CVE-2011-1815 β€” Cross-site Scripting in Google Chrome

CWE-79 β€” Cross-site Scripting3 documents3 sources
Severity
4.3MEDIUMNVD
EPSS
0.4%
top 39.90%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Google Chrome
Timeline
PublishedJun 9
Latest updateMay 13

Description

Google Chrome before 12.0.742.91 allows remote attackers to inject script into a tab page via vectors related to extensions.

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

β–ΆNVDgoogle/chrome< 12.0.742.91

πŸ”΄Vulnerability Details

1
GHSA
GHSA-5mvc-2m9c-f5gm: Google Chrome before 12β†—2022-05-13
β–Ά

πŸ’¬Community

1
Bugzilla
CVE-2010-1815 webkit: use-after-free flaw when handling scrollbars↗2010-09-08
β–Ά
CVE-2011-1815 β€” Cross-site Scripting in Google Chrome | cvebase