CVE-2025-13136 – GSheetConnector For Ninja Forms

CVE ID : CVE-2025-13136

Published : Nov. 22, 2025, 8:30 a.m. | 47 minutes ago

Description : The GSheetConnector For Ninja Forms plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the ‘njform-google-sheet-config ‘ page in all versions up to, and including, 2.0.1. This makes it possible for authenticated attackers, with Subscriber-level access and above, to retrieve information about the system.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2025-13090 – WP Directory Kit

CVE-2025-41744 – Sprecher Automation: SPRECON-E series has static default key material for TLS connections

CVE-2025-41743 – Sprecher Automation: SPRECON-E series prone to weak encryption of update files

CVE-2025-41742 – Sprecher Automation: SPRECON-E series has a critical vulnerability due to the use of static cryptographic keys in system components