CVE-2022-3834 - How a Google Forms WordPress Plugin Bug Exposes Sites to Admin XSS Attacks
Security vulnerabilities in WordPress plugins are a known theme, but sometimes they land in surprising places. CVE-2022-3834 is one of those: it hit the popular