Approved changes feed: RSS · Atom

cpe:2.3:a:gsheetconnector:woocommerce_google_sheet_connector:*:*:*:*:*:wordpress:*:*

part: a version: * update: *

VendorGsheetconnector (ea525067-3041-5a65-81ac-4345522a7a7c)
ProductWoocommerce Google Sheet Connector (0a63d1eb-8934-5cba-963b-a875871d86bc)
Edition*
Language*
Software edition*
Target softwarewordpress
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2024-1562 vulnerable 2026-06-08 06:27:13.435905 WooCommerce Google Sheet Connector <= 1.3.11 - Missing Authorization
MEDIUM (5.3)
The WooCommerce Google Sheet Connector plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the execute_post_data function in all versions up to, and including, 1.3.11. This makes it possible for unauthenticated attackers to update plugin settings.
Published: 2024-02-21T03:36:00.767Z
Updated: 2026-04-08T17:29:24.880Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2023-2329 vulnerable 2026-06-08 06:02:42.085012 WooCommerce Google Sheet Connector < 1.3.6 - Access Code Update via CSRF
The WooCommerce Google Sheet Connector WordPress plugin before 1.3.6 does not have CSRF check when updating its Access Code, which could allow attackers to make logged in admin change the access code to an arbitrary one via a CSRF attack
Published: 2023-07-17T13:29:48.544Z
Updated: 2024-11-05T19:53:11.383Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.