CVE-2015-9288
The Unity Web Player plugin before 4.6.6f2 and 5.x before 5.0.3f2 allows attackers to read messages or access online services via a victim’s credentials
Date published : 2019-07-29
https://blogs.unity3d.com/2015/06/06/security-update-coming-for-web-player/