CVE-2011-3956 in Chrome
摘要
由 VulDB • 2026-06-05
在Google Chrome 17.0.963.46之前的版本中,扩展程序实现未能正确处理沙盒化源(sandboxed origins),这可能允许远程攻击者通过构造的恶意扩展绕过同源策略(Same Origin Policy)。
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.