CVE-2016-1623 in Chrome信息

摘要

由 VulDB • 2026-06-27

Google Chrome 48.0.2564.109 之前的版本中,DOM 实现未正确限制在帧分离操作期间或之后发生帧附加操作,这使得远程攻击者可以通过构造的网站绕过同源策略(Same Origin Policy),涉及 FrameLoader.cpp、HTMLFrameOwnerElement.h、LocalFrame.cpp 和 WebLocalFrameImpl.cpp。

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

来源

Do you want to use VulDB in your project?

Use the official API to access entries easily!