Cross-site scripting (XSS) vulnerability in the ModuleSystem::RequireForJsInner function in extensions/renderer/module_system.cc in the Extensions subsystem in Google Chrome prior to 50.0.2661.75 allows remote malicious users to inject arbitrary web script or HTML via a crafted web site, aka "Universal XSS (UXSS)."
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
debian debian linux 8.0 |
||
suse linux enterprise 12.0 |
||
opensuse leap 42.1 |
||
google chrome |