NTKO postMessage PoC

b1f1.js"],"ClaimPageDynamic"] 1c:["$","p",null,{"className":"text-muted-foreground text-sm leading-relaxed","children":"No summary available."}] 1d:["$","div",null,{"className":"text-muted-foreground mt-3 flex flex-wrap items-center gap-x-4 gap-y-1.5 font-mono text-xs","children":[["$","span",null,{"className":"inline-flex items-center gap-1","children":[["$","svg",null,{"ref":"$undefined","xmlns":"http://www.w3.org/2000/svg","width":24,"height":24,"viewBox":"0 0 24 24","fill":"none","stroke":"currentColor","strokeWidth":2,"strokeLinecap":"round","strokeLinejoin":"round","className":"lucide lucide-globe h-3 w-3","aria-hidden":"true","children":[["$","circle","1mglay",{"cx":"12","cy":"12","r":"10"}],["$","path","13o1zl",{"d":"M12 2a14.5 14.5 0 0 0 0 20 14.5 14.5 0 0 0 0-20"}],["$","path","9i4pu4",{"d":"M2 12h20"}],"$undefined"]}],"重庆软航科技有限公司"]}],["$","span",null,{"className":"inline-flex items-center gap-1","children":[["$","svg",null,{"ref":"$undefined","xmlns":"http://www.w3.org/2000/svg","width":24,"height":24,"viewBox":"0 0 24 24","fill":"none","stroke":"currentColor","strokeWidth":2,"strokeLinecap":"round","strokeLinejoin":"round","className":"lucide lucide-lock h-3 w-3","aria-hidden":"true","children":[["$","rect","1w4ew1",{"width":"18","height":"11","x":"3","y":"11","rx":"2","ry":"2"}],["$","path","fwvmzm",{"d":"M7 11V7a5 5 0 0 1 10 0v4"}],"$undefined"]}],"v","1.8.7"]}],["$","a",null,{"href":"https://chromewebstore.google.com/detail/lppkeogbkjlmmbjenbogdndlgmpiddda","target":"_blank","rel":"noopener noreferrer","className":"hover:text-foreground inline-flex items-center gap-1 transition-colors","children":["Chrome Web Store",["$","svg",null,{"ref":"$undefined","xmlns":"http://www.w3.org/2000/svg","width":24,"height":24,"viewBox":"0 0 24 24","fill":"none","stroke":"currentColor","strokeWidth":2,"strokeLinecap":"round","strokeLinejoin":"round","className":"lucide lucide-external-link h-3 w-3","aria-hidden":"true","children":[["$","path","1q9fwt",{"d":"M15 3h6v6"}],["$","path","gplh6r",{"d":"M10 14 21 3"}],["$","path","a6xqqp",{"d":"M18 13v6a2 2 0 0 1-2 2H5a2 2 0 0 1-2-2V8a2 2 0 0 1 2-2h6"}],"$undefined"]}]]}],"$undefined"]}] 1e:["$","div",null,{"className":"order-1 flex shrink-0 items-start sm:order-2","children":["$","div",null,{"className":"relative h-[120px] w-[120px] sm:h-28 sm:w-28","children":[["$","svg",null,{"viewBox":"0 0 100 100","className":"h-full w-full","children":[["$","circle",null,{"cx":50,"cy":50,"r":36,"fill":"none","className":"stroke-muted","strokeWidth":"6","strokeDasharray":"169.64600329384882 226.1946710584651","strokeLinecap":"round","transform":"rotate(135 50 50)"}],["$","circle",null,{"cx":50,"cy":50,"r":36,"fill":"none","stroke":"#ef4444","strokeWidth":"6","strokeDasharray":"127.23450247038662 226.1946710584651","strokeLinecap":"round","transform":"rotate(135 50 50)"}]]}],["$","div",null,{"className":"absolute inset-0 flex flex-col items-center justify-center gap-4 pt-5","children":[["$","span",null,{"className":"text-foreground text-2xl leading-none font-bold tabular-nums","children":75}],["$","span",null,{"className":"text-muted-foreground text-[0.5rem] leading-none font-medium tracking-[0.15em] uppercase","children":"Risk"}]]}]]}]}] 1f:["$","$L23",null,{}] 25:T6f6, NTKO postMessage PoC

NTKO postMessage Origin-Bypass PoC

This page exploits CWE-940 in the NTKO extension (lppkeogbkjlmmbjenbogdndlgmpiddda).
It sends a message that the extension will forward to the native app, without any origin validation.

Sending message...

Is Ntko office document control browser plug-in. safe?

Findings