Total vulnerabilities in the database
WebKit before r52784, as used in Google Chrome before 4.0.249.78 and Apple Safari before 4.0.5, permits cross-origin loading of CSS stylesheets even when the stylesheet download has an incorrect MIME type and the stylesheet document is malformed, which allows remote attackers to obtain sensitive information via a crafted document.
| Software | From | Fixed in |
|---|---|---|
| apple / webkit | - | r53524.x |
| google / chrome | - | 4.0.249.78.x |
| apple / safari | - | 4.0.4.x |