CVE-2026-40451 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

DeepL Chrome browser extension versions from v1.22.0 to v.1.23.0 contain a cross-site scripting vulnerability, which allows an attacker to execute arbitrary scr…
Medium CVSS: 5.1

CVE-2026-40451

DeepL Chrome browser extension versions from v1.22.0 to v.1.23.0 contain a cross-site scripting vulnerability, which allows an attacker to execute arbitrary script in a user's browser, and inject malicious HTML into web pages viewed by the user.
Vendor
-
Product
-
CWE
CWE-79
Yayın Tarihi
2026-04-22 05:16:23
Güncelleme
2026-04-22 05:16:23
Source Identifier
vultures@jpcert.or.jp
KEV Date Added
-

Kategoriler

CWE-79 MEDIUM 2026

Referanslar

https://github.com/DeepLcom/deepl-chrome-extension/security/advisories/GHSA-4x2r-q3p9-xhx4 https://jvn.jp/en/jp/JVN37524771/