top | item 47130440

(no title)

dtf | 6 days ago

Why does this page include this code?

https://github.com/huseyinstif/CVE-2026-2441-PoC

CVSS 8.8 (High) | Actively Exploited in the Wild | Renderer RCE (Sandboxed)

A use-after-free vulnerability in Google Chrome's Blink CSS engine that allows a remote attacker to execute arbitrary code inside the browser sandbox via a crafted HTML page.

discuss

DetroitThrow|6 days ago

I'm not on a vulnerable user, but I'd prefer not to run RCE's on web pages I'm browsing which aren't presented as containing the RCE, even if they are doing it to notify me of the vuln.

acheong08|6 days ago

I was playing around with it a while back and forgot to remove it...