WordPress CF7 Spreadsheets plugin <= 2.3.2 - Settings Change vulnerability

Settings Change vulnerability discovered by Mika in WordPress Plugin CF7 Spreadsheets versions = 2.3.2...

CVE-2025-31603

Missing Authorization vulnerability in moshensky CF7 Spreadsheets cf7-spreadsheets allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CF7 Spreadsheets: from n/a through = 2.3.2...

CVE-2025-31603

CVE-2025-31603: Missing Authorization in CF7 Spreadsheets (CF7-spreadsheets) for WordPress; affects versions

CVE-2025-31603 WordPress CF7 Spreadsheets plugin <= 2.3.2 - Settings Change vulnerability

Missing Authorization vulnerability in moshensky CF7 Spreadsheets cf7-spreadsheets allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CF7 Spreadsheets: from n/a through = 2.3.2...

CVE-2025-31603 WordPress CF7 Spreadsheets plugin <= 2.3.2 - Settings Change vulnerability

Missing Authorization vulnerability in moshensky CF7 Spreadsheets cf7-spreadsheets allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CF7 Spreadsheets: from n/a through = 2.3.2...

WordPress plugin CF7 Spreadsheets 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

CVE-2024-45046

Technical details about CVE-2024-45046 are not publicly provided in the documents you shared. No explicit affected products/versions, impact, or remediation are stated here. Monitor for updates from the sources for concrete information.

PT-2024-28178 · Microsoft · Import Spreadsheets From Microsoft Excel

Name of the Vulnerable Software and Affected Versions: Import Spreadsheets from Microsoft Excel versions 10.1.4 and earlier Description: The issue allows for the unrestricted upload of files with dangerous types, potentially enabling code injection. This is related to the Import Spreadsheets from...

WordPress plugin Import Spreadsheets from Microsoft Excel Code Issue Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability...

WordPress Import Spreadsheets from Microsoft Excel plugin <= 10.1.4 - Arbitrary File Upload vulnerability

Arbitrary File Upload vulnerability discovered by Peng Zhou Patchstack Alliance in WordPress Plugin Import Spreadsheets from Microsoft Excel versions = 10.1.4...

WordPress Import Spreadsheets from Microsoft Excel Plugin <= 10.1.4 is vulnerable to Arbitrary File Upload

Software Import Spreadsheets from Microsoft Excel Type Plugin Vulnerable versions = 10.1.4 Fixed in 10.1.5 OWASP Top 10 A3: Injection Classification Arbitrary File Upload CVE CVE-2024-38734 Patch priority Medium CVSS severity Medium 9.1 Developer Claim ownership PSID 2c69040b9cb5 Credits Peng Zho...

SUSE CVE-2016-4434

Apache Tika before 1.13 does not properly initialize the XML parser or choose handlers, which might allow remote attackers to conduct XML External Entity XXE attacks via vectors involving 1 spreadsheets in OOXML files and 2 XMP metadata in PDF and other file formats, a related issue to...

[SECURITY] [DLA 3702-1] libspreadsheet-parseexcel-perl security update

Debian LTS Advisory DLA-3702-1 [email protected] https://www.debian.org/lts/security/ Guilhem Moulin December 31, 2023 https://wiki.debian.org/LTS Package : libspreadsheet-parseexcel-perl Version : 0.6500-1+deb10u1 CVE ID : CVE-2023-7101 Debian Bug : 1059450 Le Dinh Hai discovered that...

[SECURITY] [DSA 5592-1] libspreadsheet-parseexcel-perl security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5592-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso December 30, 2023 https://www.debian.org/security/faq -...

CVE-2023-48289

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SpreadsheetConverter Import Spreadsheets from Microsoft Excel allows Stored XSS.This issue affects Import Spreadsheets from Microsoft Excel: from n/a through 10.1.3...

WordPress Plugin Import Spreadsheets from Microsoft Excel Cross-Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

WordPress Import Spreadsheets from Microsoft Excel Plugin <= 10.1.3 is vulnerable to Cross Site Scripting (XSS)

Software Import Spreadsheets from Microsoft Excel Type Plugin Vulnerable versions = 10.1.3 Fixed in 10.1.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-48289 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 42e6092284d8 Credits Khalid Yusu...

PT-2023-2958 · Document Foundation +9 · Libreoffice +9

Name of the Vulnerable Software and Affected Versions: LibreOffice versions 7.4.0 through 7.4.5 LibreOffice versions 7.5.0 through 7.5.0 Description: The issue is related to an improper validation of array index in the spreadsheet component, allowing an attacker to craft a malicious spreadsheet...

K57108702: Apache Tika XML External Entity vulnerability CVE-2016-4434

Security Advisory Description Apache Tika before 1.13 does not properly initialize the XML parser or choose handlers, which might allow remote attackers to conduct XML External Entity XXE attacks via vectors involving 1 spreadsheets in OOXML files and 2 XMP metadata in PDF and other file formats,...

SUSE CVE-2006-3014

Microsoft Excel allows user-assisted attackers to execute arbitrary javascript and redirect users to arbitrary sites via an Excel spreadsheet with an embedded Shockwave Flash Player ActiveX Object, which is automatically executed when the user opens the spreadsheet...