2 matches found
CVE-2016-8504
CSRF of synchronization form in Yandex Browser for desktop before version 16.6 could be used by remote attacker to steal saved data in browser profile...
CVE-2016-8504
CVE-2016-8504 describes a Cross-Site Request Forgery in the Yandex Browser desktop synchronization form prior to version 16.6, which could allow a remote attacker to steal data saved in the browser profile. Root cause: CSRF on the synchronization form. Affected product: Yandex Browser for desktop...