2 matches found
CVE-2017-18016
Parity Browser 1.6.10 and earlier is vulnerable to a Same Origin Policy bypass via its web proxy engine, which reuses the current site’s token not bound to an origin. An attacker could remotely obtain sensitive information by requesting other sites through the proxy. Affected component: Parity Br...
Parity Browser 1.6.10 - Bypass Same Origin Policy
Parity Browser 1.6.10 - Bypass Same Origin Policy VuNote ====== Author: Ref: https://github.com/tintinweb/pub/tree/master/pocs/cve-2017-18016 Version: 0.3 Date: Jun 16th, 2017 Tag: parity same origin policy bypass webproxy token reuse Overview -------- Name: parity Vendor: paritytech References:...