Extension Auditor
Extension Auditor
Sign Up
AliWangWang Translate - Chat Translator for 1688

AliWangWang Translate - Chat Translator for 1688

ID: lcjfodbdnppajbokpgeeaklpoeodpbaj

Extension Info & Metadata

Status
Active
Version
5.0.3
Size
7.60 MB
Rating
3.0/5
Reviews
2
Users
159
Type
Extension
Updated
Jun 23, 2026
Category
Shopping
Price
Free
Featured
No
Visibility
Listed
Mature
No
By Google
No
Trusted
No
Download CRX
Chrome Web Store
Report Issue

Publisher Contextual Analysis

Trusted
Author
JimView Profile
Privacy
Privacy Policy
Country
United States
MX records exist
Yes
Domain exists
Yes
Is disposable
No
Is role-based
No
Mailbox exists
Yes
Address
1944 Peters Creek Rd NW Roanoke, VA 24017 United States
Total Extensions
16
Active
14
Obsolete
2
Listed
14
Unlisted
2
Total Users
2,358
Screenshot 2

阿里旺旺实时聊天翻译器,自动翻译1688/淘宝消息,支持手动切换,操作便捷。

AliWangWang Chat Translator - Your Best Cross-border Assistant Stop struggling with language barriers! This extension provides a seamless, real-time translation experience for AliWangWang (Taobao/1688 chat), helping buyers and sellers communicate effortlessly across the globe. 【Key Features】 Real-time Auto-Translation: Automatically detects and translates chat messages as they arrive. Manual Control Switch: A dedicated toggle button integrated into the chat interface (highlighted in red) allows you to turn translation on/off instantly. Bidirectional Support: Translate your messages to Chinese and their replies to your native language. Multi-Language Engine: Supports English, Japanese, Korean, Russian, and more. Privacy Focused: All translations are processed to facilitate your communication; no personal chat history is stored or shared. 【Why Choose Us?】 Specially optimized for 1688 and Taobao procurement. Whether you are negotiating prices, confirming specs, or handling after-sales, our translator ensures nothing gets lost in translation.

Item
Type
Severity
Description
declarativeNetRequest
Permission
Critical
This permission allows the extension to define rules to block, redirect, or modify network requests. Rated Critical because it can control all network traffic, potentially blocking security updates or redirecting to malicious sites.
scripting
Permission
Critical
This permission allows injection and execution of JavaScript on any webpage. Rated Critical because it can modify page content, steal sensitive data, and inject malicious code into any site the extension has access to.
<all_urls>
Host
Critical
Broad host access — the extension can read/modify content on every website.
http://*/*
Host
Critical
Broad host access — the extension can read/modify content on every website.
https://*/*
Host
Critical
Broad host access — the extension can read/modify content on every website.
cookies
Permission
High
This permission provides full access to read and modify browser cookies. Rated High because it can steal session tokens, modify authentication cookies, and compromise accounts across websites.
Contextual Risk Factors
Risk Factor
High
The following context increases the overall risk:• 10% increase: About:blank access enables potential sandbox escape vectors
Broad Host Permissions
Risk Factor
High
This extension has broad host permissions allowing it to access many or all websites.
Broad Content Script Access
Risk Factor
High
This extension can inject scripts into any website.
activeTab
Permission
Medium
This permission grants temporary access to the current tab. Rated Medium because it can access current page content when invoked, though limited to user-initiated actions.
declarativeNetRequestFeedback
Permission
Medium
This permission provides network request modification logs. Rated Medium because it can monitor network request changes and debug traffic modifications.
storage
Permission
Medium
This permission allows storing data locally in the browser. Rated Medium because it can persist sensitive user data, track user activities over time, and potentially store malicious payloads.
*://*.aliprice.com/*
Host
Medium
Host permission — access limited to this URL pattern.
About:blank Access
Risk Factor
Medium
This extension can run content scripts in about:blank pages.
alarms
Permission
Low
This permission schedules periodic tasks. Rated Low because it can only trigger events at specified times without access to sensitive data.
contextMenus
Permission
Low
This permission adds items to browser context menus. Rated Medium because it only modifies right-click menus without access to page content.
notifications
Permission
Low
This permission displays system notifications. Rated Low because it can only show user-visible notifications without accessing system data.

The bundled manifest declares host_permissions `*://*.aliprice.com/*` and `<all_urls>` that do not appear in the published CWS manifest summary, which instead lists `*://ssl.google-analytics.com/*`. `<all_urls>` additionally covers file://, ws://, and wss:// protocols beyond what the `http://*/*` + `https://*/*` wildcards cover. A divergence between the installed package and the CWS-registered version is a meaningful signal that the extension may have been silently updated beyond what was reviewed by Google.

manifest.json (Line 83)
{  "host_permissions": [    "*://*.aliprice.com/*",    "<all_urls>",    "http://*/*",    "https://*/*"  ]}

By severity

Critical0
High1
Medium0
Low0

Versions scanned

None of the 2 scanned versions have more than one unique code-review finding. Counts are unique findings that include each version.

Extension VersionCode Review Findings
No versions with multiple unique findings.

Files with findings

1 distinct path — top paths by unique finding count:

  • manifest.json1
S.No.
Category
Severity
File
Summary
Found in Version
1Other
high
manifest.json (line 83)The bundled manifest declares host_permissions `*://*.aliprice.com/*` and `<all_urls>` that do not appear in the published CWS manifest summary, which instead lists `*://ssl.google-analytics.com/*`. `<all_urls>` addit…
5.0.3
URLs
258
IPv4
4
IPv6
0

URLs

View the external URLs this extension communicates with to understand its network activity and data interactions.

Gain full insight into all external connections.

Upgrade for full visibility.

Sign In
www.aiprice.com/static/img/banner-copy-all/banner-copy-all-1920x100-korean.jpghttps://www.aiprice.com/static/img/banner-copy-all/banner-copy-all-1920x100-korean.jpg
${i}`},m=e=-https://${i}`},M=e=
www.w3.org/1999/xlinkhttp://www.w3.org/1999/xlink
www.w3.org/2000/svghttp://www.w3.org/2000/svg
www.w3.org/1998/Math/MathMLhttp://www.w3.org/1998/Math/MathML
www.google-analytics.com-https://www.google-analytics.com
s.1688.com-https://s.1688.com/
s.1688.com-https://s.1688.com
detail.1688.com-https://detail.1688.com/
detail.1688.com-https://detail.1688.com
Showing 1 to 10 of 260 rows
Rows per page:

Gain full insight into all external connections.

Upgrade for full visibility.

Sign In
24.0.0.0
IPv4
-
1.3.132.0
IPv4
-
1.101.3.4
IPv4
-
103.0.0.0
IPv4
-
Version
Size
Is Malicious
Findings
Permhash
5.0.3
Latest
7.60 MB
Malicious
1
e893fd9dd9a1053b799433e5bbc4e5b2f6db24b608cfd1d36fefbc6a433e330e
3.7.0
14.76 MB
Benign
e893fd9dd9a1053b799433e5bbc4e5b2f6db24b608cfd1d36fefbc6a433e330e
Showing 1 to 2 of 10 rows
Rows per page:

Code Diff

Compare extension code between any two versions.

0 changed files (scanned top 25 shared text files)

No comparable text files found between these versions.

Browse and explore files within this extension package

Gain full insight into all external connections.

Upgrade for full visibility.

Sign In