Lucene search
K

125 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:7 a.m.5 views

SUSE CVE-2016-1640

The Web Store inline-installer implementation in the Extensions UI in Google Chrome before 49.0.2623.75 does not block installations upon deletion of an installation frame, which makes it easier for remote attackers to trick a user into believing that an installation request originated from the...

4.3CVSS8.6AI score0.01146EPSS
Exploits0References7
Krebs on Security
Krebs on Security
added 2022/06/22 1:6 p.m.309 views

Meet the Administrators of the RSOCKS Proxy Botnet

Authorities in the United States, Germany, the Netherlands and the U.K. last week said they dismantled the "RSOCKS" botnet, a collection of millions of hacked devices that were sold as "proxies" to cybercriminals looking for ways to route their malicious traffic through someone elses computer...

0.3AI score
Exploits0
Citrix
Citrix
added 2022/06/03 12:0 a.m.8 views

Users unable to launch - Error: "Cannot complete your request"

'Cannot complete your request' while trying to access the Web Store URL. StoreFront events show that a loopback communication failed...

7AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2022/05/13 3:15 p.m.2 views

CVE-2022-30400

Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggersmerch/admin/orders/vieworder.php?view=user&id=...

7.2CVSS7.2AI score0.00929EPSS
Exploits1References2
Malwarebytes
Malwarebytes
added 2022/04/29 9:56 a.m.13 views

Google Play’s Data safety section empowers Android users to make informed app choices

Google has launched its new "nutrition labels" for apps, a feature it promised in the spring of 2021. This release came days after the Chrome team released badges for the Chrome Web Store for browser extensions. The company said in a blog post that its rolling out the labels—which it calls the...

0.6AI score
Exploits0
HackRead
HackRead
added 2021/10/17 4:9 p.m.25 views

Ad-blocker Chrome extension AllBlock injected ads in Google searches

By Deeba Ahmed AllBlock was available on Google Chrome's Web Store where it is marketed as a potent Ad Blocker focusing on Facebook and YouTube to prevent pop-ups. This is a post from HackRead.com Read the original post: Ad-blocker Chrome extension AllBlock injected ads in Google searches...

1.8AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2021/07/21 9:7 p.m.54 views

What’s New in InsightAppSec and tCell: Q2 2021 in Review

If there’s a theme to InsightAppSec and tCell updates and improvements in the second quarter, it would be “save time by building it into the process.” Building a more efficient process is key in further securing web applications. Can you get it done faster from home? Or is the quickest way to the...

7.5AI score
Exploits0
The Hacker News
The Hacker News
added 2021/06/04 6:1 a.m.64 views

Google Chrome to Help Users Identify Untrusted Extensions Before Installation

Google on Thursday said it's rolling out new security features to Chrome browser aimed at detecting suspicious downloads and extensions via its Enhanced Safe Browsing feature, which it launched a year ago. To this end, the search giant said it will now offer additional protections when users...

0.6AI score
Exploits0
The Hacker News
The Hacker News
added 2021/02/06 10:30 a.m.3 views

WARNING — Hugely Popular 'The Great Suspender' Chrome Extension Contains Malware

Google on Thursday removed The Great Suspender , a popular Chrome extension used by millions of users, from its Chrome Web Store for containing malware. It also took the unusual step of deactivating it from users' computers. "This extension contains malware," read a terse notification from Google...

6.3AI score
Exploits0
Hacker One
Hacker One
added 2020/12/24 9:12 p.m.2209 views

h1-ctf: Hacky Holidays CTF Writeup

Intro: 12 days of challenges - some more challenging than others! This holiday CTF had all 12 challenges hosted on the website https://hackyholidays.h1ctf.com/ F1129112 Challenge 1: I started by significantly overthinking all of the early challenges in this competition. When this CTF started the...

7.9AI score
Exploits0
Malwarebytes
Malwarebytes
added 2020/08/10 3:30 p.m.19 views

A week in security (August 3 – 9)

Last week on Malwarebytes Labs, on our Lock and Code podcast, we talked about identity and access management technology. We also wrote about business email compromises to score big, discussed how the Data Accountability and Transparency Act of 2020 looks beyond consent, and we analyzed how the...

1.1AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2020/02/16 3:0 p.m.28 views

Hundreds of Chrome Extensions Secretly Uploaded Private Data

A researcher discovered that hundreds of extensions in the Web Store were part of a long-running malvertising and ad-fraud scheme...

1AI score
Exploits0
ThreatPost
ThreatPost
added 2020/02/14 8:50 p.m.72 views

500 Malicious Chrome Extensions Impact Millions of Users

Researchers say that 500 Google Chrome browser extensions were discovered secretly uploading private browsing data to attacker-controlled servers, and redirecting victims to malware-laced websites. The browser extensions, all of which have now been removed, were downloaded millions of times from...

Exploits0References11
0day.today
0day.today
added 2020/01/24 12:0 a.m.121 views

OLK Web Store 2020 - Cross-Site Request Forgery Vulnerability

Exploit for asp platform in category web applications Exploit Title: OLK Web Store 2020 - Cross-Site Request Forgery Google Dork: intext:"TopManage ® 2002 - 2020" Exploit Author: Joel Aviad Ossi Vendor Homepage: http://www.topmanage.com/ Software Link:...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2020/01/24 12:0 a.m.143 views

OLK Web Store 2020 Cross Site Request Forgery

Exploit Title: OLK Web Store 2020 - Cross-Site Request Forgery Google Dork: intext:"TopManage ® 2002 - 2020" Date: 2020-01-13 Exploit Author: Joel Aviad Ossi Vendor Homepage: http://www.topmanage.com/ Software Link: http://www.topmanage.com/microsites/olk-web-store/ Version: 2020 Tested on: N/A C...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2020/01/24 12:0 a.m.12 views

OLK Web Store 2020 - Cross-Site Request Forgery

OLK Web Store 2020 - Cross-Site Request Forgery Exploit Title: OLK Web Store 2020 - Cross-Site Request Forgery Google Dork: intext:"TopManage ® 2002 - 2020" Date: 2020-01-13 Exploit Author: Joel Aviad Ossi Vendor Homepage: http://www.topmanage.com/ Software Link:...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2020/01/24 12:0 a.m.248 views

OLK Web Store 2020 - Cross-Site Request Forgery

Exploit Title: OLK Web Store 2020 - Cross-Site Request Forgery Google Dork: intext:"TopManage ® 2002 - 2020" Date: 2020-01-13 Exploit Author: Joel Aviad Ossi Vendor Homepage: http://www.topmanage.com/ Software Link: http://www.topmanage.com/microsites/olk-web-store/ Version: 2020 Tested on: N/A C...

7.4AI score
Exploits0
ThreatPost
ThreatPost
added 2019/09/24 1:57 p.m.117 views

Malicious Ad Blockers for Chrome Caught in Ad Fraud Scheme

Google has removed two malicious ad blockers from its Chrome Web Store after a researcher discovered they were carrying out ad fraud and deceived Chrome users by using names of legitimate and popular blockers. Researcher Andrey Meshkov from rival ad blocker maker AdGuard discovered that the...

0.2AI score
Exploits0References7
Kitploit
Kitploit
added 2019/05/09 12:56 p.m.160 views

ExtAnalysis - Browser Extension Analysis Framework

With ExtAnalysis you can : Download & Analyze Extensions From: Chrome Web Store Firefox Addons Analyze Installed Extensions of: Google Chrome Mozilla Firefox Opera Browser Coming Soon Upload and Scan Extensions. Supported formats: .crx .xpi .zip Features of ExtAnalysis : View Basic Informations:...

7.2AI score
Exploits0References1
Information Security Automation
Information Security Automation
added 2019/02/28 10:10 a.m.71 views

Tenable IO WAS Chrome Extension

In the comments of the previous post about Tenable IO WAS Fergus Cooney mentioned a new Google Chrome extension for Tenable IO WAS, that should help in configuring scan Authentication setting. You can install it in Chrome Web Store. The idea is great. Authentication process in modern web...

7.2AI score
Exploits0
Rows per page
Query Builder