CVE-2010-1760
CVE-2010-1760 · HIGH Severity
AV:N/AC:L/AU:N/C:C/I:C/A:C
loader/DocumentThreadableLoader.cpp in the XMLHttpRequest implementation in WebCore in WebKit before r58409 does not properly handle credentials during a cross-origin synchronous request, which has unspecified impact and remote attack vectors, aka rdar problem 7905150.
Learn more about our Web App Pen Testing.