6 matches found
Mozilla: Same-origin policy violation could have leaked cross-origin URLs
A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of a same-origin policy violation that could have allowed the theft of cross-origin URL entries, leaking the result of a redirect via performance.getEntries...
Mozilla: Same-origin policy violation could have leaked cross-origin URLs
A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of a same-origin policy violation that could have allowed the theft of cross-origin URL entries, leaking the result of a redirect via performance.getEntries...
Mozilla: Leaking cross-origin URLs through securitypolicyviolation event
A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as: Securitypolicyviolation events could have leaked cross-origin information for frame-ancestors violations...
The vulnerability of Blink’s web page display mechanism in Google Chrome browser allows attackers to obtain URLs of cross-origin origins.
The vulnerability of Blink’s web page rendering mechanism in Google Chrome browsers is related to the lack of protection for service data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to obtain cross-origin URLs through a specially created HTML page...
UBUNTU-CVE-2018-17468
Incorrect handling of timer information during navigation in Blink in Google Chrome prior to 70.0.3538.67 allowed a remote attacker to obtain cross origin URLs via a crafted HTML page...
Microsoft Edge Information Disclosure Vulnerability (CNVD-2017-12109)
Microsoft Edge is a web browser developed by Microsoft USA and is the default browser that comes with the Windows 10 operating system. An information disclosure vulnerability exists in Microsoft Edge. An attacker can exploit the vulnerability by tricking a user into viewing a specially crafted we...