• LeoOPMA
    link
    fedilink
    English
    11 year ago

    the analysis showed that 190 extensions (some with over 100k downloads) directly access password fields and store values in a variable, suggesting that some publishers may already be trying to exploit the security gap.

    That’s the scary bit. This field has been accessible for quite some time…