cve/CVE-2024-0310.md at 4edef1e4c8c71572b001933b68c0e9d801ec9035

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-11-30 18:56:19 +00:00

marc 555e9c7de4 Update Sat May 25 21:48:12 CEST 2024

2024-05-25 21:48:12 +02:00

Description

A content-security-policy vulnerability in ENS Control browser extension prior to 10.7.0 Update 15 allows a remote attacker to alter the response header parameter setting to switch the content security policy into report-only mode, allowing an attacker to bypass the content-security-policy configuration.

POC

Reference

https://kcm.trellix.com/corporate/index?page=content&id=SB10417

Github

No PoCs found on GitHub currently.

987 B Raw Blame History

CVE-2024-0310

Description

POC

Reference

Github

987 B

Raw Blame History