WP-Safety

Embed Files from Google Drive Security & Risk Analysis

wordpress.org/plugins/google-drive-embedder

Browse for Google Drive documents and embed directly in your posts/pages. Extends Google Apps Login plugin so no extra user auth required.

5K active installs v5.3.0 PHP 7.2+ WP 5.5+ Updated May 9, 2025
documentembedgooglegoogle-appsgoogle-drive
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Embed Files from Google Drive Safe to Use in 2026?

Generally Safe

Score 100/100

Embed Files from Google Drive has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 10mo ago
Risk Assessment

The google-drive-embedder plugin version 5.3.0 exhibits a strong security posture based on the provided static analysis and vulnerability history. The absence of dangerous functions, SQL injection vulnerabilities, file operations, and external HTTP requests is highly commendable. Furthermore, all SQL queries utilize prepared statements, and all output is properly escaped, indicating good development practices to prevent common web vulnerabilities.

The plugin's attack surface is minimal, with only one shortcode entry point, and importantly, no identified unprotected entry points. The presence of a nonce check on this shortcode, even without explicit capability checks, adds a layer of protection against cross-site request forgery. The lack of any recorded vulnerabilities, past or present, further reinforces its current security.

While the plugin demonstrates excellent security hygiene, the complete absence of capability checks on the shortcode is a minor area for potential improvement. However, given the minimal attack surface and the existing nonce check, this does not present a significant immediate risk. Overall, this version of the plugin appears very secure and well-maintained.

Key Concerns

  • Missing capability checks on shortcode
Vulnerabilities
None known

Embed Files from Google Drive Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 16, 2026

Embed Files from Google Drive Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
0
43 escaped
Nonce Checks
1
Capability Checks
0
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

100% escaped43 total outputs
Attack Surface

Embed Files from Google Drive Attack Surface

Entry Points1
Unprotected0

Shortcodes 1

[google-drive-embed] core\core_google_drive_embedder.php:587
WordPress Hooks 10
actionenqueue_block_assetscore\core_google_drive_embedder.php:588
actionnetwork_admin_noticescore\core_google_drive_embedder.php:598
actionadmin_noticescore\core_google_drive_embedder.php:600
actionadmin_headcore\core_google_drive_embedder.php:608
actionmedia_buttonscore\core_google_drive_embedder.php:609
actionadmin_enqueue_scriptscore\core_google_drive_embedder.php:610
actionadmin_footercore\core_google_drive_embedder.php:611
actionenqueue_block_editor_assetscore\core_google_drive_embedder.php:613
actioninitcore\core_google_drive_embedder.php:650
actionadmin_initcore\core_google_drive_embedder.php:653
Maintenance & Trust

Embed Files from Google Drive Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5
Last updatedMay 9, 2025
PHP min version7.2
Downloads317K

Community Trust

Rating80/100
Number of ratings48
Active installs5K
Alternatives

Embed Files from Google Drive Alternatives

Embed Google Drive

Embed Google Drive

embed-google-drive

A
100

Embed a link and preview of Google Drive Documents by pasting a shared document link into the editor.

100 No CVEs
Easy Document Embedder – Embed Word, excel, Powerpoint, Pdf file and more..

Easy Document Embedder – Embed Word, excel, Powerpoint, Pdf file and more..

easy-document-embedder

A
85

Document embedding on a website is a common thing we need to do regularly. By using this plugin you can embed all the common files like PDF, Word, XLS …

500 No CVEs
Simple Google Docs Viewer

Simple Google Docs Viewer

simple-google-docs-viewer

A
85

Easily embed documents like PDFs, Word documents, and Powerpoint in your site using Google Docs Viewer.

300 No CVEs
Google Docs oEmbed

Google Docs oEmbed

google-docs-oembed

A
85

Embed Google documents, spreadsheets and presentations in your posts or pages.

200 No CVEs
Cloud Customer Area

Cloud Customer Area

cloud-customer-area

A
92

The only plugin to create and manage a reserved customer area, using cloud services (ex: Google Drive).

100 No CVEs
Developer Profile

Embed Files from Google Drive Developer Profile

Syed Balkhi

94 plugins · 23.5M total installs

73
trust score
Avg Security Score
91/100
Avg Patch Time
795 days
View full developer profile
Detection Fingerprints

How We Detect Embed Files from Google Drive

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/google-drive-embedder/css/style.css/wp-content/plugins/google-drive-embedder/js/drive-embedder-backend.js/wp-content/plugins/google-drive-embedder/js/drive-embedder-frontend.js/wp-content/plugins/google-drive-embedder/js/google-picker-api.js/wp-content/plugins/google-drive-embedder/js/google-picker-api-init.js
Script Paths
/wp-content/plugins/google-drive-embedder/js/drive-embedder-backend.js/wp-content/plugins/google-drive-embedder/js/drive-embedder-frontend.js/wp-content/plugins/google-drive-embedder/js/google-picker-api.js/wp-content/plugins/google-drive-embedder/js/google-picker-api-init.js
Version Parameters
google-drive-embedder/css/style.css?ver=google-drive-embedder/js/drive-embedder-backend.js?ver=google-drive-embedder/js/drive-embedder-frontend.js?ver=google-drive-embedder/js/google-picker-api.js?ver=google-drive-embedder/js/google-picker-api-init.js?ver=

HTML / DOM Fingerprints

CSS Classes
gdm-choose-drivefile
Data Attributes
id="gdm-thickbox-trigger"
JS Globals
googlePickerApi
FAQ

Frequently Asked Questions about Embed Files from Google Drive