Google Doc Embedder Project Google Doc Embedder vulnerabilities
4 known vulnerabilities affecting google_doc_embedder_project/google_doc_embedder.
Total CVEs
4
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2014-9173P3HIGHCVSS 7.5PoC≤ 2.5.142014-12-02
CVE-2014-9173 [HIGH] CWE-89 CVE-2014-9173: SQL injection vulnerability in view.php in the Google Doc Embedder plugin before 2.5.15 for WordPres
SQL injection vulnerability in view.php in the Google Doc Embedder plugin before 2.5.15 for WordPress allows remote attackers to execute arbitrary SQL commands via the gpid parameter.
nvd
CVE-2016-10882P4HIGHCVSS 8.8fixed in 2.6.22019-08-14
CVE-2016-10882 [HIGH] CWE-352 CVE-2016-10882: The google-document-embedder plugin before 2.6.2 for WordPress has CSRF.
The google-document-embedder plugin before 2.6.2 for WordPress has CSRF.
nvd
CVE-2016-10880P4MEDIUMCVSS 6.1fixed in 2.6.12019-08-14
CVE-2016-10880 [MEDIUM] CWE-79 CVE-2016-10880: The google-document-embedder plugin before 2.6.1 for WordPress has XSS.
The google-document-embedder plugin before 2.6.1 for WordPress has XSS.
nvd
CVE-2016-10881P4MEDIUMCVSS 6.1fixed in 2.6.22019-08-14
CVE-2016-10881 [MEDIUM] CWE-79 CVE-2016-10881: The google-document-embedder plugin before 2.6.2 for WordPress has XSS.
The google-document-embedder plugin before 2.6.2 for WordPress has XSS.
nvd