VDB

ANCHORE-2013-6660

ANCHORE-2013-6660 PUBLISHED

The drag-and-drop implementation in Google Chrome before 33.0.1750.117 does not properly restrict the information in WebDropData data structures, which allows remote attackers to discover full pathnames via a crafted web site.

Affected Products

VendorProductVersions
googlechrome0, 0, 0

Timeline

  • Feb 24, 2014 CVE Published
  • Aug 6, 2024 CVE Updated
  • Mar 13, 2026 Distribution Patch
Open in Interactive Console →
$ Console Community · 100/wk Open console ›