Browse all 7 CVE security advisories affecting pinchtab. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Pinchtab is a browser extension designed for tab management and productivity enhancement. Historically, it has been associated with multiple critical vulnerabilities including cross-site scripting (XSS), remote code execution (RCE), and privilege escalation issues. These vulnerabilities often stem from improper input validation and insufficient sandboxing. The extension has accumulated seven CVEs to date, with several allowing attackers to execute arbitrary code or steal sensitive user data. Security researchers have noted that Pinchtab's broad permissions and integration with browser APIs create significant attack surfaces. No major public security incidents have been documented, but the consistent discovery of vulnerabilities suggests ongoing security concerns that users should consider when evaluating the extension's risk profile.
This page lists every published CVE security advisory associated with pinchtab. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.