CVE-2026-15128
CVSS Score
6.1
EPSS Score
0.0%
EPSS Percentile
0th
Inappropriate implementation in Forms in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page. (Chromium security severity: High)
| Vendor | |
| Product | chrome |
| Ecosystems | |
| Industries | Technology |
| Published | Jul 8, 2026 |
| Last Updated | Jul 9, 2026 |
Stay Ahead of the Next One
Get instant alerts for google chrome
Be the first to know when new medium vulnerabilities affecting google chrome are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
Google / Chrome
150.0.7871.115 < 150.0.7871.115