Missing Authorization vulnerability in WesternDeal CF7 Google Sheets Connector cf7-google-sheets-connector allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CF7 Google Sheets Connector: from n/a through = 5.0.17...

CVE-2025-22686

CVE-2025-22686 : WordPress CF7 Google Sheets Connector (GSheetConnector) versions n/a through 5.0.17 contain a Missing Authorization vulnerability due to incorrectly configured access control. This could allow an attacker to exploit access control settings within CF7 Google Sheets Connector. CVSS...

CVE-2024-5654

The CF7 Google Sheets Connector plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'executepostdatacg7free' function in all versions up to, and including, 5.0.9. This makes it possible for unauthenticated attackers to toggle site...

PT-2024-36843 · WordPress · Cf7 Google Sheets Connector

Name of the Vulnerable Software and Affected Versions: CF7 Google Sheets Connector plugin for WordPress versions up to, and including, 5.0.9 Description: The issue is related to a missing capability check on the execute post data cg7 free function, allowing unauthenticated attackers to modify dat...

CVE-2023-44989

Insertion of Sensitive Information into Log File vulnerability in GSheetConnector CF7 Google Sheets Connector.This issue affects CF7 Google Sheets Connector: from n/a through 5.0.5...

CVE-2023-44989

CVE-2023-44989 affects the CF7 Google Sheets Connector WordPress plugin. It enables unauthenticated exposure of sensitive data via the plugin’s debug log (google-sheet-connector.php) for versions up to 5.0.5. Patch: upgrade to 5.0.6. The CVSS/impact details in connected sources cite high severity...

CF7 Google Sheets Connector < 5.0.6 - Unauthenticated Sensitive Information Exposure via Debug Log

Description The CF7 Google Sheets Connector plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 5.0.5 via the debug log functionality in google-sheet-connector.php. This makes it possible for unauthenticated attackers to extract sensitive dat...

WordPress CF7 Google Sheets Connector Plugin <= 5.0.5 is vulnerable to Sensitive Data Exposure

Software CF7 Google Sheets Connector Type Plugin Vulnerable versions = 5.0.5 Fixed in 5.0.6 OWASP Top 10 A9: Security Logging and Monitoring Failures Classification Sensitive Data Exposure CVE CVE-2023-44989 Patch priority Low CVSS severity Low 7.5 Developer Claim ownership PSID 42f969d97736...

PT-2023-18874 · WordPress · Cf7 Google Sheets Connector

Name of the Vulnerable Software and Affected Versions: CF7 Google Sheets Connector WordPress plugin versions prior to 5.0.2 cf7-google-sheets-connector-pro WordPress plugin versions prior to 5.0.2 Description: The issue is related to a Reflected Cross-Site Scripting that could be used against hig...

WordPress CF7 Google Sheets Connector Pro Plugin <= 2.3.5 is vulnerable to Cross Site Scripting (XSS)

Software CF7 Google Sheets Connector Pro Type Plugin Vulnerable versions = 2.3.5 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-2320 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 2600f79af18c Credits Erwan LR...