Disclosed Chromium Security Bugs
←Back to DashboardCHECK failure: Node::New() Error: #287:Float32LessThanOrEqual[1] is nullptr in node.cc
$0
6/15/2021
Security: ImageFetchTabHelper::GetImageDataByJs allows child frames to inject scripts into parent (UXSS)
$10,000
6/12/2021
Security: CSP restrictions aren't applied when navigating a frame to about:blank
$7,500
6/11/2021
Chrome Content security Policy bypass
$1,000
6/11/2021
Security: Side-channel attack against Autofill Preview that can steal user's data (e.g., credit card number).
$500
6/11/2021
Full CSP bypass by opening a blob URL in a new tab and reloading it with history.back
$3,000
6/11/2021
Security: Full CSP bypass through blob: URIs
$5,000
6/11/2021
Security: Full CSP bypass through filesystem URIs
$5,000
6/11/2021
Security: determining size of CORB/CORP'd cross-origin responses
$500
6/11/2021
Security: UaF in V4L2VideoEncodeAccelerator
$0
6/11/2021