• epyon22@programming.dev
    link
    fedilink
    English
    arrow-up
    19
    ·
    10 months ago

    They seemed to have demonstrated it on chrome and leveraged by the chrome browser but I don’t see why this couldn’t be exploited on any browser.

    • Pretzilla@lemmy.world
      link
      fedilink
      English
      arrow-up
      5
      arrow-down
      2
      ·
      10 months ago

      Chromium is implied. Firefox isn’t based on that code base unlike most every other browser.

      • epyon22@programming.dev
        link
        fedilink
        English
        arrow-up
        4
        ·
        10 months ago

        It’s based on security hole in what I’m interpreting as a web API. You leverage a legitimatly logged in Google account on a malicious website and this web endpoint gives you keys to everything else