37 matches found
EUVD-2015-1985
Malware in sbrugna...
EUVD-2014-8998
Malware in sbrugna...
EUVD-2024-16015
Malicious code in bioql PyPI...
CVE-2024-0216
The Google Doc Embedder plugin for WordPress is vulnerable to Server Side Request Forgery via the 'gview' shortcode in versions up to, and including, 2.6.4. This can allow authenticated attackers with contributor-level permissions or above to make web requests to arbitrary locations originating...
CVE-2015-1879
Cross-site scripting XSS vulnerability in the Google Doc Embedder plugin before 2.5.19 for WordPress allows remote attackers to inject arbitrary web script or HTML via the profile parameter in an edit action in the gde-settings page to wp-admin/options-general.php...
WordPress Google Doc Embedder plugin <= 2.6.4 - Authenticated (Contributor+) Blind Server Side Request Forgery vulnerability
Authenticated Contributor+ Blind Server Side Request Forgery vulnerability discovered by István Márton in WordPress Plugin Google Document Embedder versions = 2.6.4...
CVE-2024-0216
The CVE-2024-0216 entry for Google Doc Embedder (WordPress) is a SSRF vulnerability in the gview shortcode present in WordPress plugin versions up to 2.6.4. Reported impact states that authenticated users with contributor permissions can cause the application to make outbound requests to arbitrar...
WordPress plugin Google Doc Embedder 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
Google Doc Embedder <= 2.6.4 - Authenticated (Contributor+) Blind Server Side Request Forgery
Description The Google Doc Embedder plugin for WordPress is vulnerable to Server Side Request Forgery via the 'gview' shortcode in versions up to, and including, 2.6.4. This can allow authenticated attackers with contributor-level permissions or above to make web requests to arbitrary locations...
PT-2024-15391 · WordPress · Google Doc Embedder
Name of the Vulnerable Software and Affected Versions: Google Doc Embedder plugin for WordPress versions up to, and including, 2.6.4 Description: The issue allows authenticated attackers with contributor-level permissions or above to make web requests to arbitrary locations originating from the w...
WordPress Google Doc Embedder Plugin < 2.6.1 XSS Vulnerability
The WordPress plugin SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.113473";...
WordPress Google Doc Embedder Plugin < 2.6.2 Multiple Vulnerabilities
The WordPress plugin SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.113474";...
Google Document Embedder < 2.6.2 - CSRF & XSS
The Google Doc Embedder WordPress plugin was affected by a CSRF & XSS security vulnerability...
Google Document Embedder < 2.6.1 - XSS
The Google Doc Embedder WordPress plugin was affected by a XSS security vulnerability...
WordPress Google Doc Embedder Plugin Cross-Site Scripting (CVE-2015-1879)
A cross-site scripting vulnerability has been reported in WordPress Google Doc Embedder Plugin. Successful exploitation of this vulnerability would allow remote attackers to inject an arbitrary web script into the affected system...
Google Doc Embedder <= 2.5.18 - Cross-Site Scripting (XSS)
The Google Doc Embedder WordPress plugin was affected by a Cross-Site Scripting XSS security vulnerability...
WordPress Plugin Google Doc Embedder Cross-Site Scripting Vulnerability
WordPress is a use of PHP language development blog platform, users can support PHP and MySQL database server to set up their own weblog. Google Doc Embedder plugin is available to PDF, MS Office and other file types embedded in the web page plug-ins. WordPress plugin Google Doc Embedder has a...
CVE-2015-1879
Cross-site scripting XSS vulnerability in the Google Doc Embedder plugin before 2.5.19 for WordPress allows remote attackers to inject arbitrary web script or HTML via the profile parameter in an edit action in the gde-settings page to wp-admin/options-general.php...
Cross site scripting
Cross-site scripting XSS vulnerability in the Google Doc Embedder plugin before 2.5.19 for WordPress allows remote attackers to inject arbitrary web script or HTML via the profile parameter in an edit action in the gde-settings page to wp-admin/options-general.php...
CVE-2015-1879
CVE-2015-1879 affects the WordPress plugin Google Doc Embedder. The vulnerability is a cross-site scripting (XSS) flaw in the plugin prior to version 2.5.19, exploitable via the profile parameter in an edit action on the gde-settings page (to wp-admin/options-general.php). Root cause: improper ha...