[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248392

 
 

909

 
 

195452

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
OVAL

Cross-site request forgery in Google Chrome version before 4.1.249.1059.

ID: oval:org.mitre.oval:def:11140Date: (C)2010-09-06   (M)2022-10-10
Class: VULNERABILITYFamily: windows




Cross-site request forgery (CSRF) vulnerability in loader/DocumentThreadableLoader.cpp in WebCore in WebKit before r57041, as used in Google Chrome before 4.1.249.1059, allows remote attackers to hijack the authentication of unspecified victims via a crafted synchronous preflight XMLHttpRequest operation.

Platform:
Microsoft Windows Server 2022
Microsoft Windows 11
Microsoft Windows Server 2019
Microsoft Windows Server 2016
Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows Vista
Microsoft Windows 10
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows 8.1
Microsoft Windows Server 2012 R2
Product:
Google Chrome
Reference:
CVE-2010-1767
CVE    1
CVE-2010-1767
CPE    236
cpe:/a:google:chrome:2.0.169.0
cpe:/a:google:chrome:2.0.169.1
cpe:/a:google:chrome:4.0.276.0
cpe:/a:google:chrome:4.0.299.0
...

© SecPod Technologies