The vulnerability of Google Chrome allows a hacker to inject any Web or HTML code they desire.

🗓️ 05 May 2016 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru

Chrome flaw enables arbitrary web or HTML code injection via crafted site exploiting ModuleSystem::RequireForJsInner.

Reporter	Title	Published	Views	Family All 49
FreeBSD	chromium -- multiple vulnerabilities	13 Apr 201600:00	–	freebsd
ArchLinux	chromium: multiple issues	17 Apr 201600:00	–	archlinux
CNVD	Google Chrome Cross-Site Scripting Vulnerability (CNVD-2016-02450)	18 Apr 201600:00	–	cnvd
CVE	CVE-2016-1652	18 Apr 201610:00	–	cve
Cvelist	CVE-2016-1652	18 Apr 201610:00	–	cvelist
Debian	[SECURITY] [DSA 3549-1] chromium-browser security update	15 Apr 201611:59	–	debian
Debian	[SECURITY] [DSA 3549-1] chromium-browser security update	15 Apr 201611:59	–	debian
Debian CVE	CVE-2016-1652	18 Apr 201610:00	–	debiancve
Tenable Nessus	Debian DSA-3549-1 : chromium-browser - security update	18 Apr 201600:00	–	nessus
Tenable Nessus	FreeBSD : chromium -- multiple vulnerabilities (6d8505f0-0614-11e6-b39c-00262d5ed8ee)	20 Apr 201600:00	–	nessus

Vulners

Node

google google_chromeRange<50.0.2661.75

Source	Link
crbug	www.crbug.com/590275
codereview	www.codereview.chromium.org/1748943002/
googlechromereleases	www.googlechromereleases.blogspot.com/2016/04/stable-channel-update_13.html
web	www.web.nvd.nist.gov/view/vuln/detail

23 Mar 2021 00:00Current

CVSS 24.3

EPSS0.00623

Google Chrome vulnerability module system require for js crafted website extension subsystem