Google has fixed CVE-2026-13791, a High-severity input-validation flaw in Chrome’s Downloads component affecting versions before 150.0.7871.47, after researchers found that an attacker who persuaded a user to install a malicious extension could use a crafted Chrome Extension to execute arbitrary...