[Chrome] Cross-Site Scripting in New-Tab Page [CVE-2021-37999] ($1000 USD)
We discussed this vulnerability during Episode 97 on 08 November 2021
The Chrome New Tab Page was vulnerable to a stored cross-site scripting attack in the search suggestion box.
This attack does require an attacker be able to control a prior search so that it shows up in the suggestion box, this apparently is doable through CSRF but the example of this included a CSRF token, so there might be more information needed on that. But the gist of it, is that by searching for something like "><img src=x onerror=alert(1337)>
the next time the New Tab search box is used, the previous searches will be insecurely reflected into the page.