CVE-2014-9173

Published: 02/12/2014 Updated: 08/09/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 760

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

SQL injection vulnerability in view.php in the Google Doc Embedder plugin prior to 2.5.15 for WordPress allows remote malicious users to execute arbitrary SQL commands via the gpid parameter.

Vulnerable Product	Search on Vulmon	Subscribe to Product
google doc embedder project google doc embedder

Exploit Title : Google Document Embedder 2516 mysql_real_escpae_string bypass SQL Injection Data : 2014 – 12 -03 Exploit Author : Securely (Yoo Hee man) Plugin : google-document-embedder Fixed version : N/A Software Link : downloadswordpressorg/plugin/google-document-embedder2516zip 1 Detail - Google Document Embedder v2514 h ...

# Exploit Title: Google Doc Embedder 2514 SQL Injection # Date: 10-11-2014 # Exploit Author: Kacper Szurek - securityszurekpl twittercom/KacperSzurek # Software Link: downloadswordpressorg/plugin/google-document-embedder2514zip # Category: webapps 1 Description $_GET['gpid'] is not escaped File: google-docu ...

CWE-89 https://plugins.trac.wordpress.org/changeset/1023572/google-document-embedder http://www.exploit-db.com/exploits/35371 http://osvdb.org/show/osvdb/115044 http://security.szurek.pl/google-doc-embedder-2514-sql-injection.html https://exchange.xforce.ibmcloud.com/vulnerabilities/98944 https://nvd.nist.gov https://www.exploit-db.com/exploits/35447/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2014-9173

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect