Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2015-1261

android/java/src/org/chromium/chrome/browser/WebsiteSettingsPopup.java in Google Chrome before 43.0.2357.65 on Android does not properly restrict use of a URL's fragment identifier during construction of a page-info popup, which allows remote attackers to spoof the URL bar or deliver misleading popup content via crafted text.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.011
EPSS Ranking 77.4%
CVSS Severity
CVSS v2 Score 5.0
References
Products affected by CVE-2015-1261
  • Google » Chrome » Version: 38.0.2125.101
    cpe:2.3:a:google:chrome:38.0.2125.101
  • Google » Chrome » Version: 40.0.2214.109
    cpe:2.3:a:google:chrome:40.0.2214.109
  • Google » Chrome » Version: 40.0.2214.89
    cpe:2.3:a:google:chrome:40.0.2214.89
  • Google » Chrome » Version: 42.0.2311.107
    cpe:2.3:a:google:chrome:42.0.2311.107
  • Debian » Debian Linux » Version: 8.0
    cpe:2.3:o:debian:debian_linux:8.0


Products
Pricing
Contact Us

Shodan ® - All rights reserved