Lucene search
K

4 matches found

NVD
NVD
added 2023/07/04 8:15 a.m.25 views

CVE-2023-2324

The Elementor Forms Google Sheet Connector WordPress plugin before 1.0.7, gsheetconnector-for-elementor-forms-pro WordPress plugin through 1.0.7 does not escape some parameters before outputting them back in attributes, leading to Reflected Cross-Site Scripting which could be used against high...

6.1CVSS6AI score0.00458EPSS
Exploits1References1
CVE
CVE
added 2023/07/04 7:23 a.m.43 views

CVE-2023-2324

The CVE-2023-2324 entry concerns the Elementor Forms Google Sheet Connector (and gsheetconnector-for-elementor-forms-pro) WordPress plugins. Affected versions prior to 1.0.7 fail to escape certain parameters before echoing them in attributes, enabling Reflected Cross-Site Scripting. This could be...

6.1CVSS6.1AI score0.00458EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2023/07/04 7:23 a.m.27 views

CVE-2023-2324 Elementor Forms Google Sheet Connector < 1.0.7 - Reflected XSS

The Elementor Forms Google Sheet Connector WordPress plugin before 1.0.7, gsheetconnector-for-elementor-forms-pro WordPress plugin through 1.0.7 does not escape some parameters before outputting them back in attributes, leading to Reflected Cross-Site Scripting which could be used against high...

6.2AI score0.00458EPSS
Exploits1References1
Patchstack
Patchstack
added 2023/06/22 12:0 a.m.13 views

WordPress Elementor Forms Google Sheet Connector Plugin < 1.0.7 is vulnerable to Cross Site Scripting (XSS)

Software Elementor Forms Google Sheet Connector Type Plugin Vulnerable versions 1.0.7 Fixed in 1.0.7 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-2324 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 9c0650ee0f4a Credits...

6.1CVSS5.6AI score0.00458EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder