Via message passing, extensions let web applications get access to sensitive pr
-
doliere last edited by
@leocg No I did not !
I do not remember the exact title of the report, but it is related to extensions that can be exploited by web pages via message passing to get access to privileged extensions API.
So maybe
"Exploiting extensions capabilities via message passing"OR
"Extensions that let scripts in webpages post messages to the extensions in order to bypass SOP, execute arbitrary code in the context of the extension, trigger downloads, read and write extensions storage"
OR
"Via message passing, extensions let web applications get access to sensitive privileged capabilities"
-
leocg Moderator Volunteer last edited by
You can post here in the forums for reference but it would be better to use https://security.opera.com/report-security-issue/
Choose web service or website and mention addons.opera.com
-
tnowak Opera last edited by
@doliere Currently the best way to report problems with extensions is through their respective pages.
There's a "Reported issues" button on each.For general issues and ideas please use https://security.opera.com/report-security-issue/ --> "Web Service or website" --> "addons.opera.com".
Thanks for reporting these!