Vulnerabilities

CVE-2014-1747

by Fred · 21/05/2014

Cross-site scripting (XSS) vulnerability in the DocumentLoader::maybeCreateArchive function in core/loader/DocumentLoader.cpp in Blink, as used in Google Chrome before 35.0.1916.114, allows remote attackers to inject arbitrary web script or HTML via crafted MHTML content, aka "Universal XSS (UXSS)."

Date published : 2014-05-21

http://googlechromereleases.blogspot.com/2014/05/stable-channel-update_20.html

https://code.google.com/p/chromium/issues/detail?id=330663

Similar

Tags: Cybersecurity Alert