CVE-2018-6654
CVE-2018-6654 refers to a vulnerability in the Grammarly Chrome extension (pre-2018-02-02) where remote attackers could uncover authentication tokens via an action: "user" request to iframe.gr_-ifr. The exposure stems from tokens not being restricted to a specific website, enabling token disclosu...