CVE-2026-8878
CVE-2026-8878

Currently unrated

Key Information:

Vendor: Securly
Status: Securly Chrome Extension
Vendor: CVE Published:; 3 June 2026

What is CVE-2026-8878?

Version 3.0.7 of the Securly Chrome Extension exposes multiple publicly accessible endpoints that allow unauthenticated access to sensitive data. The exposed information consists of SHA-1 hashes that are inadequately obfuscated using a simple Caesar cipher, which can be easily reversed to recover the original hash values and access the protected data.

Affected Version(s)

Securly Chrome Extension 0 <= 3.0.7

References

https://kb.cert.org/vuls/id/595768

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 3, 2026
Vulnerability Reserved
May 18, 2026

CVE-2026-8878 Data

JSON