Cisco WebEx Chrome extension allowed arbitrary code execution: Project Zero

Over 20 millions users were vulnerable to a remote code execution bug, and now, they are only vulnerable if Cisco falls foul of XSS.