Extension Details
Rating:
5.0 ★
(1 rating)
Users:
101
Context-Aware Verdict
This section provides a Claude-based AI analysis that applies additional context to the risk. Results are not guaranteed to be accurate.
CRITICAL
Overall Risk
Trust Factors: This extension has extremely low trust indicators with only 101 users, a single 5-star rating, no clear author information, and an empty description. The Chinese name "仟寻" (meaning "thousand searches") suggests it may be related to job searching, which aligns with its permissions targeting major Chinese job sites. However, the lack of transparency and minimal user base are significant red flags.
Concerns: The extension requests an excessive array of high-risk permissions that far exceed what would be necessary for typical job site functionality. The debugger permission is particularly alarming as it allows manipulation of other extensions and deep system access. The combination of tabs, cookies, webRequest, and broad host permissions creates a powerful surveillance toolkit that could intercept sensitive data, track browsing behavior, and modify web traffic. The targeting of specific job sites suggests potential data harvesting of employment information, personal details, and login credentials.
Recommendations: Do not install this extension under any circumstances. The risk-to-benefit ratio is unacceptable given the lack of transparency, minimal user base, and excessive permissions. If job site automation is needed, seek well-established alternatives with clear documentation, substantial user bases, and transparent development teams. The combination of critical permissions with poor trust indicators suggests this could be malware disguised as a legitimate tool.
Findings
This section provides a detailed analysis of the extension's security posture, without broader context. Assumes worst-case impact.
HIGH
Broad Host Permissions
This extension has broad host permissions allowing it to access many or all websites. This could potentially be used to steal sensitive data or track browsing activity.
HIGH
High-Risk Permission: cookies
This extension has the cookies permission. Can access and modify browser cookies. This could potentially be used maliciously to compromise security or privacy.
HIGH
High-Risk Permission: debugger
This extension has the debugger permission. Can debug and manipulate other extensions/apps. This could potentially be used maliciously to compromise security or privacy.
HIGH
High-Risk Permission: tabs
This extension has the tabs permission. Can access browser tab information and manipulate tabs. This could potentially be used maliciously to compromise security or privacy.
HIGH
High-Risk Permission: webRequest
This extension has the webRequest permission. Can intercept and modify web requests. This could potentially be used maliciously to compromise security or privacy.
MEDIUM
Medium-Risk Permission: activeTab
This extension has the activeTab permission. Can access the active tab when clicking the extension icon.
MEDIUM
Medium-Risk Permission: storage
This extension has the storage permission. Can store data locally.
Security Analysis Details
Required Permissions:
- tabs
- cookies
- storage
- webRequest
- debugger
- scripting
- activeTab
Host Permissions:
- *://*.51job.com/*
- *://*.liepin.com/*
- *://*.zhaopin.com/*
- *://*.zhipin.com/*
- *://*.lagou.com/*
- *://*.58.com/*
- *://*.moseeker.com/*
Embedded URLs (256 total):
| https://hr.moseeker.com | https://rd6.zhaopin.com/api/staff/user/getStaffBindList | |
| https://ehire.51job.com/Revision/login | https://ehire.51job.com/Safety/MobileConfirm.aspx | |
| https://ehire.51job.com/Revision/job?mark=new | https://ehire.51job.com/Jobs/JobTip.aspx | |
| https://ehire.51job.com/Revision/job/published | https://open.51job.com/newapi/open/jobs/publish_societyjob.ashx | |
| https://ehire.51job.com/ | https://passport.lagou.com/login/login.html | |
| https://easy.lagou.com/position/multiChannel/createPosition.htm | https://easy.lagou.com/position/multiChannel/myOnlinePositions.htm | |
| https://easy.lagou.com/parentPosition/multiChannel/create.json | https://lpt.liepin.com/user/login | |
| https://lpt.liepin.com/ejobedit/editcommonjob | https://lpt.liepin.com/ejobedit/showpublishejobresult | |
| https://apilpt.liepin.com/api/com.liepin.job.b.ejobedit.save-ejob | https://apilpt.liepin.com/api/com.liepin.job.b.ejobedit.publish-ejob | |
| https://apilpt.liepin.com/api/com.liepin.usere.bpc.get-user-base | https://passport.58.com/login | |
| https://passport.58.com/sec/58/feature/pc/ui | https://fabu.58.com/zhaopin/ | |
| https://fabu.58.com/zhaopin/post/success | https://employer.58.com/ | |
| https://passport.zhaopin.com/org/login | https://passport.zhaopin.com/org/login/bind/mobile | |
| https://rd5.zhaopin.com/job/publish | https://rd5.zhaopin.com/commercial/job/refresh | |
| https://rd5.zhaopin.com/job/result | https://rd5.zhaopin.com/api/rd/job/publish | |
| https://rd6.zhaopin.com/staff/user/info | https://rd6.zhaopin.com/job/publish | |
| https://rd6.zhaopin.com/job/publish/success | https://zhuan.zhaopin.com/supplementary/:id | |
| https://rd6.zhaopin.com/app/recommend | https://rd6.zhaopin.com/api/job/publish | |
| https://rd6.zhaopin.com/api/job/list | https://rd6.zhaopin.com/job/publish?from=jobmanage_jobpublish | |
| https://www.zhipin.com/web/chat/set/personal-information | https://www.zhipin.com/web/chat/user-center | |
| https://login.zhipin.com | https://www.zhipin.com/web/chat/job/edit?encryptId=0 | |
| https://www.zhipin.com/wapi/zpjob/job/lastManageAddress | https://www.zhipin.com/wapi/zpjob/job/save | |
| https://www.zhipin.com/wapi/zpboss/h5/user/info | https://www.zhipin.com/wapi/zppassport/get/zpToken | |
| https://lodash.com/ | https://openjsf.org/ | |
| https://lodash.com/license | http://underscorejs.org/LICENSE | |
| https://npms.io/search?q=ponyfill. | https://www.zhipin.com/wapi/zpboss/h5/user/email/sendCode | |
| https://www.zhipin.com/wapi/zpboss/h5/user/contact/save.json | https://easy.lagou.com/parentPosition/multiChannel/myOnlinePositions.json | |
| https://easy.lagou.com/workAddress/list.json | https://easy.lagou.com/businessUser/getBusinessUserInfo.json | |
| https://ehire.51job.com/Revision/404 | https://rd6.zhaopin.com/app/ | |
| https://github.com/zloirock/core-js/issues/86#issuecomment-115759028 | https://chromedevtools.github.io/devtools-protocol/tot/Network/ | |
| https://tc39.github.io/ecma262/#sec-object.defineproperty | http://www.ecma-international.org/ecma-262/7.0/#sec-ecmascript-language-types | |
| http://ecma-international.org/ecma-262/7.0/#sec-object.keys | http://www.google.com | |
| https://tc39.github.io/ecma262/#sec-tointeger | https://tc39.github.io/ecma262/#sec-tolength | |
| https://tc39.github.io/ecma262/#sec-requireobjectcoercible | http://ecma-international.org/ecma-262/7.0/#sec-samevaluezero | |
| https://tc39.github.io/ecma262/#sec-toobject | https://tc39.github.io/ecma262/#sec-object.getprototypeof | |
| https://tc39.github.io/ecma262/#sec-object.setprototypeof | http://ecma-international.org/ecma-262/7.0/#sec-tolength | |
| https://bugs.webkit.org/show_bug.cgi?id=156034 | http://w3.org/TR/2012/WD-url-20120524/#collect-url-parameters | |
| http://39.96.43.140:11033/swagger-ui.html# | http://47.93.181.36:11033/swagger-ui.html# | |
| https://tc39.github.io/ecma262/#sec-object.getownpropertydescriptor | https://tc39.github.io/ecma262/#sec-toprimitive | |
| https://github.com/zloirock/core-js/issues/475 | https://github.com/es-shims/es5-shim/issues/150 |
Page 1 of 4
Raw Manifest
{ "key": "MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1UkLNKr8Jl49QFqKeiP8MmTdufhiHNq9344wB/OwQuR/HCJfNh7O4NXSuOw7rvKhBM6cQExkNrxKXJzZYPnQ6k2GmiO0qSoon6KKlXOkW6SLQhvHIcCEOPp5OArR+8APb5ZLTkvJU4+6ouKevFn4ekXft53+fHYiOlnM+OiPNxEHtUrwT6SitCoUMCYlskGKcSgJaAGMxDfbkGAH78R0svSV3rVYFJ+30xy3edYf+SnrVZnxKMzBoxLDsjvtbaZtSFxIyAz12z0a0UKknenQKn7eSd9iYfnrI3V/7jKGCkhKoW1aNJlquofdMAeHEGQgsZ6Z1AHQj2AyeEkS5oDDhwIDAQAB", "name": "仟寻", "icons": { "48": "icons/logo_48.png", "128": "icons/logo_128.png" }, "action": { "default_popup": "popup/popup.html", "default_title": "仟寻" }, "version": "0.4.25", "background": { "service_worker": "background.js" }, "update_url": "https://clients2.google.com/service/update2/crx", "description": "仟寻招聘助手", "permissions": [ "tabs", "cookies", "storage", "webRequest", "debugger", "scripting", "activeTab" ], "homepage_url": "https://www.moseeker.com/", "options_page": "options/options.html", "content_scripts": [ { "js": [ "content/content.js" ], "css": [ "content/content.css" ], "run_at": "document_start", "matches": [ "*://*.51job.com/*", "*://*.liepin.com/*", "*://*.zhaopin.com/*", "*://*.zhipin.com/*", "*://*.lagou.com/*", "*://*.58.com/*", "*://*.moseeker.com/*" ], "all_frames": true } ], "host_permissions": [ "*://*.51job.com/*", "*://*.liepin.com/*", "*://*.zhaopin.com/*", "*://*.zhipin.com/*", "*://*.lagou.com/*", "*://*.58.com/*", "*://*.moseeker.com/*" ], "manifest_version": 3, "externally_connectable": { "ids": [], "matches": [ "*://localhost/*", "*://*.moseeker.com/*" ], "accepts_tls_channel_id": false }, "web_accessible_resources": [] }
ⓘ CRXaminer has partnered with our friends at Secure Annex to provide additional findings unique to their platform.
Secure Annex also analyzes extensions from other browsers, IDEs, and can continuously monitor.
Loading Secure Annex data...
Unable to load Secure Annex data.
This extension may not yet be analyzed by Secure Annex.
Detections
0Critical
0
High
0
Medium
0
Low
0
Has Verdicts
Yes
Manifest Findings
0Critical
0
High
0
Medium
0
Low
0
Secure Annex analyzed version: -