html/parser/XSSAuditor.cpp in WebCore in WebKit, as used in Google Chrome through 22 and Safari 5.1.7, does not consider all possible output contexts of reflected data, which makes it easier for remote attackers to bypass a cross-site scripting (XSS) protection mechanism via a crafted string, aka rdar problem 12019108.
2012-11-15T11:58:40.447
2025-04-11T00:51:21.963
Deferred
CVSSv2: 4.3 (MEDIUM)
AV:N/AC:M/Au:N/C:N/I:P/A:N
8.6
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | apple | webkit | * | Yes |
| Application | chrome | ≤ 22.0.1229.96 | Yes | |
| Application | chrome | 22.0.1229.0 | Yes | |
| Application | chrome | 22.0.1229.1 | Yes | |
| Application | chrome | 22.0.1229.2 | Yes | |
| Application | chrome | 22.0.1229.3 | Yes | |
| Application | chrome | 22.0.1229.4 | Yes | |
| Application | chrome | 22.0.1229.6 | Yes | |
| Application | chrome | 22.0.1229.7 | Yes | |
| Application | chrome | 22.0.1229.8 | Yes | |
| Application | chrome | 22.0.1229.9 | Yes | |
| Application | chrome | 22.0.1229.10 | Yes | |
| Application | chrome | 22.0.1229.11 | Yes | |
| Application | chrome | 22.0.1229.12 | Yes | |
| Application | chrome | 22.0.1229.14 | Yes | |
| Application | chrome | 22.0.1229.16 | Yes | |
| Application | chrome | 22.0.1229.17 | Yes | |
| Application | chrome | 22.0.1229.18 | Yes | |
| Application | chrome | 22.0.1229.20 | Yes | |
| Application | chrome | 22.0.1229.21 | Yes | |
| Application | chrome | 22.0.1229.22 | Yes | |
| Application | chrome | 22.0.1229.23 | Yes | |
| Application | chrome | 22.0.1229.24 | Yes | |
| Application | chrome | 22.0.1229.25 | Yes | |
| Application | chrome | 22.0.1229.26 | Yes | |
| Application | chrome | 22.0.1229.27 | Yes | |
| Application | chrome | 22.0.1229.28 | Yes | |
| Application | chrome | 22.0.1229.29 | Yes | |
| Application | chrome | 22.0.1229.31 | Yes | |
| Application | chrome | 22.0.1229.32 | Yes | |
| Application | chrome | 22.0.1229.33 | Yes | |
| Application | chrome | 22.0.1229.35 | Yes | |
| Application | chrome | 22.0.1229.36 | Yes | |
| Application | chrome | 22.0.1229.37 | Yes | |
| Application | chrome | 22.0.1229.39 | Yes | |
| Application | chrome | 22.0.1229.48 | Yes | |
| Application | chrome | 22.0.1229.49 | Yes | |
| Application | chrome | 22.0.1229.50 | Yes | |
| Application | chrome | 22.0.1229.51 | Yes | |
| Application | chrome | 22.0.1229.52 | Yes | |
| Application | chrome | 22.0.1229.53 | Yes | |
| Application | chrome | 22.0.1229.54 | Yes | |
| Application | chrome | 22.0.1229.55 | Yes | |
| Application | chrome | 22.0.1229.56 | Yes | |
| Application | chrome | 22.0.1229.57 | Yes | |
| Application | chrome | 22.0.1229.58 | Yes | |
| Application | chrome | 22.0.1229.59 | Yes | |
| Application | chrome | 22.0.1229.60 | Yes | |
| Application | chrome | 22.0.1229.62 | Yes | |
| Application | chrome | 22.0.1229.63 | Yes | |
| Application | chrome | 22.0.1229.64 | Yes | |
| Application | chrome | 22.0.1229.65 | Yes | |
| Application | chrome | 22.0.1229.67 | Yes | |
| Application | chrome | 22.0.1229.76 | Yes | |
| Application | chrome | 22.0.1229.78 | Yes | |
| Application | chrome | 22.0.1229.79 | Yes | |
| Application | chrome | 22.0.1229.89 | Yes | |
| Application | chrome | 22.0.1229.91 | Yes | |
| Application | chrome | 22.0.1229.92 | Yes | |
| Application | chrome | 22.0.1229.94 | Yes | |
| Application | chrome | 22.0.1229.95 | Yes | |
| Application | apple | safari | 5.1.7 | Yes |
| Application | apple | webkit | * | Yes |