Google Chrome is vulnerable to cross-site scripting. An attacker is able to inject a WPAD file on the local network segment to proxy resources on localhost.
CPE | Name | Operator | Version |
---|---|---|---|
chromium:stretch | eq | 70.0.3538.110-1~deb9u1 | |
chromium:stretch | eq | 70.0.3538.110-1~deb9u1 |