Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2010-1760

loader/DocumentThreadableLoader.cpp in the XMLHttpRequest implementation in WebCore in WebKit before r58409 does not properly handle credentials during a cross-origin synchronous request, which has unspecified impact and remote attack vectors, aka rdar problem 7905150.

  • Published: Aug 20, 2010
  • Updated: Apr 13, 2023
  • CVE: CVE-2010-1760
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 10
  • AV:N/AC:L/Au:N/C:C/I:C/A:C

CWEs:

Software From Fixed in
apple / webkit r56188 r56188.x
apple / webkit - r58408.x
apple / webkit r50173 r50173.x
apple / webkit r56379 r56379.x
apple / webkit r56187 r56187.x