Log out
Get PRO

Latest

Input validation vulnerability in Integrate Google Drive – Browse, Upload, Download, Embed, Play, Share, Gallery, and Manage Your Google Drive Files Into Your WordPress Site 1.3.1

  • Severity: medium-risk
  • Status: Open
  • Publication: November 7, 2023

The Integrate Google Drive – Browse, Upload, Download, Embed, Play, Share, Gallery, and Manage Your Google Drive Files Into Your WordPress Site plugin is vulnerable to a security issue called Open Redirect. This vulnerability affects all versions of the plugin, up to and including version 1.3.1. Open Redirect occurs when insufficient validation is placed on the redirect URL that is supplied via the ‘state’ parameter. This means that unauthenticated attackers can redirect users to malicious sites if they can get the users to perform an action.

Detected in:

File Manager for Google Drive – Integrate Google Drive with WordPress fixed vulnerable versions:
Integrate Google Drive – Browse, Upload, Download, Embed, Play, Share, Gallery, and Manage Your Google Drive Files Into Your WordPress Site open vulnerable versions: >= * <= 1.3.2

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.