High severity8.2NVD Advisory· Published Sep 16, 2019· Updated Jun 17, 2026
CVE-2019-16371
CVE-2019-16371
Description
LogMeIn LastPass before 4.33.0 allows attackers to construct a crafted web site that captures the credentials for a victim's account on a previously visited web site, because do_popupregister can be bypassed via clickjacking.
Affected products
3- LogMeIn/LastPassdescription
Patches
Vulnerability mechanics
References
1- bugs.chromium.org/p/project-zero/issues/detailnvdExploitIssue TrackingThird Party Advisory
News mentions
0No linked articles in our index yet.