cleantalk
Vulnerabilities and Security Researches

CF7 Spreadsheets, CVE-2025-31536

CVE, Research URL

CVE-2025-31536

Home page URL

Security reports for CF7 Spreadsheets

Application

CF7 Spreadsheets

Published on
Apr 03, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in moshensky CF7 Spreadsheets allows Reflected XSS. This issue affects CF7 Spreadsheets: from n/a through 2.3.2.
Affected versions
Min -, max 2.3.2.
Status
vulnerable
Previous vulnerability researches
Oracle Cards Lite (CVE-2025-30852) , Apr 04, 2025
New vulnerability
FPW Category Thumbnails (CVE-2025-31841) , Apr 05, 2025
Gutenify – Visual Site Builder Blocks & Site Templates. (CVE-2025-32168) , Apr 05, 2025
GetBookingsWP – Appointments Booking Calendar Plugin For WordPress (CVE-2025-31896) , Apr 05, 2025
Video Playlist For YouTube (CVE-2025-32183) , Apr 05, 2025
Snow Storm (CVE-2025-30858) , Apr 05, 2025