310 matches found
CVE-2012-4915
CVE-2012-4915 affects the Google Doc Embedder Plugin for WordPress. A directory-traversal in libs/pdf.php allows remote reading of arbitrary files via .. in the file parameter. Affected plugin versions are older than 2.5.4. Mitigation is to upgrade to 2.5.4 or later (or apply vendor-provided fixe...
WordPress Plugin Google Document Embedder Arbitrary File Disclosure (CVE-2012-4915)
A remote code execution vulnerability has been reported in Google Doc Embedder Plugin for WordPress...
Google Doc Embedder Plugin for WordPress 'File' Parameter Traversal Arbitrary File Disclosure
The Google Doc Embedder Plugin for WordPress installed on the remote host is affected by a file disclosure vulnerability due to a failure to properly sanitize user-supplied input to the 'file' parameter of the 'libs/pdf.php' script. This vulnerability could allow an unauthenticated, remote attack...
WordPress Google Document Embedder Plugin - Arbitrary File Disclosure
Google Document Embedder plugin is prone to an arbitrary file disclosure vulnerability. It allows for database credential disclosure via the /libs/pdf.php script. Solution Update the plugin...
WordPress Google Document Embedder Arbitrary File Disclosure
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'rbmysql' class Metasploit3 'WordPress Plugin...
WordPress Plugin Google Document Embedder Arbitrary File Disclosure
This Metasploit module exploits an arbitrary file disclosure flaw in the WordPress blogging software plugin known as Google Document Embedder. The vulnerability allows for database credential disclosure via the /libs/pdf.php script. The Google Document Embedder plug-in versions 2.4.6 and below ar...
WordPress Google Doc Embedder Plugin Arbitrary File Disclosure Vulnerability
The Google Doc Embedder Plugin for WordPress is prone to an arbitrary file-disclosure vulnerability because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...
WordPress Plugin Google Document Embedder - Arbitrary File Disclosure (Metasploit)
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'rbmysql' class Metasploit3 'WordPress Plugin...
WordPress Plugin Google Document Embedder Arbitrary File Disclosure
This module exploits an arbitrary file disclosure flaw in the WordPress blogging software plugin known as Google Document Embedder. The vulnerability allows for database credential disclosure via the /libs/pdf.php script. The Google Document Embedder plug-in versions 2.4.6 and below are vulnerabl...
ZShare Embedder CSRF Vulnerability
Exploit for php platform in category web applications Exploit Title: ZShare Embedder CSRF Author: Jonturk75 Vendor or Software Link: http://www.scripts.com/viewscript/zshare-embeddergrabber-scriptacula/27263/ Category:: webapps Demo : http://demo.phpmymovie.com/siteadmin/ Greetz: Inj3ct0r Exploit...