Lucene search
+L

4 matches found

cve
cve
added 2025/08/14 10:34 a.m.14 views

CVE-2025-50040

CVE-2025-50040 is a stored XSS in the WordPress plugin CF7 Spreadsheets, up to version 2.3.2, caused by improper neutralization of input during web page generation. The vulnerability is authenticated (requires a user with at least low privileges and user interaction) and is rated with CVSS v3.1 b...

6.5CVSS5.9AI score0.0021EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2025/08/14 12:0 a.m.12 views

PT-2025-33204 · Unknown · Moshensky Cf7 Spreadsheets

Name of the Vulnerable Software and Affected Versions: moshensky CF7 Spreadsheets versions through 2.3.2 Description: The vulnerability involves improper neutralization of input during web page generation, leading to a stored cross-site scripting XSS issue in moshensky CF7 Spreadsheets...

6.5CVSS5.8AI score0.0021EPSS
Exploits0References3
redhatcve
redhatcve
added 2025/04/05 2:25 p.m.7 views

CVE-2025-31536

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in moshensky CF7 Spreadsheets cf7-spreadsheets allows Reflected XSS.This issue affects CF7 Spreadsheets: from n/a through = 2.3.2...

7.1CVSS7.2AI score0.00276EPSS
Exploits0References1
nvd
nvd
added 2025/04/03 2:15 p.m.8 views

CVE-2025-31536

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in moshensky CF7 Spreadsheets cf7-spreadsheets allows Reflected XSS.This issue affects CF7 Spreadsheets: from n/a through = 2.3.2...

7.1CVSS0.00276EPSS
Exploits0References1
Rows per page
Query Builder