Approved changes feed: RSS · Atom

cpe:2.3:a:gsheetconnector:elementor_forms_google_sheet_connector:*:*:*:*:free:wordpress:*:*

part: a version: * update: *

VendorGsheetconnector (ea525067-3041-5a65-81ac-4345522a7a7c)
ProductElementor Forms Google Sheet Connector (a67fe194-3ae0-5ebd-9f53-9a6bdca3f987)
Edition*
Language*
Software editionfree
Target softwarewordpress
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2023-2324 vulnerable 2026-06-08 06:02:42.074658 Elementor Forms Google Sheet Connector < 1.0.7 - Reflected XSS
The Elementor Forms Google Sheet Connector WordPress plugin before 1.0.7, gsheetconnector-for-elementor-forms-pro WordPress plugin through 1.0.7 does not escape some parameters before outputting them back in attributes, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin
Published: 2023-07-04T07:23:25.652Z
Updated: 2024-11-21T15:01:43.673Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.