WPGSI: Spreadsheet Integration

Vulnerabilities 12Slug wpgsiLatest version 3.8.4WordPress.org →

Minimum safe version

3.8.4

Update to 3.8.4 or later to address 12 fixable vulnerabilities

Latest available3.8.4
N/A
2026-02-24< 3.8.4

WPGSI: Spreadsheet Integration <= 3.8.3 - Missing Authorization to Unauthenticated Arbitrary Post Creation and Deletion via Forged Base64 Token

WordfenceCVE
Medium 4.3
2025-03-05< 3.8.3

WordPress Spreadsheet Integration – Automate Google Sheets With WordPress, WooCommerce & Most Popular Form Plugins. Plugin <= 3.8.2 is vulnerable to Cross Site Request Forgery (CSRF)

EUVDPatchstackWordfenceCVE
Medium 6.3
2024-10-16< 3.6.1

Freemius SDK <= 2.4.2 - Missing Authorization Checks

CVE
N/A
< 3.6.0

Spreadsheet Integration &lt; 3.6.0 - Reflected Cross-Site Scripting

WPScan
N/A
< 3.6.0

Spreadsheet Integration &lt; 3.6.0 - CSRF Bypass

WPScan
N/A
2023-07-18< 3.7.9

WordPress Spreadsheet Integration – Automate Google Sheets With WordPress, WooCommerce & Most Popular Form Plugins. Plugin <= 3.7.8 is vulnerable to Cross Site Scripting (XSS)

PatchstackWPScanCVE
N/A
2021-12-24< 3.6.0

Spreadsheet Integration and Spreadsheet Integration Pro <= 3.5.0 - Cross-Site Request Forgery

Wordfence
N/A
2021-12-24< 3.6.0

Spreadsheet Integration and Spreadsheet Integration Pro <= 3.5.0 - Reflected Cross-Site Scripting

Wordfence
N/A
2022-03-04< 3.6.1

Freemius SDK <= 2.4.2 - Missing Authorization Checks

Wordfence
N/A
2022-02-28< 3.6.1

WordPress Spreadsheet Integration – Automate Google Sheets With WordPress, WooCommerce & Most Popular Form Plugins plugin <= 3.6.0 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Patchstack
N/A
2022-02-28< 3.6.1

WordPress Spreadsheet Integration – Automate Google Sheets With WordPress, WooCommerce & Most Popular Form Plugins plugin <= 3.6.0 - Sensitive Information Disclosure vulnerability

Patchstack