Subscribe via feed.

LastPass 4.1.20a Communication Design Flaw

Posted by deepcore on July 29, 2016 – 6:17 am

LastPass version 4.1.20a on Windows suffers from some issues where the add-on works by injecting elements and event handlers into the page. The attached proof of concept will delete a given file.


This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.


« »