Vimium Extension 1.66 and Earlier Universal Cross Site Scripting (UXSS) Vulnerability in Omnibar Feature

Vimium Extension 1.66 and Earlier Universal Cross Site Scripting (UXSS) Vulnerability in Omnibar Feature

CVE-2021-37518 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Universal Cross Site Scripting (UXSS) vulnerability in Vimium Extension 1.66 and earlier allows remote attackers to run arbitrary code via omnibar feature.

Learn more about our Web Application Penetration Testing UK.