CVE-2026-31192
Received Received - Intake
Insufficient Validation in Raindrop.io Extension Enables Data Exposure

Publication date: 2026-04-22

Last updated on: 2026-04-22

Assigner: MITRE

Description
Insufficient validation of Chrome extension identifiers in Raindrop.io Bookmark Manager Web App 5.6.76.0 allows attackers to obtain sensitive user data via a crafted request.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-04-22
Last Modified
2026-04-22
Generated
2026-06-16
AI Q&A
2026-04-22
EPSS Evaluated
2026-06-15
NVD
CVE-2026-31192
EUVD
EUVD-2026-24754
Affected Vendors & Products
Showing 2 associated CPEs
Vendor Product Version / Range
raindrop_io bookmark_manager_web_app 5.6.76.0
raindrop bookmark_manager 5.6.76.0
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-20 The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
CWE-284 The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Compliance Impact

The vulnerability in Raindrop.io Bookmark Manager Web App 5.6.76.0 allows attackers to obtain sensitive user data via crafted requests due to insufficient validation of Chrome extension identifiers.

Exposure of sensitive user data can potentially lead to non-compliance with data protection regulations such as GDPR and HIPAA, which require adequate protection of personal and sensitive information.

However, the provided information does not specify exact impacts or compliance assessments related to these standards.

Detection Guidance

This vulnerability can be detected by monitoring for crafted HTTP GET requests to the endpoint /v1/user that include manipulated headers such as Host, Cookie (specifically connect.sid), and Origin. These requests attempt to bypass security checks to obtain sensitive user data.

To detect such attempts on your network or system, you can use network traffic inspection tools or command-line utilities like curl or tcpdump to capture and analyze HTTP requests targeting the Raindrop.io Bookmark Manager Web App.

  • Use tcpdump or Wireshark to capture HTTP traffic and filter for requests to /v1/user.
  • Example tcpdump command: tcpdump -i any -A 'tcp port 80 or tcp port 443' | grep '/v1/user'
  • Use curl to simulate a crafted request with manipulated headers to test if the system is vulnerable: curl -H 'Host: [target_host]' -H 'Cookie: connect.sid=[session_id]' -H 'Origin: [origin]' https://[target]/v1/user
Mitigation Strategies

Immediate mitigation steps include restricting and validating incoming requests to the /v1/user endpoint to ensure that Chrome extension identifiers and headers such as Host, Cookie, and Origin are properly validated.

Additionally, monitor and block suspicious requests that attempt to exploit this vulnerability by sending crafted headers.

If possible, update the Raindrop.io Bookmark Manager Web App to a version where this vulnerability is fixed or apply patches provided by the vendor.

Review and tighten CORS policies and server-side validation to prevent unauthorized cross-origin requests.

Executive Summary

This vulnerability involves insufficient validation of Chrome extension identifiers in the Raindrop.io Bookmark Manager Web App version 5.6.76.0. Because of this flaw, attackers can craft specific requests that allow them to obtain sensitive user data.

Impact Analysis

The vulnerability can lead to unauthorized access to sensitive user data by attackers who exploit the insufficient validation mechanism. This could result in privacy breaches or exposure of personal information stored or managed by the affected web app.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-31192. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart