Security researchers have disclosed a dangerous critical zero-day exploit targeting a widely used browser extension. The vulnerability, tracked as CVE-12345, allows attackers to execute arbitrary code to sensitive information stored on a victim's computer. Exploit code is currently available online. Authorities/Security firms/Cybersecurity experts