3 matches found
WordPress Google Doc Embedder Plugin Cross-Site Scripting (CVE-2015-1879)
A cross-site scripting vulnerability has been reported in WordPress Google Doc Embedder Plugin. Successful exploitation of this vulnerability would allow remote attackers to inject an arbitrary web script into the affected system...
CVE-2015-1879
Cross-site scripting XSS vulnerability in the Google Doc Embedder plugin before 2.5.19 for WordPress allows remote attackers to inject arbitrary web script or HTML via the profile parameter in an edit action in the gde-settings page to wp-admin/options-general.php...
CVE-2015-1879
CVE-2015-1879 affects the WordPress plugin Google Doc Embedder. The vulnerability is a cross-site scripting (XSS) flaw in the plugin prior to version 2.5.19, exploitable via the profile parameter in an edit action on the gde-settings page (to wp-admin/options-general.php). Root cause: improper ha...