Lucene search

Google Doc Embedder Security Vulnerabilities

cve

CVE-2012-4915

Directory traversal vulnerability in the Google Doc Embedder plugin before 2.5.4 for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter to libs/pdf.php.

6.8AI Score

0.911EPSS

2014-05-29 02:19 PM

cve

CVE-2014-9173

SQL injection vulnerability in view.php in the Google Doc Embedder plugin before 2.5.15 for WordPress allows remote attackers to execute arbitrary SQL commands via the gpid parameter.

8.7AI Score

0.002EPSS

2014-12-02 04:59 PM

cve

CVE-2015-1879

Cross-site scripting (XSS) vulnerability in the Google Doc Embedder plugin before 2.5.19 for WordPress allows remote attackers to inject arbitrary web script or HTML via the profile parameter in an edit action in the gde-settings page to wp-admin/options-general.php.

5.9AI Score

0.002EPSS

2022-10-03 04:15 PM

cve

CVE-2016-10880

The google-document-embedder plugin before 2.6.1 for WordPress has XSS.

6.1CVSS

6.3AI Score

0.001EPSS

2019-08-14 04:15 PM

cve

CVE-2016-10881

The google-document-embedder plugin before 2.6.2 for WordPress has XSS.

6.1CVSS

6.9AI Score

0.001EPSS

2019-08-14 04:15 PM

cve

CVE-2016-10882

The google-document-embedder plugin before 2.6.2 for WordPress has CSRF.

8.8CVSS

8.7AI Score

0.001EPSS

2019-08-14 04:15 PM