Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Google Chrome 1.0.x does not cancel timeouts upon a page transition, which makes it easier for attackers to conduct Universal XSS attacks by calling setTimeout to trigger future execution of JavaScript code, and then modifying document.location to arrange for JavaScript execution in the context of an arbitrary web site. NOTE: this can be leveraged for a remote attack by exploiting a chromehtml: argument-injection vulnerability.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Google Chrome 超时处理跨站脚本攻击漏洞
Vulnerability Description
Google Chrome是Google发布的开源WEB浏览器。 Google Chrome 在页面切换时没有删除超时设置,远程攻击者可用通过访问超时设置触发跨站脚本攻击,使系统在未来某个时间执行JavaScript脚本,和修改本地文档。
CVSS Information
N/A
Vulnerability Type
N/A