exploitDog

GHSA-2574-fqfw-fxcc

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Cross-site scripting (XSS) vulnerability in the DocumentLoader::maybeCreateArchive function in core/loader/DocumentLoader.cpp in Blink, as used in Google Chrome before 35.0.1916.114, allows remote attackers to inject arbitrary web script or HTML via crafted MHTML content, aka "Universal XSS (UXSS)."

Cross-site scripting (XSS) vulnerability in the DocumentLoader::maybeCreateArchive function in core/loader/DocumentLoader.cpp in Blink, as used in Google Chrome before 35.0.1916.114, allows remote attackers to inject arbitrary web script or HTML via crafted MHTML content, aka "Universal XSS (UXSS)."

Ссылки

EPSS

Процентиль: 63%

0.0046

Низкий

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2014-1747

ubuntu

около 11 лет назад

Cross-site scripting (XSS) vulnerability in the DocumentLoader::maybeCreateArchive function in core/loader/DocumentLoader.cpp in Blink, as used in Google Chrome before 35.0.1916.114, allows remote attackers to inject arbitrary web script or HTML via crafted MHTML content, aka "Universal XSS (UXSS)."

CVE-2014-1747

nvd

около 11 лет назад

Cross-site scripting (XSS) vulnerability in the DocumentLoader::maybeCreateArchive function in core/loader/DocumentLoader.cpp in Blink, as used in Google Chrome before 35.0.1916.114, allows remote attackers to inject arbitrary web script or HTML via crafted MHTML content, aka "Universal XSS (UXSS)."

CVE-2014-1747

debian

около 11 лет назад

Cross-site scripting (XSS) vulnerability in the DocumentLoader::maybeC ...

BDU:2014-00155

fstec

около 11 лет назад

Уязвимость браузера Google Chrome, позволяющая злоумышленнику внедрить произвольный веб-сценарий или HTML-код

EPSS

Процентиль: 63%

0.0046

Низкий

CVE ID

Дефекты

CWE-79