Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
WebCore/bindings/v8/custom/V8DOMWindowCustom.cpp in WebKit before r52401, as used in Google Chrome before 4.0.249.78, allows remote attackers to bypass the Same Origin Policy via vectors involving the window.open method.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Apple WebKit 'WebCore/bindings/v8/custom/V8DOMWindowCustom.cpp'安全绕过漏洞
Vulnerability Description
WebKit 是一个开源浏览器网页排版引擎,与之相应的引擎有Gecko(Mozilla,Firefox 等使用的排版引擎)和Trident(也称为MSHTML,IE 使用的排版引擎)。 WebKit在Google Chrome中使用时,程序WebCore/bindings/v8/custom/V8DOMWindowCustom.cpp存在安全绕过漏洞。远程攻击者可以通过包含在window.open方法中的向量,绕过同源策略限制。
CVSS Information
N/A
Vulnerability Type
N/A