Plattform
wordpress
Komponente
gsheetconnector-wpforms
Behoben in
4.0.2
CVE-2025-67979 describes a Remote Code Execution (RCE) vulnerability within the WPForms Google Sheet Connector plugin. This flaw allows attackers to inject malicious code, potentially leading to complete compromise of the WordPress website. The vulnerability impacts versions from 0.0 up to and including 4.0.1, and a patch is available in version 4.0.2.
The impact of this RCE vulnerability is severe. An attacker exploiting this flaw could execute arbitrary code on the web server hosting the WordPress site. This could lead to data theft, website defacement, malware installation, and complete system takeover. The attacker could potentially access sensitive data stored within the WordPress database, including user credentials, customer information, and financial data. Furthermore, the attacker could use the compromised server as a launchpad for further attacks against other systems on the network, significantly expanding the blast radius.
This vulnerability has a high probability of exploitation due to its critical severity and the potential for remote, unauthenticated code execution. While no public proof-of-concept (POC) has been released as of the publication date, the ease of exploitation makes it a likely target for malicious actors. It is recommended to monitor threat intelligence feeds for any indications of active exploitation. The CVE was published on 2026-02-20.
Websites utilizing the WPForms Google Sheet Connector plugin, particularly those handling sensitive user data or operating in high-risk environments, are at significant risk. Shared hosting environments where multiple WordPress sites share the same server resources are also particularly vulnerable, as a compromise of one site could potentially lead to the compromise of others.
• wordpress / composer / npm:
grep -r 'gsheetconnector-wpforms' /var/www/html/
wp plugin list | grep gsheetconnector-wpforms• generic web:
curl -I https://your-wordpress-site.com/wp-content/plugins/gsheetconnector-wpforms/ | grep -i 'Content-Type: application/octet-stream'disclosure
Exploit-Status
EPSS
0.05% (16% Perzentil)
CISA SSVC
CVSS-Vektor
The primary mitigation is to immediately upgrade the WPForms Google Sheet Connector plugin to version 4.0.2 or later. If an immediate upgrade is not possible due to compatibility issues or breaking changes, consider temporarily disabling the plugin. As a short-term workaround, implement strict input validation and sanitization on any user-supplied data passed to the Google Sheet Connector. Review server access logs for any suspicious activity related to the plugin. Consider using a Web Application Firewall (WAF) to filter out malicious requests targeting the plugin’s endpoints. After upgrading, verify the fix by attempting to trigger the vulnerability with a known malicious payload and confirming that it is blocked.
Aktualisieren Sie auf Version 4.0.2 oder eine neuere gepatchte Version
Schwachstellenanalysen und kritische Warnungen direkt in deinen Posteingang.
CVE-2025-67979 is a critical Remote Code Execution vulnerability in the WPForms Google Sheet Connector plugin, allowing attackers to execute arbitrary code on your WordPress site.
You are affected if you are using WPForms Google Sheet Connector versions 0.0 through 4.0.1. Check your plugin version and upgrade immediately.
Upgrade the WPForms Google Sheet Connector plugin to version 4.0.2 or later. If immediate upgrade is not possible, disable the plugin temporarily.
While no widespread exploitation has been confirmed, the vulnerability's ease of exploitation suggests it is likely to be targeted soon.
Refer to the official WPForms website and security advisory page for the latest information and updates regarding CVE-2025-67979.
Lade deine Abhängigkeitsdatei hoch und erfahre sofort, ob dich diese und andere CVEs treffen.
Lade deine Abhängigkeitsdatei hoch und erfahre sofort, ob dich diese und andere CVEs treffen.