CVE-2010-1760

CVE-2010-1760 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

loader/DocumentThreadableLoader.cpp in the XMLHttpRequest implementation in WebCore in WebKit before r58409 does not properly handle credentials during a cross-origin synchronous request, which has unspecified impact and remote attack vectors, aka rdar problem 7905150.

Learn more about our Web App Pen Testing.