Approved changes feed: RSS · Atom

cpe:2.3:a:gsheetconnector:ninja_forms_google_sheet_connector:*:*:*:*:free:wordpress:*:*

part: a version: * update: *

VendorGsheetconnector (ea525067-3041-5a65-81ac-4345522a7a7c)
ProductNinja Forms Google Sheet Connector (48f8fabe-830c-5e66-93f6-700cc04483ab)
Edition*
Language*
Software editionfree
Target softwarewordpress
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2023-2333 vulnerable 2026-06-08 06:02:42.093016 Ninja Forms Google Sheet Connector < 1.2.7 - Reflected XSS
The Ninja Forms Google Sheet Connector WordPress plugin before 1.2.7, gsheetconnector-ninja-forms-pro WordPress plugin through 1.2.7 does not escape a parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin
Published: 2023-07-04T07:23:24.093Z
Updated: 2024-11-21T15:11:13.757Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.