A universal Cross-site scripting (UXSS) vulnerability in the Evernote Web Clipper extension prior to 7.11.1 for Chrome allows remote malicious users to run arbitrary web script or HTML in the context of any loaded 3rd-party IFrame.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
evernote web clipper |