AI-powered
podcast player
Listen to all your favourite podcasts with AI-powered features
Exploiting Vulnerabilities in Web Extensions
This chapter examines the vulnerabilities present in the Fromium platform, focusing particularly on private APIs within web applications like the Chrome Store. It discusses a zero-day vulnerability discovered in the Opera browser linked to customizable extensions, emphasizing how malicious code can be injected through clever coding techniques. The chapter concludes by showcasing a deceptive extension called 'Puppies' that illustrates how such vulnerabilities can be exploited under the guise of harmlessness.