42 matches found
CVE-2022-3834 Google Forms <= 0.95 - Admin+ Stored XSS
The Google Forms WordPress plugin through 0.95 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2022-3834 Google Forms <= 0.95 - Admin+ Stored XSS
The Google Forms WordPress plugin through 0.95 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2022-3834
The CVE-2022-3834 entry concerns the WordPress Google Forms plugin (versions ≤ 0.95). The vulnerability arises because the plugin does not sanitize/escape certain settings, enabling Stored XSS by high-privilege users (e.g., admins) even when unfiltered_html is disallowed (such as in multisite). A...
PT-2022-24377 · WordPress · Google Forms
Name of the Vulnerable Software and Affected Versions: Google Forms WordPress plugin versions 0.95 and earlier Description: The issue allows high privilege users, such as admins, to perform Stored Cross-Site Scripting attacks. This can occur even when the unfiltered html capability is disallowed,...
WordPress plugin Google Forms 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. WordPress Google Forms plug...
WordPress Google Forms plugin <= 0.95 - Auth. Stored Cross-Site Scripting (XSS) vulnerability
Auth. Stored Cross-Site Scripting XSS vulnerability discovered by zhangyunpei in WordPress Google Forms plugin versions = 0.95. Solution Deactivate and delete. This plugin has been closed as of November 2, 2022 and is not available for download. This closure is temporary, pending a full review...
New LinkedIn phishing campaign found using Google Forms
By Sudais Asif In the latest LinkedIn phishing scam, the sender’s email address as shown appears to be from Paul University which is based in Nigeria. This is a post from HackRead.com Read the original post: New LinkedIn phishing campaign found using Google Forms...
A week in security (January 18 – January 24)
Last week on Malwarebytes Labs, we looked at changes to WhatsApp’s privacy policy, we provided information about Malwarebytes being targeted by the same threat actor that was implicated in the SolarWinds breach, we told the story of ZeroLogon, looked at the pros and cons of Zoom watermarking,...
Google Forms Set Baseline For Widespread BEC Attacks
A threat actor has been sending thousands of emails to organizations, in what researchers warn is a reconnaissance campaign to identify targets for a possible follow-up business-email-compromise BEC attack. So far, researchers have observed thousands of messages being sent to companies since...
Google Forms Abused to Phish AT&T Credentials
Researchers are warning of phishing attacks that leverage Google Forms as a landing page to collect victims’ credentials. The forms masquerade as login pages from more than 25 different companies, brands and government agencies. So far, 265 different Google Forms used in these attacks have been...
JhoneRAT: Cloud based python RAT targeting Middle Eastern countries
By Warren Mercer, Paul Rascagneres and Vitor Ventura with contributions from Eric Kuhla. Updated January 17th: the documents do not exploit the CVE-2017-0199 vulnerability. Executive Summary Today, Cisco Talos is unveiling the details of a new RAT we have identified we're calling "JhoneRAT." This...
New JhoneRAT Malware Targets Middle East
Researchers are warning of a new remote access trojan RAT, dubbed JhoneRAT, which is being distributed as part of an active campaign, ongoing since November 2019, that targets victims in the Middle East. Once downloaded, the RAT gathers information on the victims’ computers and is also able to...
Spam and phishing in Q2 2019
Quarterly highlights Spam through Google services In the second quarter of 2019, scammers were making active use of cloud-based data storage services such as Google Drive and Google Storage to hide their illegal content. The reasoning behind this is simple: a link from a legitimate domain is seen...
Google Forms < 0.94 - Eval Injection
The Google Forms WordPress plugin was affected by an Eval Injection security vulnerability...
WordPress Google Forms plugin <=0.91 - Unauthenticated Server-Side Request Forgery (SSRF) vulnerability
Unauthenticated Server-Side Request Forgery SSRF vulnerability found by Jouko Pynnönen in WordPress Google Forms plugin versions =0.91. Solution Update the WordPress Google Forms plugin to the latest available version at least 0.92...
Google Forms <= 0.91 - Unauthenticated Server-Side Request Forgery (SSRF)
The Google Forms WordPress plugin was affected by an Unauthenticated Server-Side Request Forgery SSRF security vulnerability...
WordPress Google Forms Plugin unauthenticated PHP Object injection vulnerability
Exploit for php platform in category web applications Abstract A PHP Object injection vulnerability was found in the Google Forms WordPress Plugin, which can be used by an unauthenticated user to instantiate arbitrary PHP Objects. Using this vulnerability it is possible to execute arbitrary PHP...
Google Forms 0.84-0.87 - Unauthenticated PHP Object Injection
The Google Forms WordPress plugin was affected by an Unauthenticated PHP Object Injection security vulnerability...
Carbanak Using Google Services for Command and Control
Carbanak certainly has not sat idly by after years of advanced criminal campaigns targeting primarily financial institutions. The outfit, alleged to have stolen from more than 100 banks worldwide, has popped up again with a new means of managing command and control over its malware and implants...
WordPress Google Forms Plugin <= 0.84 - Cross Site Scripting (XSS)
Because of this vulnerability, attackers can steal Administrators' session tokens or perform arbitrary actions on their behalf. Solution Update the plugin...