CVE-2026-31192

Published: Apr 22, 2026

Modified: Apr 22, 2026

PUBLISHED

Description

Insufficient validation of Chrome extension identifiers in Raindrop.io Bookmark Manager Web App 5.6.76.0 allows attackers to obtain sensitive user data via a crafted request.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/Origin

https://developer.mozilla.org/en-US/docs/Web/HTTP/Guides/CORS

https://support.google.com/chrome_webstore/answer/2664769?hl=en

https://github.com/incoggeek/vulnerability-research/tree/master/CVE-2026-31192

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2026-31192

Description

Affected Products

References