← All Tags
# api browser

1 link tagged with all of: api + browser

Click any tag below to further narrow down your results

+ security (1) + privacy (1) + vulnerabilities (1)

Links

Obscure MCP API in Comet Browser Breaches User Trust, Enabling Full Device Control via AI Browsers

SquareX's research reveals a concealed MCP API in the Comet browser that allows extensions to execute commands and access user devices without permission. This breach of security principles raises concerns about potential exploitation and the lack of transparency surrounding embedded extensions.
Saved by tldr-importer · Last saved February 14, 2026 · 3 min read
+ security + privacy browser ✓ api ✓ + vulnerabilities