CVE-2026-5899

CVE-2026-5899

Insufficient policy enforcement in History Navigation in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who convinced a user to engage in specific UI gestures to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page. (Chromium security severity: Low)

CVE-2026-5899

An incorrect security ui flaw was found in the History Navigation component of the Chromium browser. Upstream bug(s): https://code.google.com/p/chromium/issues/detail?id=474817168

CVE-2026-5899

Chromium: CVE-2026-5899 Incorrect security UI in History Navigation

CVE-2026-5899

Insufficient policy enforcement in History Navigation in Google Chrome ...

GHSA-7xx9-pp7c-pv8h

Insufficient policy enforcement in History Navigation in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who convinced a user to engage in specific UI gestures to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page. (Chromium security severity: Low)