Is Email Hunter safe to use?

Email Hunter has a risk level of HIGH with an overall risk score of 6.2/10. Our scan detected 33 security findings. This extension has significant security concerns — review the full report before installing.

What permissions does Email Hunter request?

Email Hunter requests the following permissions: notifications, storage, alarms, webRequest, webNavigation, scripting. It also requests host access to: .

What is Email Hunter's risk score?

Email Hunter has an overall risk score of 6.2/10 (HIGH). Breakdown: Permissions 7.0/10, Code 9.3/10, Combinations 10.0/10, CSP 3.1/10.

ExtSafe

Email HunterSecurity Analysis

Chromev1.48MV3February 18, 2026 at 12:11 PM

Potentially unsafe

This extension shows concerning patterns that may indicate risky behavior. Proceed with caution.

Known Security Incidents(1)

Critical2024-12Resolved

Compromised in Cyberhaven supply chain attack

Extension was among 35+ extensions compromised in the December 2024 supply chain attack campaign that injected data-stealing code.

6.2HIGH

6.2 HIGHRaw: 7.8

This extension shows significant risk signals. Review the findings below carefully before installing or continuing to use it.

Based on 7 permissions including high-risk ones, 29 code findings, 1 dangerous combination.

Trust Signals(5.0/10)

Users

200K

Rating

4.4(2K reviews)

Status

Featured

Dangerous Combinations(1)

CRITICALNetwork interception + external communication

Extension intercepts network traffic and sends data externally — potential man-in-the-middle behavior.

webRequest/webRequestBlocking+external network request

Permissions

7.0/10

Code

9.3/10

Combinations

10.0/10

Manifest/CSP

3.1/10

Permissions(7 analyzed)

Code Findings(16 patterns, 29 total)

Libraries(2 detected)

2 libraries detected, 1 with known vulnerabilities

Content Security Policy

No CSP Defined(1 issue)

MEDIUM

N/ANo CSP defined

This extension does not define a Content Security Policy. A CSP helps prevent XSS and code injection attacks.

Manifest Analysis(1 finding)

Resolved from __MSG_* i18n placeholders:

Name: Email Hunter

Description: Email Extractor tool that save time and efforts. Forget copying and pasting. It collects emails as you browse websites.

MEDIUM

content_scriptsContent script injected on all URLs

Content script matches <all_urls>, executing on every website the user visits.

External Domains(13)

*chromewebstore.google.comdocs.google.comgithub.comhtml.duckduckgo.comid.id.${nnowpayments.iopopper.js.orgwww.bing.comwww.buymeacoffee.comwww.mellowtel.itwww.patreon.com