9 matches found
CVE-2026-2345
Proctorio Chrome Extension is a browser extension used for online proctoring. The extension contains multiple window.addEventListener'message', ... handlers that do not properly validate the origin of incoming messages. Specifically, an internal messaging bridge processes messages based solely on...
CVE-2026-2345
Proctorio Chrome Extension is a browser extension used for online proctoring. The extension contains multiple window.addEventListener'message', ... handlers that do not properly validate the origin of incoming messages. Specifically, an internal messaging bridge processes messages based solely on...
CVE-2026-2345
Technical details about CVE-2026-2345 are not publicly available in the provided documents. Monitor for updates from Red Hat/NVD/CVE listings for affected products, impact, and remediation specifics.
CVE-2026-2345 Insufficient Origin Validation in Proctorio Chrome Extension postMessage Handlers
Proctorio Chrome Extension is a browser extension used for online proctoring. The extension contains multiple window.addEventListener'message', ... handlers that do not properly validate the origin of incoming messages. Specifically, an internal messaging bridge processes messages based solely on...
CVE-2026-2345 Insufficient Origin Validation in Proctorio Chrome Extension postMessage Handlers
Proctorio Chrome Extension is a browser extension used for online proctoring. The extension contains multiple window.addEventListener'message', ... handlers that do not properly validate the origin of incoming messages. Specifically, an internal messaging bridge processes messages based solely on...
CVE-2026-2345
Proctorio Chrome Extension is a browser extension used for online proctoring. The extension contains multiple window.addEventListener'message', ... handlers that do not properly validate the origin of incoming messages. Specifically, an internal messaging bridge processes messages based solely on...
Proctorio Secure Exam Proctor Extension 安全漏洞
Proctorio Secure Exam Proctor Extension is an online proctoring plugin provided by Proctorio. There is a security vulnerability in Proctorio Secure Exam Proctor Extension, which stems from the message processor not correctly verifying the source of messages, potentially allowing malicious message...
PT-2026-7613
Proctorio Chrome Extension is a browser extension used for online proctoring. The extension contains multiple window.addEventListener'message', ... handlers that do not properly validate the origin of incoming messages. Specifically, an internal messaging bridge processes messages based solely on...
Proctorio: Universal Cross-Site Scripting vulnerability
Sector7.nl notified Proctorio that there was a universal cross-site scripting vulnerability within the browser extension on June 17th, 2021. This vulnerability was patched on June 24th, 2021. Sector7.nl and other researchers were notified on June 25th. On August 3rd, 2021 Sector7.nl confirmed the...