[ new scan ] [ statistics ] [ github ] [ twitter ] [ help ]

Oracle Eloqua Sales Tools

Version 3.0.0 View in Chrome Web Store

Last scanned: about 6 hours ago

Extension Details

Rating: 4.7 ★ (25 ratings)

Users: 916

Context-Aware Verdict

HIGH

Overall Risk

Trust Factors:

The extension appears to be a legitimate business tool from Oracle for their Eloqua marketing platform, which adds some credibility. The rating of 4.7 from 25 reviews is positive, though the small user base of 916 suggests limited adoption. However, the lack of clear developer information and missing last updated date raises transparency concerns.

Concerns:

The extension requests extremely broad permissions that extend far beyond what would be expected for Eloqua-specific functionality. The content scripts permission for all HTTP and HTTPS sites (http://*/*, https://*/*) is particularly concerning as it allows the extension to inject code into every website you visit. While the host permissions are appropriately scoped to Eloqua domains, the combination of tabs, cookies, and scripting permissions across all websites creates significant privacy and security risks. The broad content script access could potentially be exploited to capture sensitive information from banking sites, email, or other personal accounts.

Recommendations:

Consider running this extension in a separate Chrome profile dedicated only to Eloqua-related work to limit exposure. Before installation, verify this is the official Oracle extension through Oracle's support channels. Monitor the extension's behavior and disable it when not actively using Eloqua. Given the broad permissions, only install if Eloqua functionality is business-critical and you trust Oracle's security practices completely.

Findings

HIGH

Broad Host Permissions

This extension has broad host permissions allowing it to access many or all websites. This could potentially be used to steal sensitive data or track browsing activity.

HIGH

High-Risk Permission: cookies

This extension has the cookies permission. Can access and modify browser cookies. This could potentially be used maliciously to compromise security or privacy.

HIGH

High-Risk Permission: tabs

This extension has the tabs permission. Can access browser tab information and manipulate tabs. This could potentially be used maliciously to compromise security or privacy.

Security Analysis Details

Required Permissions:

tabs
cookies
scripting
windows

Host Permissions:

https://*.secure.eloqua.com/
https://apps.p01.eloqua.com/
https://apps.p02.eloqua.com/
https://apps.p03.eloqua.com/
https://apps.p04.eloqua.com/
https://apps.p06.eloqua.com/
https://apps.p07.eloqua.com/
https://*.eloqua.com/

Content Security Policy:

extension_pages: script-src 'self'; object-src 'self'

Embedded URLs (30 total):

https://s1860.t.eloqua.com/e/f2	https://login.eloqua.com/apps/embed/salesTools/profiler?WindowAutoPopup=false
https://apps.devsecure.eloquacorp.com/salesTools/profiler?WindowAutoPopup=false&q=	https://login.elqqa01.com/apps/embed/salesTools/profiler?WindowAutoPopup=false&q=
https://login.eloqua.com/apps/embed/salesTools/profiler?WindowAutoPopup=false&q=	https://getbootstrap.com/
https://github.com/twbs/bootstrap/blob/main/LICENSE	http://www.w3.org/2000/svg
http://fontawesome.io	http://fontawesome.io/license
https://clients2.google.com/service/update2/crx	https://apps.p01.eloqua.com/
https://apps.p02.eloqua.com/	https://apps.p03.eloqua.com/
https://apps.p04.eloqua.com/	https://apps.p06.eloqua.com/
https://apps.p07.eloqua.com/	https://reactrouter.com/v6/upgrading/future#v7_starttransition
https://reactrouter.com/v6/upgrading/future#v7_relativesplatpath	https://reactrouter.com/v6/upgrading/future#v7_fetcherpersist
https://reactrouter.com/v6/upgrading/future#v7_normalizeformmethod	https://reactrouter.com/v6/upgrading/future#v7_partialhydration
https://reactrouter.com/v6/upgrading/future#v7_skipactionerrorrevalidation	https://reactjs.org/docs/error-decoder.html?invariant=
http://www.w3.org/1999/xlink	http://www.w3.org/XML/1998/namespace
http://www.w3.org/1999/xhtml	http://www.w3.org/1998/Math/MathML
http://fb.me/use-check-prop-types	https://reactjs.org/link/react-polyfills

Raw Manifest

{
  "name": "__MSG_appName__",
  "icons": {
    "16": "images/icon16.png",
    "32": "images/icon32.png",
    "64": "images/icon64.png",
    "128": "images/icon128.png",
    "256": "images/icon256.png"
  },
  "action": {
    "default_popup": "/popup.html"
  },
  "version": "3.0.0",
  "background": {
    "service_worker": "background.js"
  },
  "update_url": "https://clients2.google.com/service/update2/crx",
  "description": "__MSG_appDesc__",
  "permissions": [
    "tabs",
    "cookies",
    "scripting",
    "windows"
  ],
  "default_locale": "en",
  "content_scripts": [
    {
      "js": [
        "content.js"
      ],
      "run_at": "document_end",
      "matches": [
        "http://*/*",
        "https://*/*"
      ]
    }
  ],
  "offline_enabled": false,
  "host_permissions": [
    "https://*.secure.eloqua.com/",
    "https://apps.p01.eloqua.com/",
    "https://apps.p02.eloqua.com/",
    "https://apps.p03.eloqua.com/",
    "https://apps.p04.eloqua.com/",
    "https://apps.p06.eloqua.com/",
    "https://apps.p07.eloqua.com/",
    "https://*.eloqua.com/"
  ],
  "manifest_version": 3,
  "content_security_policy": {
    "extension_pages": "script-src 'self'; object-src 'self'"
  },
  "web_accessible_resources": [
    {
      "matches": [
        "*://*/*"
      ],
      "resources": [
        "content.js",
        "images/*",
        "styles/*",
        "scripts/*"
      ]
    }
  ]
}

by ✦ Astarte

Oracle Eloqua Sales Tools

Extension Details

Context-Aware Verdict

Findings

Security Analysis Details

Required Permissions:

Host Permissions:

Content Security Policy:

Embedded URLs (30 total):

Raw Manifest

Detections

Manifest Findings