CVE-2009-3264
Google Chrome before 3.0.195.21 is affected by CVE-2009-3264: getSVGDocument omits an access check, allowing remote servers to bypass Same Origin Policy and trigger cross-site scripting via unspecified vectors related to visiting an SVG-hosting page. The vulnerability is documented in multiple fe...