Grammarly has since patched its Chrome and Firefox extensions before anyone with malice could cause harm. In an email statement, a Grammarly spokesperson told Neowin that while the company has pushed an update for all its browser extensions, the vulnerability did not affect the extension for Microsoft"s Edge browser.
Project Zero researcher Travis Ormandy classified the bug high-severity as, if the bug was exploited, the attacker would gain complete access to one"s documents and other account information.
In a statement to Gizmodo, a Grammarly spokesperson stated that the company had no evidence of any user being compromised by the vulnerability.
Source: Tavis Ormandy (Twitter) | Image via Microsoft Store