Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-domain vulnerability in the V8 JavaScript engine in Google Chrome before 1.0.154.46 allows remote attackers to bypass the Same Origin Policy via a crafted script that accesses another frame and reads its full URL and possibly other sensitive information, or modifies the URL of this frame.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Google Chrome 跨站脚本漏洞
Vulnerability Description
Google Chrome是Google发布的一款浏览器。 Google Chrome 1.0.154.46之前的版本中的V8 JavaScript引擎存在跨域漏洞。远程攻击者可以借助一个特制的脚本,绕过同一个原始政策。该特制脚本会访问另一个帧和读取它的全URL以及其他敏感信息,或者修改该帧的url。
CVSS Information
N/A
Vulnerability Type
N/A