Critical Vulnerability Discovered in Evernote’s Chrome ExtensionCritical Vulnerability Discovered in Evernote’s Chrome ExtensionJune 10th · 5 min read In May 2019 Guardio's research team has discovered a critical vulnerability in Evernote Web Clipper for Chrome. A logical coding error made it is possible to break domain-isolation mechanisms and execute code on behalf of the user - granting access to sensitive user information not limited to Evernote's domain.
