CVE-2025-53599 | NAVER Whale browser 1.10.6.2/3.0.1.2/3.1.0.0 on iOS Javascript Scheme cross site scripting

Inserito da Angelo Barbosa | Lug 4, 2025 | CVE

A vulnerability classified as critical was found in NAVER Whale browser 1.10.6.2/3.0.1.2/3.1.0.0 on iOS. Affected by this vulnerability is an unknown functionality of the component Javascript Scheme Handler. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2025-53599. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-53599 | NAVER Whale browser 1.10.6.2/3.0.1.2/3.1.0.0 on iOS Javascript Scheme cross site scripting

Post correlati

CVE-2024-2661 | Barcode Scanner with Inventory & Order Manager Plugin sql injection

CVE-2023-7045 | GitLab Community Edition/Enterprise Edition up to 16.10.5/16.11.2/17.0.0 Kubernetes Agent Server cross-site request forgery (Issue 436358)

CVE-2023-46219 | cURL up to 8.4.0 HSTS File Name lib/fopen.c missing encryption

CVE-2024-0379 | Custom Twitter Feeds Plugin up to 2.2.1 on WordPress Options Update cross-site request forgery