Really Simple Security logo

Log out
Get PRO

Latest

Input validation vulnerability in Stylish Google Sheet Reader 4.0 – Seamlessly Embed Google Sheets as Responsive Data Tables 4.0

  • Severity: medium-risk
  • Status: Fixed
  • Publication: March 4, 2025

A plugin called “Stylish Google Sheet Reader” for WordPress has a security issue that allows attackers to inject harmful web scripts through a parameter called ‘lim’. This can happen in versions up to 4.0 if the plugin is not properly checking and filtering the input and output. This means that someone who is not logged in can manipulate the plugin and potentially harm users by tricking them into clicking on a link.

Detected in:

Stylish Google Sheet Reader – Effortlessly Embed Google Sheets as Responsive, Interactive Data Tables fixed vulnerable versions:
Stylish Google Sheet Reader – Embed Google Sheets as Interactive Tables with Built-in Form Submissions fixed vulnerable versions:
Stylish Google Sheet Reader 4.0 – Seamlessly Embed Google Sheets as Responsive Data Tables fixed vulnerable versions: >= * <= 4.0

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.