Lucene search
HistoryMay 29, 2014 - 2:19 p.m.
CVE-2012-4915
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.7
Confidence
Low
EPSS
0.902
Percentile
98.9%
Directory traversal vulnerability in the Google Doc Embedder plugin before 2.5.4 for WordPress allows remote attackers to read arbitrary files via a … (dot dot) in the file parameter to libs/pdf.php.
Affected configurations
Node
davistribegoogle_doc_embedderRange≤2.5.3
ORdavistribegoogle_doc_embedderMatch2.0
ORdavistribegoogle_doc_embedderMatch2.1
ORdavistribegoogle_doc_embedderMatch2.2
ORdavistribegoogle_doc_embedderMatch2.2.1
ORdavistribegoogle_doc_embedderMatch2.2.2
ORdavistribegoogle_doc_embedderMatch2.2.3
ORdavistribegoogle_doc_embedderMatch2.3
ORdavistribegoogle_doc_embedderMatch2.4
ORdavistribegoogle_doc_embedderMatch2.4.1
ORdavistribegoogle_doc_embedderMatch2.4.2
ORdavistribegoogle_doc_embedderMatch2.4.3
ORdavistribegoogle_doc_embedderMatch2.4.4
ORdavistribegoogle_doc_embedderMatch2.4.5
ORdavistribegoogle_doc_embedderMatch2.4.6
ORdavistribegoogle_doc_embedderMatch2.5
ORdavistribegoogle_doc_embedderMatch2.5.1
ORdavistribegoogle_doc_embedderMatch2.5.2
wordpresswordpressMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| davistribe | google_doc_embedder | * | cpe:2.3:a:davistribe:google_doc_embedder:*:*:*:*:*:*:*:* |
| davistribe | google_doc_embedder | 2.0 | cpe:2.3:a:davistribe:google_doc_embedder:2.0:*:*:*:*:*:*:* |
| davistribe | google_doc_embedder | 2.1 | cpe:2.3:a:davistribe:google_doc_embedder:2.1:*:*:*:*:*:*:* |
| davistribe | google_doc_embedder | 2.2 | cpe:2.3:a:davistribe:google_doc_embedder:2.2:*:*:*:*:*:*:* |
| davistribe | google_doc_embedder | 2.2.1 | cpe:2.3:a:davistribe:google_doc_embedder:2.2.1:*:*:*:*:*:*:* |
| davistribe | google_doc_embedder | 2.2.2 | cpe:2.3:a:davistribe:google_doc_embedder:2.2.2:*:*:*:*:*:*:* |
| davistribe | google_doc_embedder | 2.2.3 | cpe:2.3:a:davistribe:google_doc_embedder:2.2.3:*:*:*:*:*:*:* |
| davistribe | google_doc_embedder | 2.3 | cpe:2.3:a:davistribe:google_doc_embedder:2.3:*:*:*:*:*:*:* |
| davistribe | google_doc_embedder | 2.4 | cpe:2.3:a:davistribe:google_doc_embedder:2.4:*:*:*:*:*:*:* |
| davistribe | google_doc_embedder | 2.4.1 | cpe:2.3:a:davistribe:google_doc_embedder:2.4.1:*:*:*:*:*:*:* |
Related
wpvulndb
wpvulndb
checkpoint_advisories
checkpoint_advisories
prion
prion
Directory traversal
2014-05-29 14:19:00
zdt
zdt
WordPress Plugin Google Document Embedder Arbitrary File Disclosure
2013-01-08 00:00:00
packetstorm
packetstorm
WordPress Google Document Embedder Arbitrary File Disclosure
2013-01-08 00:00:00
nessus
nessus
openvas
openvas
WordPress Google Doc Embedder Plugin Arbitrary File Disclosure Vulnerability
2013-01-08 00:00:00
exploitdb
exploitdb
metasploit
metasploit
WordPress Plugin Google Document Embedder Arbitrary File Disclosure
2013-01-05 14:21:02
cvelist
cvelist
CVE-2012-4915
2014-05-29 14:00:00
cve
cve
CVE-2012-4915
2014-05-29 14:19:06
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.7
Confidence
Low
EPSS
0.902
Percentile
98.9%
Related for NVD:CVE-2012-4915