6.5 Medium
AI Score
Confidence
Low
0.006 Low
EPSS
Percentile
79.1%
Apple Safari before 6.1.1 and 7.x before 7.0.1 allows remote attackers to bypass the Same Origin Policy and discover credentials by triggering autofill of subframe form fields.