Is Spell Checker for Chrome safe?

Clean risk

Spell checker with XSS vulnerability via unencoded API responses in innerHTML. PostMessage handler lacks proper origin validation allowing cross-origin storage manipulation. Content scripts limited to developer's own domain (iblogbox.com).

Smart Softwarev0.9.4.9Chrome Web Store
0Risk

AI-generated. Findings may contain errors. Those marked Verified have been manually reviewed.

Publishers can request a review.

Updated 18 May 2026jfpdnkkdgghlpdgldicfgnnnkhdfhocg