EIP-2026-119325
PRE-CVEYahoo! Messenger 7.0/7.5 - Remote Search String Arbitrary Browser Navigation
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-119325. PoCs published by Ivan Ivan.
AI-analyzed exploit summary The exploit demonstrates a browser-navigation vulnerability in Yahoo! Messenger by crafting malicious messages that trigger an arbitrary webpage to open via an embedded HTML tag. The issue arises due to insufficient input sanitization, allowing arbitrary URL execution.
Description
Yahoo! Messenger 7.0/7.5 - Remote Search String Arbitrary Browser Navigation
Exploits (1)
The exploit demonstrates a browser-navigation vulnerability in Yahoo! Messenger by crafting malicious messages that trigger an arbitrary webpage to open via an embedded HTML tag. The issue arises due to insufficient input sanitization, allowing arbitrary URL execution.