Unrated severityNVD Advisory· Published Dec 2, 2014· Updated May 6, 2026

CVE-2014-9173

Description

SQL injection vulnerability in view.php in the Google Doc Embedder plugin before 2.5.15 for WordPress allows remote attackers to execute arbitrary SQL commands via the gpid parameter.

Affected products

Google Doc Embedder/Google Doc Embedder
cpe:2.3:a:google_doc_embedder_project:google_doc_embedder:*:*:*:*:*:wordpress:*:*
Range: <=2.5.14

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

security.szurek.pl/google-doc-embedder-2514-sql-injection.htmlnvdExploit
www.exploit-db.com/exploits/35371nvdExploit
plugins.trac.wordpress.org/changeset/1023572/google-document-embeddernvdExploit
osvdb.org/show/osvdb/115044nvd
exchange.xforce.ibmcloud.com/vulnerabilities/98944nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000