The Spreadsheet Integration plugin for WordPress has a security issue where attackers can trick site administrators into performing an action, like clicking a link, which allows them to publish any type of post, even private ones. This vulnerability exists in all versions up to 3.8.2.