Google has mentioned a flaw that has taken place recently in its feedback tool, and Google affirmed that there is a critical bug that is continuously compromising all the sensitive files of users.
The Google feedback tool is a part of various services, and it could be exploited by threat actors to capture screenshots of all sensitive Google Docs documents by inserting them in an ill-disposed website.
Rather than that, Google has a feature named “Send Feedback” in all of its products. This tool feature helps Google to get Feedback from every user when they face any issue. Moreover, this feature also provides a choice to add screenshots with a brief summary of the issue that the user is facing.
This feedback feature is disposed in Google’s main domain (“www.google.com”), and it is combined into other domains by adding an iframe element that fills the pop-up’s content from “feedback.googleusercontent.com” through PostMessage.