CVE-2014-1449

Maxthon Cloud Browser < 4.1.5.2000 - Address Bar Spoofing via History API

Title source: llm
STIX 2.1

Description

The Maxthon Cloud Browser application before 4.1.6.2000 for Android allows remote attackers to spoof the address bar via crafted JavaScript code that uses the history API.

References (2)

Core 2

Scores

EPSS 0.0192
EPSS Percentile 77.4%

Details

CWE
CWE-284
Status published
Products (1)
maxthon/maxthon_cloud_browser < 4.1.5.2000
Published Dec 25, 2014
Tracked Since Feb 18, 2026