Steam, Fire, and Paste – A Story of UXSS via DOM-XSS & Clickjacking in Steam Inventory Helper
In Summary : The “Steam Inventory Helper” Chrome extension version 1.13.6 suffered from both a DOM-based Cross-site Scripting (XSS) and a ...
https://updatesinfosec.blogspot.com/2018/06/steam-fire-and-paste-story-of-uxss-via.html
In Summary :
The “Steam Inventory Helper” Chrome extension version 1.13.6 suffered from both a DOM-based Cross-site Scripting (XSS) and a clickjacking vulnerability. [...]
kindly refer the following link as follow up :
https://ift.tt/2M9sXHh
The “Steam Inventory Helper” Chrome extension version 1.13.6 suffered from both a DOM-based Cross-site Scripting (XSS) and a clickjacking vulnerability. [...]
kindly refer the following link as follow up :
https://ift.tt/2M9sXHh
