Back in late 2021, some security concerns about uBO were made public. Tests were made on the non-Legacy version. Looks like if you get to install a malicious/hijacked/modified filterlist, bad things can happen.
https://portswigger.net/research/ublock ... s-with-css
They were dealt with in version 1.39.0:
Not entirely sure, but I think these patches were not applied in the Legacy versions we later got? Couldn't find something related here:
I also don't know if these issues are actually relevant to the Legacy version. It'd be good to at least know. Does anyone know?
edit: added issue 1794 to the list above
https://portswigger.net/research/ublock ... s-with-css
They were dealt with in version 1.39.0:
edit: added issue 1794 to the list above