Chromium Security Bugs

Security: Capture Autofill Data using showPicker Spoofing

#41493771Reporter: fa...@gmail.com
$1,000
7/11/2025

Drag and Drop Can Navigate to File and Chrome URIs Without Restriction

#342579972Reporter: fa...@gmail.com
$500
7/11/2025

Improper Error Handling in LateLoadElimination for String Map in Turboshaft Leads to RCE

#403211343Reporter: hu...@gmail.com
$50,000
7/11/2025

V8 Sandbox Bypass: SP/PC control via Wasm JSPI central stack top confusion

#404285918Reporter: se...@gmail.com
$20,000
7/11/2025

Vulnerability: Upgrade thenify to 3.3.1 in GoB repo chromium/catapult

#404070296Reporter: au...@google.com
$0
7/10/2025

DCHECK failure in new_space->TotalCapacity() <= new_space->MaximumCapacity() in heap.cc

#407817244Reporter: 24...@project.gserviceaccount.com
$0
7/10/2025

DevTools frontend leaks breakpoint history to any remote WebSocket server it connects to

#404000989Reporter: da...@gmail.com
$2,000
7/9/2025

V8 correctness failure in sources: d7

#401073454Reporter: 24...@project.gserviceaccount.com
$0
7/9/2025

CSP media-src bypass with HLS

#40092286Reporter: s....@gmail.com
$1,000
7/9/2025

The extension popup can appear over the PWA install prompt

#384068255Reporter: ch...@gmail.com
$500
7/9/2025
Showing 41-50 of 8145 bugs
1...456...815