← LibraryTechnique entry
BX-EXT-INJECTED-XSSImpact
Content Script DOM Injection
Extension's content script injects into all pages without proper isolation — buggy ext code becomes an XSS in every visited site.
§ Where this technique fits
BX-EXT-INJECTED-XSS is catalogued under the Impact tactic of the offensive-security kill-chain. It appears in 0 approved dossiers in the registry, typically.