cleantalk
Vulnerabilities and Security Researches

WPForms Google Sheet Connector, CVE-2025-67979

CVE, Research URL

CVE-2025-67979

Home page URL

Security reports for WPForms Google Sheet Connector

Application

WPForms Google Sheet Connector

Published on
Feb 20, 2026
Research Description
Improper Control of Generation of Code ('Code Injection') vulnerability in WesternDeal WPForms Google Sheet Connector gsheetconnector-wpforms allows Code Injection.This issue affects WPForms Google Sheet Connector: from n/a through <= 4.0.1.
Affected versions
max 4.0.1.
Status
vulnerable
Previous vulnerability researches
Complianz &#8211; GDPR/CCPA Cookie Consent (CVE-2025-11185) , Feb 27, 2026
Complianz &#8211; GDPR/CCPA Cookie Consent (CVE-2022-0193) , Jun 06, 2024
Complianz &#8211; GDPR/CCPA Cookie Consent (CVE-2022-3494) , Jun 06, 2024
Complianz &#8211; GDPR/CCPA Cookie Consent (CVE-2024-1592) , Jun 06, 2024
Complianz &#8211; GDPR/CCPA Cookie Consent (CVE-2023-33333) , Jun 06, 2024
New vulnerability
Post Slides (CVE-2025-15491) , Feb 27, 2026
ID Arrays (CVE-2025-68854) , Feb 27, 2026
Razorpay for WooCommerce (CVE-2025-14294) , Feb 27, 2026
Everest Forms – Build Contact Forms, Surveys, Polls, Application Forms, and more with Ease! (CVE-2026-22422) , Feb 27, 2026
WooCommerce Checkout &amp; Funnel Builder by CartFlows – Create High Converting Stores For WooCommerce (CVE-2026-25316) , Feb 27, 2026