VYPR
Medium severity6.1NVD Advisory· Published Aug 28, 2018· Updated Jun 17, 2026

CVE-2017-15427

CVE-2017-15427

Description

Insufficient policy enforcement in Omnibox in Google Chrome prior to 63.0.3239.84 allowed a socially engineered user to XSS themselves by dragging and dropping a javascript: URL into the URL bar.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.