Drag and Drop Event Vulnerability

vendor:

Unknown

by:

milw0rm.com

5.5

CVSS

MEDIUM

Drag and Drop Event

Unknown

CWE

Product Name: Unknown

Affected Version From: Unknown

Affected Version To: Unknown

Patch Exists: NO

Related CWE:

CPE:

Metasploit:

Other Scripts:

Platforms Tested: Unknown

2004

Drag and Drop Event Vulnerability

This is the 3rd version of the vulnerability where a drag and drop event can be caused by clicking a specific link on a popup that points to 'The Better Browser' website. The exploit code is provided in the given HTML code.

Mitigation:

To mitigate this vulnerability, users should avoid clicking on suspicious links and should keep their software up to date with the latest patches and updates.

Source

Drag and Drop Event Vulnerability

Mitigation:

Exploit-DB raw data: