Lucene search
K

685 matches found

Patchstack
Patchstack
added 2025/10/21 11:0 a.m.10 views

WordPress WP Gravity Forms Zoho CRM and Bigin plugin <= 1.2.8 - Open Redirection vulnerability

Open Redirection vulnerability discovered by Bonds in WordPress Plugin WP Gravity Forms Zoho CRM and Bigin versions = 1.2.8...

4.7CVSS7AI score0.00205EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/10/13 11:40 a.m.8 views

WordPress GSheetConnector For Gravity Forms plugin <= 1.3.23 - Cross-Site Request Forgery to Arbitrary Plugin Activation/Deactivation vulnerability

Cross-Site Request Forgery to Arbitrary Plugin Activation/Deactivation vulnerability discovered by wesley wcraft in WordPress Plugin Gravity Forms Google Sheet Connector versions = 1.3.23...

2.4CVSS6.9AI score0.00141EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/10/13 11:28 a.m.9 views

WordPress GSheetConnector For Gravity Forms plugin <= 1.3.27 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Installation vulnerability

Missing Authorization to Authenticated Subscriber+ Arbitrary Plugin Installation vulnerability discovered by wesley wcraft in WordPress Plugin Gravity Forms Google Sheet Connector versions = 1.3.27...

8.8CVSS6.9AI score0.00392EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/10/12 10:5 a.m.12 views

CVE-2025-8606

The GSheetConnector For Gravity Forms plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions less than, or equal to, 1.3.23. This is due to missing or incorrect nonce validation on the activateplugin and deactivateplugin functions. This makes it possible for attackers to tri...

2.4CVSS5.7AI score0.00141EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/12 10:5 a.m.8 views

CVE-2025-8593

The GSheetConnector For Gravity Forms plugin for WordPress is vulnerable to authorization bypass in versions less than, or equal to, 1.3.27. This is due to a missing capability check on the 'installplugin' function. This makes it possible for authenticated attackers, with subscriber-level access...

8.8CVSS6.6AI score0.00392EPSS
Exploits0References1
NVD
NVD
added 2025/10/11 10:15 a.m.4 views

CVE-2025-8593

The GSheetConnector For Gravity Forms plugin for WordPress is vulnerable to authorization bypass in versions less than, or equal to, 1.3.27. This is due to a missing capability check on the 'installplugin' function. This makes it possible for authenticated attackers, with subscriber-level access...

8.8CVSS0.00392EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/10/11 9:28 a.m.10 views

CVE-2025-8606 GSheetConnector For Gravity Forms <= 1.3.23 - Cross-Site Request Forgery to Arbitrary Plugin Activation/Deactivation

The GSheetConnector For Gravity Forms plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions less than, or equal to, 1.3.23. This is due to missing or incorrect nonce validation on the activateplugin and deactivateplugin functions. This makes it possible for attackers to tri...

2.4CVSS0.00141EPSS
Exploits0References4
CVE
CVE
added 2025/10/11 9:28 a.m.11 views

CVE-2025-8606

The vulnerability CVE-2025-8606 affects the WordPress plugin GSheetConnector For Gravity Forms (versions

2.4CVSS5.3AI score0.00141EPSS
Exploits0References4
CVE
CVE
added 2025/10/11 9:28 a.m.27 views

CVE-2025-8593

CVE-2025-8593 affects the GSheetConnector For Gravity Forms WordPress plugin, with versions

8.8CVSS6.2AI score0.00392EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/10/11 9:28 a.m.16 views

CVE-2025-8593 GSheetConnector For Gravity Forms <= 1.3.27 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Installation

The GSheetConnector For Gravity Forms plugin for WordPress is vulnerable to authorization bypass in versions less than, or equal to, 1.3.27. This is due to a missing capability check on the 'installplugin' function. This makes it possible for authenticated attackers, with subscriber-level access...

8.8CVSS0.00392EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/10/11 12:0 a.m.3 views

WordPress plugin GSheetConnector For Gravity Forms 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

8.8CVSS7.4AI score0.00392EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/10/11 12:0 a.m.6 views

PT-2025-41677

Name of the Vulnerable Software and Affected Versions GSheetConnector For Gravity Forms plugin for WordPress versions prior to 1.3.28 Description The GSheetConnector For Gravity Forms plugin for WordPress is susceptible to an authorization bypass. This occurs because of a missing capability check...

8.8CVSS7.1AI score0.00392EPSS
Exploits0References11
Positive Technologies
Positive Technologies
added 2025/10/11 12:0 a.m.7 views

PT-2025-41678

Name of the Vulnerable Software and Affected Versions GSheetConnector For Gravity Forms plugin for WordPress versions prior to 1.3.24 Description The software is susceptible to Cross-Site Request Forgery due to inadequate nonce validation in the activate plugin and deactivate plugin functions. Th...

2.4CVSS6.4AI score0.00141EPSS
Exploits0References8
CNNVD
CNNVD
added 2025/10/11 12:0 a.m.3 views

WordPress plugin GSheetConnector For Gravity Forms 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site request...

2.4CVSS6.5AI score0.00141EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2014-4463

Malware in sbrugna...

6.1CVSS6.3AI score0.03902EPSS
Exploits2References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-1127

Malware in sbrugna...

6.1CVSS4.7AI score0.00607EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-3751

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.00607EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-5597

Malicious code in bioql PyPI...

4.8CVSS5.4AI score0.00616EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-51566

Malicious code in bioql PyPI...

5.4CVSS8.6AI score0.00281EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-42578

Malicious code in bioql PyPI...

7.1CVSS6.9AI score0.00337EPSS
Exploits2References1
Rows per page
Query Builder