QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2026-7360

Back to search

CVE-2026-7360

Published: Apr 28, 2026

Modified: Apr 29, 2026

PUBLISHED

Description

Insufficient validation of untrusted input. in Compositing in Google Chrome prior to 147.0.7727.138 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. (Chromium security severity: High)

VendorProductVersions

Google

Chrome

affected
147.0.7727.138 - < 147.0.7727.138

Weaknesses (CWE)

CWE-20

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now