Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
CSP bypass: How one Chrome XSS bug took 2.5 years and an HTML spec change to fix
Malware and Vulnerabilities
June 22, 2021
The Daily Swig
Discovered by Jun Kokatsu, the bug allowed crafty attackers to bypass Content Security Policy (CSP), an HTTP header that restricts external resources loaded and run on the web page.
Read More
CSP bypass
XSS Vulnerability
Chromium Browser
Content Security Policy
HTTP Header
Publisher
Previous
SentinelOne announces IPO
Companies to Watch
Next
US Lawmakers Unveil Cybersecurity Legislation
Laws, Policy, Regulations
/https://cyware-ent.s3.amazonaws.com/image_bank/shutterstock_330270065.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/shutterstock_179079596.jpg)
