CVE-2009-1413
CVE-2009-1413 concerns Google Chrome 1.x, where timeouts are not canceled during a page transition, enabling Universal XSS by scheduling code with setTimeout and then redirecting with document.location. The issue can be leveraged through a chromehtml: argument-injection path for remote execution ...