Vulnerabilities and security researches forintegrate-google-drive integrate-google-drive
Direction: ascendingJun 07, 2024
Integrate Google Drive – Browse, Upload, Download, Embed, Play, Share, Gallery, and Manage Your Google Drive Files Into Y # CVE-2023-49769
- CVE, Research URL
- Date
- Dec 17, 2023
- Research Description
- Cross-Site Request Forgery (CSRF) vulnerability in SoftLab Integrate Google Drive.This issue affects Integrate Google Drive: from n/a through 1.3.4.
- Affected versions
-
max 1.3.5.
- Status
-
vulnerable
Integrate Google Drive – Browse, Upload, Download, Embed, Play, Share, Gallery, and Manage Your Google Drive Files Into Y # CVE-2024-32813
- CVE, Research URL
- Date
- Jun 09, 2024
- Research Description
- Missing Authorization vulnerability in SoftLab Integrate Google Drive.This issue affects Integrate Google Drive: from n/a through 1.3.9.
- Affected versions
-
max 1.3.91.
- Status
-
vulnerable
Integrate Google Drive – Browse, Upload, Download, Embed, Play, Share, Gallery, and Manage Your Google Drive Files Into Y # CVE-2024-35670
- CVE, Research URL
- Date
- Jun 05, 2024
- Research Description
- Broken Authentication vulnerability in SoftLab Integrate Google Drive.This issue affects Integrate Google Drive: from n/a through 1.3.93.
- Affected versions
-
max 1.3.94.
- Status
-
vulnerable
Integrate Google Drive – Browse, Upload, Download, Embed, Play, Share, Gallery, and Manage Your Google Drive Files Into Y # CVE-2024-2086
- CVE, Research URL
- Date
- Mar 30, 2024
- Research Description
- The Integrate Google Drive – Browse, Upload, Download, Embed, Play, Share, Gallery, and Manage Your Google Drive Files Into Your WordPress Site plugin for WordPress is vulnerable to unauthorized access of data, modification of data, and loss of data due to a missing capability check on multiple AJAX in all versions up to, and including, 1.3.8. This makes it possible for authenticated attackers to modify plugin settings as well as allowing full read/write/delete access to the Google Drive associated with the plugin.
- Affected versions
-
max 1.3.9.
- Status
-
vulnerable
Integrate Google Drive – Browse, Upload, Download, Embed, Play, Share, Gallery, and Manage Your Google Drive Files Into Y # CVE-2024-32949
- CVE, Research URL
- Date
- -
- Research Description
- File Manager for Google Drive – Integrate Google Drive [integrate-google-drive] < 1.3.91 (closed) CVE-2024-32949
- Affected versions
-
max 1.3.91.
- Status
-
vulnerable
Integrate Google Drive – Browse, Upload, Download, Embed, Play, Share, Gallery, and Manage Your Google Drive Files Into Y # 0cca1604a3b4913bf0af2007223bcbc35bd3c970
- CVE, Research URL
- Date
- Feb 28, 2022
- Research Description
- File Manager for Google Drive – Integrate Google Drive with WordPress [integrate-google-drive] < 1.1.0 WordPress Integrate Google Drive – Complete Google Drive Cloud Solution For WordPress plugin < 1.1.0 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability discovered in WordPress Integrate Google Drive – Complete Google Drive Cloud Solution For WordPress plugin (versions < 1.1.0).
- Affected versions
-
max 1.1.0.
- Status
-
vulnerable
Integrate Google Drive – Browse, Upload, Download, Embed, Play, Share, Gallery, and Manage Your Google Drive Files Into Y # CVE-2023-47548
- CVE, Research URL
- Date
- Dec 07, 2023
- Research Description
- URL Redirection to Untrusted Site ('Open Redirect') vulnerability in SoftLab Integrate Google Drive – Browse, Upload, Download, Embed, Play, Share, Gallery, and Manage Your Google Drive Files Into Your WordPress Site.This issue affects Integrate Google Drive – Browse, Upload, Download, Embed, Play, Share, Gallery, and Manage Your Google Drive Files Into Your WordPress Site: from n/a through 1.3.2.
- Affected versions
-
max 1.3.3.
- Status
-
vulnerable
Jun 10, 2024
Integrate Google Drive – Browse, Upload, Download, Embed, Play, Share, Gallery, and Manage Your Google Drive Files Into Y # CVE-2023-32117
- CVE, Research URL
- Date
- Dec 09, 2024
- Research Description
- Missing Authorization vulnerability in SoftLab Integrate Google Drive allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Integrate Google Drive: from n/a through 1.1.99.
- Affected versions
-
max 1.2.3.
- Status
-
vulnerable
Integrate Google Drive – Browse, Upload, Download, Embed, Play, Share, Gallery, and Manage Your Google Drive Files Into Y # CVE-2023-52177
- CVE, Research URL
- Date
- Jun 12, 2024
- Research Description
- Missing Authorization vulnerability in SoftLab Integrate Google Drive.This issue affects Integrate Google Drive: from n/a through 1.3.3.
- Affected versions
-
max 1.3.4.
- Status
-
vulnerable
Nov 16, 2024
Integrate Google Drive – Browse, Upload, Download, Embed, Play, Share, Gallery, and Manage Your Google Drive Files Into Y # CVE-2022-4974
- CVE, Research URL
- Date
- Oct 16, 2024
- Research Description
- The Freemius SDK, as used by hundreds of WordPress plugin and theme developers, was vulnerable to Cross-Site Request Forgery and Information disclosure due to missing capability checks and nonce protection on the _get_debug_log, _get_db_option, and the _set_db_option functions in versions up to, and including 2.4.2. Any WordPress plugin or theme running a version of Freemius less than 2.4.3 is vulnerable.
- Affected versions
-
max 1.1.0.
- Status
-
vulnerable
Aug 01, 2025
Integrate Google Drive – Browse, Upload, Download, Embed, Play, Share, Gallery, and Manage Your Google Drive Files Into Y # CVE-2025-54703
- CVE, Research URL
- Date
- Aug 14, 2025
- Research Description
- Cross-Site Request Forgery (CSRF) vulnerability in Prince Integrate Google Drive allows Cross Site Request Forgery. This issue affects Integrate Google Drive: from n/a through 1.5.2.
- Affected versions
-
max 1.5.3.
- Status
-
vulnerable
Nov 11, 2025
Integrate Google Drive – Browse, Upload, Download, Embed, Play, Share, Gallery, and Manage Your Google Drive Files Into Y # CVE-2025-12139
- CVE, Research URL
- Date
- Nov 05, 2025
- Research Description
- The File Manager for Google Drive – Integrate Google Drive with WordPress plugin for WordPress is vulnerable to sensitive information exposure in all versions up to, and including, 1.5.3 via the "get_localize_data" function. This makes it possible for unauthenticated attackers to extract sensitive data including Google OAuth credentials (client_id and client_secret) and Google account email addresses.
- Affected versions
-
max 1.5.4.
- Status
-
vulnerable