{"id":10746,"date":"2026-02-18T10:03:55","date_gmt":"2026-02-18T10:03:55","guid":{"rendered":"https:\/\/serisec.com\/index.php\/2026\/02\/18\/flaws-in-popular-vscode-extensions-expose-developers-to-attacks\/"},"modified":"2026-02-18T10:03:55","modified_gmt":"2026-02-18T10:03:55","slug":"flaws-in-popular-vscode-extensions-expose-developers-to-attacks","status":"publish","type":"post","link":"https:\/\/serisec.com\/index.php\/2026\/02\/18\/flaws-in-popular-vscode-extensions-expose-developers-to-attacks\/","title":{"rendered":"Flaws in popular VSCode extensions expose developers to attacks"},"content":{"rendered":"<p>    Flaws in popular VSCode extensions expose developers to attacks<br \/>\n \t<BR><br \/>\n<BR><\/BR><br \/>\n    <!-- no image --><br \/>\n \t<BR><br \/>\n<BR><\/BR><\/p>\n<div>Vulnerabilities with high to critical severity ratings affecting popular\u00a0Visual Studio Code (VSCode) extensions collectively downloaded more than 128 million times\u00a0could be exploited to steal local files and execute code remotely. [&#8230;]<\/div>\n<p> \t<BR><br \/>\n <BR><\/BR><br \/>\n    Bill Toulas<br \/>\n \t<BR><br \/>\n<BR><\/BR><br \/>\n<a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/flaws-in-popular-vscode-extensions-expose-developers-to-attacks\/\">Go to bleepingcomputer<\/a><br \/>\n \t<BR><br \/>\n <BR><\/BR><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Flaws in popular VSCode extensions expose developers to attacks Vulnerabilities with high to critical severity ratings affecting popular\u00a0Visual Studio Code (VSCode) extensions collectively downloaded more than 128 million times\u00a0could be exploited to steal local files and execute code remotely. [&#8230;] Bill Toulas Go to bleepingcomputer<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[64,133],"tags":[80],"class_list":["post-10746","post","type-post","status-publish","format-standard","hentry","category-bleepingcomputer","category-security","tag-bleepingcomputer"],"_links":{"self":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts\/10746"}],"collection":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/comments?post=10746"}],"version-history":[{"count":0,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts\/10746\/revisions"}],"wp:attachment":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/media?parent=10746"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/categories?post=10746"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/tags?post=10746"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}