XSS Found in Silently Installed Acrobat Chrome Extension
Google Project Zero researcher Tavis Ormandy discovered that a Chrome extension installed silently by Adobe last week had been affected by a cross-site scripting (XSS) vulnerability. Adobe quickly patched the flaw after learning of its existence.
Read more: XSS Found in Silently Installed Acrobat Chrome Extension
Story added 19. January 2017, content source with full text you can find at link above.