CVE-2026-4843 | mrdollar4444 GSheet for Woo Importer Plugin up to 2.3.1 on WordPress Configuration process_ajax_restore_action authorization (efa-9427-380)

Inserito da Angelo Barbosa | Mag 21, 2026 | CVE

A vulnerability described as critical has been identified in mrdollar4444 GSheet for Woo Importer Plugin up to 2.3.1 on WordPress. This affects the function process_ajax_restore_action of the component Configuration Handler. The manipulation results in missing authorization.

This vulnerability is identified as CVE-2026-4843. The attack can be executed remotely. There is not any exploit available.

Upgrading the affected component is recommended.

CVE-2026-4843 | mrdollar4444 GSheet for Woo Importer Plugin up to 2.3.1 on WordPress Configuration process_ajax_restore_action authorization (efa-9427-380)

Post correlati

CVE-2024-25053 | IBM Cognos Analytics up to 12.0.2 certificate validation (XFDB-283364)

CVE-2023-48229 | Contiki-NG up to 4.9 nrf-ieee-driver-arch.c read_frame out-of-bounds write

CVE-2024-4306 | Ofofonobs HubBank 1.0.2 Document Field unrestricted upload

CVE-2024-4617 | Rank Math SEO with AI Best SEO Tools Plugin up to 1.0.218 on WordPress cross site scripting