SecurityWeek

Vulnerabilities in Popular PDF Platforms Allowed Account Takeover, Data Exfiltration

Vulnerabilities in PDF platforms from Foxit and Apryse could have been exploited for account takeover, data exfiltration, and other attacks.

Modern PDF platforms are becoming high-risk attack surfaces

Modern PDF platforms can now function as full attack gateways rather than passive document viewers.
Ars Technica

DOM-based Extension Clickjacking: Your Password Manager Data at Risk

Is clickjacking still an exploitable vulnerability nowadays? Many bug bounty programs have this vulnerability listed in the "out of scope" section, and in better cases they accept it but don't reward ...