An issue in Visual Studio Code Extensions Live Server v5.7.9 allows attackers to exfiltrate files via user interaction with a crafted HTML page.Referenceshttps://github.com/ritwickdey/vscode-live-serverhttps://www.ox.security/blog/cve-2025-65717-live-server-vscode-vulnerability/