Tag
high
advisory
CVE-2026-5371: MonsterInsights WordPress Plugin Unauthorized Access Vulnerability
2 rules 2 TTPs 1 CVEThe MonsterInsights WordPress plugin through 10.1.2 is vulnerable to unauthorized access and data modification, allowing authenticated attackers with subscriber-level access to retrieve Google OAuth tokens and reset Google Ads integration due to missing capability checks on `get_ads_access_token()` and `reset_experience()` functions.
MonsterInsights – Google Analytics Dashboard for WordPress
wordpress
plugin
analytics
oauth
googleads
CVE-2026-5371
2r
2t
1c
high
advisory
Malvertising Campaign Abuses Google Ads and Claude.ai for macOS Malware Delivery
3 rules 1 TTP 3 IOCsAttackers are using Google Ads malvertising and weaponized Claude.ai shared chats to trick macOS users into downloading and executing malware, leading to credential theft and system compromise.
Google Ads +1
malvertising
macos
infostealer
googleads
claudeai
3r
1t
3i