CVE-2010-1504

Google Chrome <4.1.249.1059 - XSS

Title source: llm

Description

Cross-site scripting (XSS) vulnerability in Google Chrome before 4.1.249.1059 allows remote attackers to inject arbitrary web script or HTML via vectors related to a chrome://downloads URI.

References (7)

Scores

EPSS 0.0036
EPSS Percentile 57.8%

Classification

CWE
CWE-79
Status published

Affected Products (50)

google/chrome
google/chrome < 4.1.249.1058
google/chrome
google/chrome
google/chrome
google/chrome
google/chrome
google/chrome
google/chrome
google/chrome
google/chrome
google/chrome
google/chrome
google/chrome
google/chrome
... and 35 more

Timeline

Published Apr 23, 2010
Tracked Since Feb 18, 2026