| Max CVSS | 10.0 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2010-1767 | 6.8 |
Cross-site request forgery (CSRF) vulnerability in loader/DocumentThreadableLoader.cpp in WebCore in WebKit before r57041, as used in Google Chrome before 4.1.249.1059, allows remote attackers to hijack the authentication of unspecified victims via a
|
19-09-2017 - 01:30 | 24-09-2010 - 19:00 | |
| CVE-2010-1506 | 7.8 |
The Google V8 bindings in Google Chrome before 4.1.249.1059 allow attackers to cause a denial of service (memory corruption) via unknown vectors.
|
19-09-2017 - 01:30 | 23-04-2010 - 14:30 | |
| CVE-2010-1500 | 7.5 |
Google Chrome before 4.1.249.1059 does not properly support forms, which has unknown impact and attack vectors, related to a "type confusion error."
|
19-09-2017 - 01:30 | 23-04-2010 - 14:30 | |
| CVE-2010-1505 | 10.0 |
Google Chrome before 4.1.249.1059 does not prevent pages from loading with the New Tab page's privileges, which has unknown impact and attack vectors.
|
19-09-2017 - 01:30 | 23-04-2010 - 14:30 | |
| CVE-2010-1503 | 4.3 |
Cross-site scripting (XSS) vulnerability in Google Chrome before 4.1.249.1059 allows remote attackers to inject arbitrary web script or HTML via vectors related to a chrome://net-internals URI.
|
19-09-2017 - 01:30 | 23-04-2010 - 14:30 | |
| CVE-2010-1504 | 4.3 |
Cross-site scripting (XSS) vulnerability in Google Chrome before 4.1.249.1059 allows remote attackers to inject arbitrary web script or HTML via vectors related to a chrome://downloads URI.
|
19-09-2017 - 01:30 | 23-04-2010 - 14:30 | |
| CVE-2010-1502 | 9.3 |
Unspecified vulnerability in Google Chrome before 4.1.249.1059 allows remote attackers to access local files via vectors related to "developer tools."
|
19-09-2017 - 01:30 | 23-04-2010 - 14:30 |