Lucene search
K

354 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 1:54 a.m.7 views

CVE-2024-2086

The Integrate Google Drive – Browse, Upload, Download, Embed, Play, Share, Gallery, and Manage Your Google Drive Files Into Your WordPress Site plugin for WordPress is vulnerable to unauthorized access of data, modification of data, and loss of data due to a missing capability check on multiple...

10CVSS9AI score0.0074EPSS
Exploits0References1
Hacker One
Hacker One
added 2025/01/07 10:44 p.m.817 views

U.S. Dept Of Defense: Public google drive link Exposes Military Orders Containing PII (Name, SSN etc..) and Operational Details

A public Google Drive link was found that exposed military orders containing personally identifiable information PII such as full names, Social Security numbers, home addresses, and security clearance levels. The vulnerability was discovered on a website located at...

6.9AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2024/12/09 1:15 p.m.3 views

CVE-2023-32117

Missing Authorization vulnerability in princeahmed Integrate Google Drive integrate-google-drive allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Integrate Google Drive: from n/a through = 1.1.99...

9.8CVSS5.8AI score0.06399EPSS
Exploits0References4
NVD
NVD
added 2024/12/09 1:15 p.m.9 views

CVE-2023-32117

Missing Authorization vulnerability in SoftLab Integrate Google Drive allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Integrate Google Drive: from n/a through 1.1.99...

9.8CVSS0.06399EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/09 11:30 a.m.7 views

CVE-2023-32117 WordPress Integrate Google Drive plugin <= 1.1.99 - Unauthenticated Broken Access Control vulnerability

Missing Authorization vulnerability in princeahmed Integrate Google Drive integrate-google-drive allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Integrate Google Drive: from n/a through = 1.1.99...

9.8CVSS6.8AI score0.06399EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/09 12:0 a.m.4 views

WordPress plugin Integrate Google Drive 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

9.8CVSS8.2AI score0.06399EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2024/11/27 11:14 a.m.14 views

APT-C-60 Hackers Exploit StatCounter and Bitbucket in SpyGlace Malware Campaign

The threat actor known as APT-C-60 has been linked to a cyber attack targeting an unnamed organization in Japan that used a job application-themed lure to deliver the SpyGlace backdoor. That's according to findings from JPCERT/CC, which said the intrusion leveraged legitimate services like Google...

9.3CVSS7.7AI score0.01773EPSS
Exploits0
OSV
OSV
added 2024/10/21 1:9 a.m.4 views

MAL-2024-9444 Malicious code in google-drive-integration (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b852e689dbc27ffdc82219196cc1caf6535bfe509fb8fdf6fab98a642c019c6d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/10/21 1:9 a.m.6 views

Malicious code in google-drive-integration (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b852e689dbc27ffdc82219196cc1caf6535bfe509fb8fdf6fab98a642c019c6d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References3
OSV
OSV
added 2024/10/20 10:15 a.m.3 views

CVE-2024-49335

Cross-Site Request Forgery CSRF vulnerability in Edush Maxim GoogleDrive folder list allows Stored XSS.This issue affects GoogleDrive folder list: from n/a through 2.2.2...

6.1CVSS5.8AI score0.00156EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/10/20 12:0 a.m.6 views

PT-2024-33476 · Unknown · Edush Maxim Googledrive Folder List

Name of the Vulnerable Software and Affected Versions: Edush Maxim GoogleDrive folder list versions n/a through 2.2.2 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability in Edush Maxim GoogleDrive folder list, which allows Stored XSS. This can lead to Stored Cross Site...

7.1CVSS6.8AI score0.00156EPSS
Exploits0References8
Patchstack
Patchstack
added 2024/10/18 10:13 a.m.3 views

WordPress GoogleDrive folder list plugin <= 2.2.2 - CSRF to Stored Cross Site Scripting (XSS) vulnerability

CSRF to Stored Cross Site Scripting XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin GoogleDrive folder list versions = 2.2.2...

7.1CVSS5.9AI score0.00156EPSS
Exploits0Affected Software1
The Hacker News
The Hacker News
added 2024/09/17 12:0 p.m.19 views

How to Investigate ChatGPT activity in Google Workspace

When you connect your organization's Google Drive account to ChatGPT, you grant ChatGPT extensive permissions for not only your personal files, but resources across your entire shared drive. As you might imagine, this introduces an array of cybersecurity challenges. This post outlines how to see...

7.1AI score
Exploits0
The Hacker News
The Hacker News
added 2024/07/11 10:12 a.m.17 views

New Poco RAT Targets Spanish-Speaking Victims in Phishing Campaign

Spanish language victims are the target of an email phishing campaign that delivers a new remote access trojan RAT called Poco RAT since at least February 2024. The attacks primarily single out mining, manufacturing, hospitality, and utilities sectors, according to cybersecurity company Cofense...

6.7AI score
Exploits0
The Hacker News
The Hacker News
added 2024/06/19 3:9 p.m.97 views

UNC3886 Uses Fortinet, VMware 0-Days and Stealth Tactics in Long-Term Spying

The China-nexus cyber espionage actor linked to the zero-day exploitation of security flaws in Fortinet, Ivanti, and VMware devices has been observed utilizing multiple persistence mechanisms in order to maintain unfettered access to compromised environments. "Persistence mechanisms encompassed...

9.8CVSS8AI score0.99474EPSS
Exploits13
NVD
NVD
added 2024/06/19 12:15 p.m.31 views

CVE-2023-40004

Missing Authorization vulnerability in ServMask All-in-One WP Migration Box Extension, ServMask All-in-One WP Migration OneDrive Extension, ServMask All-in-One WP Migration Dropbox Extension, ServMask All-in-One WP Migration Google Drive Extension.This issue affects All-in-One WP Migration Box...

7.3CVSS0.09666EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2024/06/19 12:3 p.m.27 views

CVE-2023-40004 Unauth. Access Token Manipulation vulnerability in multiple ServMask WordPress plugins

Missing Authorization vulnerability in ServMask All-in-One WP Migration Box Extension, ServMask All-in-One WP Migration OneDrive Extension, ServMask All-in-One WP Migration Dropbox Extension, ServMask All-in-One WP Migration Google Drive Extension.This issue affects All-in-One WP Migration Box...

7.3CVSS7.4AI score0.09666EPSS
Exploits1References5
OSV
OSV
added 2024/06/12 9:15 a.m.5 views

CVE-2023-52177

Missing Authorization vulnerability in SoftLab Integrate Google Drive.This issue affects Integrate Google Drive: from n/a through 1.3.3...

6.3CVSS5.8AI score0.00298EPSS
Exploits0References1
NVD
NVD
added 2024/06/12 9:15 a.m.32 views

CVE-2023-52177

Missing Authorization vulnerability in SoftLab Integrate Google Drive.This issue affects Integrate Google Drive: from n/a through 1.3.3...

6.3CVSS0.00298EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/12 8:42 a.m.26 views

CVE-2023-52177 WordPress Integrate Google Drive plugin <= 1.3.3 - Broken Access Control vulnerability

Missing Authorization vulnerability in SoftLab Integrate Google Drive.This issue affects Integrate Google Drive: from n/a through 1.3.3...

5.4CVSS0.00298EPSS
Exploits0References1
Rows per page
Query Builder