"Description: The Google chrome browser is vulnerable to clickjacking flaw. A clickjacked page tricks a user into performing undesired actions by clicking on a concealed link."
Link to the mailing list entry: http://www.securityfocus.com/archive/1/500499/30/0/threaded |
And the tested version is reportedly Chrome 1.0.154.43 on WinXP.
The duplicate finder of the forum found the word 'vulnerability' and says this is old, one month old but it's not :) |
There is a Proof of Consept file published too, I'll check if this is the same vulnerablity being discussed: [www.milw0rm.com/exploits/7903]
(URL modified to prevent accidental clicking) |