CVE-2019-12592

Published: 2019-06-18T21:15Z

Last Modified: 2024-11-21T04:23Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

A universal Cross-site scripting (UXSS) vulnerability in the Evernote Web Clipper extension before 7.11.1 for Chrome allows remote attackers to run arbitrary web script or HTML in the context of any loaded 3rd-party IFrame. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt