The Safari Extensions implementation in Apple Safari prior to 9 does not require user confirmation before replacing an installed extension, which has unspecified impact and attack vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple safari |