Post #8436

@thehackernews

The Hacker News

Views9,730Post view count

PostedFeb 1802/18/2026, 01:17 PM

Post content

⚠️ Four popular VS Code extensions expose developers to file theft and remote code execution. Researchers say 125M+ installs are affected. Flaws in Live Server, Code Runner, and others enable localhost abuse, malicious configs, and code injection—some still unpatched. 🔗 Read → https://thehackernews.com/2026/02/critical-flaws-found-in-four-vs-code.html