Merlin

Compare Chrome extensions: IT Hit Edit Document Opener 4 vs Opener Detector

Upgrade to compare more stats
Stats IT Hit Edit Document Opener 4 IT Hit Edit Document Opener 4 Opener Detector Opener Detector
User count 6,000+ 77
Average rating 3.40 5.00
Rating count 5 1
Last updated 2017-09-27 2017-09-04
Size 37.70K 30.66K
Version 4.0.2375.0 1.0.0
Short description
Enables opening documents for editing directly from the WebDAV server and saving back to server without download and upload steps. Checks for window.opener vulnerabilities as you browse.
Full summary

Using Edit Document Opener you can:

  • Open any documents (PDF, TXT, DWG, PSD, etc.) from a web page in Google Chrome on Windows, Mac OS X and Linux and save back to server without download/upload steps.

  • Open any documents, including MS Office documents, from a WebDAV server with cookies authentication.

A simple browser extension which checks for window.opener vulnerabilities as you browse. When it finds one, it shows a warning page in the vulnerable tab, so that you can report or fix the vulnerability. (Use the back button to return to the page.) Individual pages and whole domains can be added to an ignore list, and by default, vulnerabilities between pages of the same origin (e.g. https://example.com/foo.html and https://example.com/bar.html) are not reported, though this can be changed in the settings.

window.opener vulnerabilities allow Web pages to control the tab which opened them. They can be fixed on many browsers simply by adding rel=noopener to your links. For more details, check out Mathias Bynens' article (https://mathiasbynens.github.io/rel-noopener/).

Please use responsibly. Disclose vulnerabilities you find, or fix them. Keep your hat white.

Source code is available on GitHub (https://github.com/HarryCutts/opener-detector), under the 3-clause BSD license. Contributions welcome!