17 matches found
EUVD-2012-2852
Malware in sbrugna...
EUVD-2015-1419
Malware in sbrugna...
SUSE CVE-2011-3925
Use-after-free vulnerability in the Safe Browsing feature in Google Chrome before 16.0.912.75 allows remote attackers to cause a denial of service heap memory corruption or possibly have unspecified other impact via vectors related to a navigation entry and an interstitial page...
HackerOne: Indexing of urls on the "External link warning" pages discloses many vulnerable endpoints from the past and unlisted videos/photos
@nagli found a misconfiguration in an interstitial page that could lead to a link to be indexed by a 3rd party. This could have exposed links to proof of concepts that HackerOne users had posted on hackerone.com. This affected a specific set of customers, which HackerOne worked together with to...
chromium-browser: URL spoofing using pdf files in unspecified
content/browser/webcontents/webcontentsimpl.cc in Google Chrome before 44.0.2403.89 does not ensure that a PDF document's modal dialog is closed upon navigation to an interstitial page, which allows remote attackers to spoof URLs via a crafted document, as demonstrated by the alertdialog.pdf...
CVE-2015-1278
Removed by vendor...
CVE-2013-2876
browser/extensions/api/tabs/tabsapi.cc in Google Chrome before 28.0.1500.71 does not properly enforce restrictions on the capture of screenshots by extensions, which allows remote attackers to obtain sensitive information about the content of a previous page via vectors involving an interstitial...
Design/Logic Flaw
browser/extensions/api/tabs/tabsapi.cc in Google Chrome before 28.0.1500.71 does not properly enforce restrictions on the capture of screenshots by extensions, which allows remote attackers to obtain sensitive information about the content of a previous page via vectors involving an interstitial...
CVE-2013-2876
browser/extensions/api/tabs/tabsapi.cc in Google Chrome before 28.0.1500.71 does not properly enforce restrictions on the capture of screenshots by extensions, which allows remote attackers to obtain sensitive information about the content of a previous page via vectors involving an interstitial...
CVE-2013-2876
Removed by vendor...
Cross site scripting
Cross-site scripting XSS vulnerability in an SSL interstitial page in Google Chrome before 21.0.1180.89 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2012-2872
Cross-site scripting XSS vulnerability in an SSL interstitial page in Google Chrome before 21.0.1180.89 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2012-2872
Removed by vendor...
CVE-2011-3925
Use-after-free vulnerability in the Safe Browsing feature in Google Chrome before 16.0.912.75 allows remote attackers to cause a denial of service heap memory corruption or possibly have unspecified other impact via vectors related to a navigation entry and an interstitial page...
CVE-2011-3925
Use-after-free vulnerability in the Safe Browsing feature in Google Chrome before 16.0.912.75 allows remote attackers to cause a denial of service heap memory corruption or possibly have unspecified other impact via vectors related to a navigation entry and an interstitial page...
Design/Logic Flaw
Use-after-free vulnerability in the Safe Browsing feature in Google Chrome before 16.0.912.75 allows remote attackers to cause a denial of service heap memory corruption or possibly have unspecified other impact via vectors related to a navigation entry and an interstitial page...
CVE-2011-3925
Removed by vendor...