2 matches found
Google Chrome 'javascript: URI' XSS Vulnerability - Sep09
This host is installed with Google Chrome Web Browser and is prone to Cross-Site Scripting vulnerability. OpenVAS Vulnerability Test $Id: gbgooglechromejsurixssvulnsep09.nasl 4869 2016-12-29 11:01:45Z teissa $ Google Chrome 'javascript: URI' XSS Vulnerability - Sep09 Authors: Sharath S Copyright:...
CVE-2009-3011
Google Chrome vulnerability CVE-2009-3011 affects Chrome 1.0.154.48 and earlier, 2.0.172.28, 2.0.172.37, and 3.0.193.2 Beta. Root cause: the browser does not properly block data: URIs in Refresh headers within HTTP responses, allowing remote XSS via (1) injecting a Refresh header containing JavaS...