Количество 3
Количество 3
CVE-2009-3264
The getSVGDocument method in Google Chrome before 3.0.195.21 omits an unspecified "access check," which allows remote web servers to bypass the Same Origin Policy and conduct cross-site scripting attacks via unknown vectors, related to a user's visit to a different web server that hosts an SVG document.
CVE-2009-3264
The getSVGDocument method in Google Chrome before 3.0.195.21 omits an ...
GHSA-w23m-j49r-4582
The getSVGDocument method in Google Chrome before 3.0.195.21 omits an unspecified "access check," which allows remote web servers to bypass the Same Origin Policy and conduct cross-site scripting attacks via unknown vectors, related to a user's visit to a different web server that hosts an SVG document.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2009-3264 The getSVGDocument method in Google Chrome before 3.0.195.21 omits an unspecified "access check," which allows remote web servers to bypass the Same Origin Policy and conduct cross-site scripting attacks via unknown vectors, related to a user's visit to a different web server that hosts an SVG document. | CVSS2: 4.3 | 0% Низкий | больше 16 лет назад |
| CVE-2009-3264 The getSVGDocument method in Google Chrome before 3.0.195.21 omits an ... | CVSS2: 4.3 | 0% Низкий | больше 16 лет назад |
| GHSA-w23m-j49r-4582 The getSVGDocument method in Google Chrome before 3.0.195.21 omits an unspecified "access check," which allows remote web servers to bypass the Same Origin Policy and conduct cross-site scripting attacks via unknown vectors, related to a user's visit to a different web server that hosts an SVG document. | 0% Низкий | почти 4 года назад |
Уязвимостей на страницу