[ new scan ] [ statistics ] [ github ] [ twitter ] [ help ]

Flexor CTI extension Beta

Version 3.0.0.27 View in Chrome Web Store

Last scanned: about 2 hours ago

Extension Details

Developer: camrivox.co.uk

Users: 1

Context-Aware Verdict

MEDIUM

Overall Risk

Trust Factors:

The extension has extremely limited adoption with only 1 user, which raises significant concerns about its legitimacy and testing. The developer domain "camrivox.co.uk" lacks established reputation, and the "Beta" designation indicates this is experimental software. The absence of ratings, reviews, and clear developer information further diminishes trustworthiness.

Concerns:

- Native messaging permission allows direct communication with local system applications, which could be exploited for malicious purposes

- Content scripts run on all HTTP and HTTPS websites, providing extensive access to web page data and user interactions

- Minimal user base suggests inadequate real-world testing and potential security vulnerabilities

- Beta status implies the extension may contain bugs or incomplete security implementations

- Manifest V2 usage indicates outdated security standards

- Lack of transparency regarding the extension's actual functionality

Recommendations:

Given the combination of powerful permissions and extremely low adoption, avoid installing this extension unless absolutely necessary. If required for business purposes, run it in a completely isolated Chrome profile with no access to personal accounts or sensitive data. Monitor system behavior closely after installation and consider using network monitoring tools to track any unusual communication patterns. Wait for the extension to gain more users and reviews before considering regular use.

Findings

MEDIUM

Older Manifest Version

This extension uses Manifest Version 2, which has fewer security restrictions than Manifest V3. Consider using extensions that have upgraded to V3.

Security Analysis Details

Required Permissions:

nativeMessaging

Embedded URLs (33 total):

https://clients2.google.com/service/update2/crx	http://www.salesforce.com/
https://system.na1.netsuite.com/	https://eu1.salesforce.com/servlet/servlet.ImageServer?id=015D0000001fzxR&oid=00D200000001LVs
https://eu1.salesforce.com/servlet/servlet.ImageServer?id=015D0000001gKpL&oid=00D200000001LVs	https://eu1.salesforce.com/servlet/servlet.ImageServer?id=015D00000024Vac&oid=00D200000001LVs
https://na3.salesforce.com/servlet/servlet.FileDownload?file=01550000000XWwM	https://eu1.salesforce.com/servlet/servlet.ImageServer?id=01520000000Xusm&oid=00D200000001LVs
https://eu1.salesforce.com/500D000000Fg2t8	https://c.cs18.visual.force.com/apex/COB_Contact_Detail?id=003D000000gyzpw
https://sso--c.na12.visual.force.com/apex/AccountDetailPage?id=001U000000pbkCQ&sfdc.override=1	https://eu1.salesforce.com/003D000001XHsE2/e?retURL=001D000001QhSa4
https://eu1.lightning.force.com/one/one.app#/sObject/003D000000hoqYqIAI/view?t=1462468082565	https://eu1.salesforce.com/500/e?CF00N20000001PM6D=Test+Lead+JG3&CF00N20000001PM6D_lkid=00QD000000OWTFC&retURL=%2F00QD000000OWTFC
https://eu1.salesforce.com/003/e?retURL=%2F001D000001QhSa4&accid=001D000001QhSa4	http://62.24.195.222:82/Solandi/biz/business/edit.aspx?id=
http://62.24.195.222:81/Solandi/sfa/conts/edit.aspx?id=	http://62.24.195.222:81/Solandi/sfa/accts/edit.aspx?id=
http://62.24.195.222:81/Solandi/sfa/leads/edit.aspx?id=	http://62.24.195.222:81/Solandi/biz/users/edit.aspx?id=
http://62.24.195.222:81/Solandi/sfa/opps/edit.aspx?id=	http://62.24.195.222:81/Solandi/activities/phone/edit.aspx?id=
http://62.24.195.222:81/Solandi/cs/cases/edit.aspx?id=	https://camrivox.crm4.dynamics.com/biz/business/edit.aspx?id=%7bECE14719-B3E5-E211-B273-984BE16D8FD4%7d
http://62.24.195.222:82/Camrivox/main.aspx?etc=2&extraqs=%3f_gridType%3d2%26etc%3d2%26id%3d%257b18E3685A-D203-E211-BB97-001676A2AA17%257d%26rskey%3d613373953&pagetype=entityrecord	http://62.24.195.222:82/Camrivox/main.aspx?etc=1&extraqs=%3f_gridType%3d1%26etc%3d1%26id%3d%257b905CC079-E953-E011-BE26-001676A2ACC6%257d%26rskey%3d776044618&pagetype=entityrecord
http://62.24.195.222:82/Camrivox/main.aspx?etc=4&extraqs=%3f_gridType%3d4%26etc%3d4%26id%3d%257b1EB45D8B-2777-E011-BC7E-001676A2ACC6%257d%26rskey%3d812755477&pagetype=entityrecord	http://62.24.195.222:82/Camrivox/main.aspx?etc=8&extraqs=%3f_gridType%3d8%26etc%3d8%26id%3d%257bC862E191-E450-E011-BDD9-001676A2ACC6%257d%26rskey%3d231216943&pagetype=entityrecord
http://62.24.195.222:82/Camrivox/main.aspx?etc=3&extraqs=%3f_gridType%3d3%26etc%3d3%26id%3d%257b42017A01-B071-E111-9FBD-001676A2AA17%257d%26rskey%3d501206963&pagetype=entityrecord	http://62.24.195.222:82/Camrivox/main.aspx?etc=4210&extraqs=%3f_gridType%3d4200%26etc%3d4210%26id%3d%257bA4E3575D-3777-E011-BC7E-001676A2ACC6%257d%26rskey%3d1030168&pagetype=entityrecord
http://62.24.195.222:82/Camrivox/main.aspx?etc=112&extraqs=%3f_gridType%3d112%26etc%3d112%26id%3d%257b78A4C7EE-355E-E211-B490-001676A2AA17%257d%26rskey%3d691069630&pagetype=entityrecord	https://cvox.crm4.dynamics.com/main.aspx#144646389
http://msdn.microsoft.com/en-us/library/bb887791.aspx

Raw Manifest

{
  "name": "Flexor CTI extension Beta",
  "icons": {
    "48": "Flexor48.png",
    "128": "Flexor128.png"
  },
  "version": "3.0.0.27",
  "background": {
    "scripts": [
      "background.js"
    ],
    "permissions": [
      "nativeMessaging"
    ]
  },
  "short_name": "Flexor CTI",
  "update_url": "https://clients2.google.com/service/update2/crx",
  "description": "Flexor CTI extension",
  "permissions": [
    "nativeMessaging"
  ],
  "content_scripts": [
    {
      "js": [
        "jquery-3.1.1.min.js",
        "FlexorCTI.js"
      ],
      "matches": [
        "http://*/*",
        "https://*/*"
      ]
    }
  ],
  "manifest_version": 2
}

by ✦ Astarte