Hello Everyone,
Recently, We've discovered Dom-Based XSS Vulnerability in TransOver Chrome Extension and we reported it. It’s a startling coincidence.
This report was quickly acknowledged by Artem Avetisyan.
What have we done to find this vulnerability?
Below is a screenshot of the chrome extensions page. A click on the link background page opens the background page for this extension
You must active the debug mode and follow flow of source code. Escape_html() function is cause of bug and how the error was corrected that We have reach what we need from this link
EOF
0 yorum:
Yorum Gönder