CVE-2026-15128

CVE-2026-15128CVE-2026-15128

Description

Inappropriate implementation in Forms in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page. (Chromium security severity: High)

Scoring

Last modified2026-07-08
Sourced from NVD. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.