Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Google Chrome before 29 sends HTTP Cookie headers without first validating that they have the required character-set restrictions, which allows remote attackers to conduct the equivalent of a persistent Logout CSRF attack via a crafted parameter that forces a web application to set a malformed cookie within an HTTP response.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Google Chrome 跨站请求伪造漏洞
Vulnerability Description
Google Chrome是美国谷歌(Google)公司开发的一款Web浏览器。 Google Chrome 28.0.1500.95及之前的版本中存在安全漏洞。当浏览器发送畸形的Cookie头时,远程攻击者可借助特制的参数利用该漏洞实施Logout CSRF攻击。
CVSS Information
N/A
Vulnerability Type
N/A