NA
CVSSv3

CVE-2010-0661

CVSSv4: NA | CVSSv3: NA | CVSSv2: 6.8 | VMScore: 780 | EPSS: 0.00997 | KEV: Not Included
Published: 18/02/2010 Updated: 21/11/2024

Vulnerability Summary

WebCore/bindings/v8/custom/V8DOMWindowCustom.cpp in WebKit before r52401, as used in Google Chrome prior to 4.0.249.78, allows remote malicious users to bypass the Same Origin Policy via vectors involving the window.open method.

Vulnerable Product Search on Vulmon Subscribe to Product

apple webkit 52400

google chrome

google chrome 0.2.149.27

google chrome 0.2.149.29

google chrome 0.2.149.30

google chrome 0.2.152.1

google chrome 0.2.153.1

google chrome 0.3.154.0

google chrome 0.3.154.3

google chrome 0.4.154.18

google chrome 0.4.154.22

google chrome 0.4.154.31

google chrome 0.4.154.33

google chrome 1.0.154.36

google chrome 1.0.154.39

google chrome 1.0.154.42

google chrome 1.0.154.43

google chrome 1.0.154.46

google chrome 1.0.154.48

google chrome 1.0.154.52

google chrome 1.0.154.53

google chrome 1.0.154.59

google chrome 1.0.154.65

google chrome 2.0.156.1

google chrome 2.0.157.0

google chrome 2.0.157.2

google chrome 2.0.158.0

google chrome 2.0.159.0

google chrome 2.0.169.0

google chrome 2.0.169.1

google chrome 2.0.170.0

google chrome 2.0.172

google chrome 2.0.172.2

google chrome 2.0.172.8

google chrome 2.0.172.27

google chrome 2.0.172.28

google chrome 2.0.172.30

google chrome 2.0.172.31

google chrome 2.0.172.33

google chrome 2.0.172.37

google chrome 2.0.172.38

google chrome 3.0.182.2

google chrome 3.0.190.2

google chrome 3.0.193.2

google chrome 3.0.195.21

google chrome 3.0.195.24

google chrome 3.0.195.32

google chrome 3.0.195.33

google chrome 4.0.244.0