High severity7.5NVD Advisory· Published Jun 3, 2026· Updated Jun 4, 2026
CVE-2026-8878
CVE-2026-8878
Description
Version 3.0.7 of the Securly Chrome Extension exposes multiple publicly accessible endpoints that allow unauthenticated access to sensitive data. The exposed information consists of SHA-1 hashes that are inadequately obfuscated using a simple Caesar cipher, which can be easily reversed to recover the original hash values and access the protected data.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=3.0.7
Patches
Vulnerability mechanics
References
1- kb.cert.org/vuls/id/595768nvdThird Party Advisory
News mentions
1- ⚡ Weekly Recap: Instagram Account Hacks, Android Zero-Day, GitHub Worm and MoreThe Hacker News · Jun 8, 2026