You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve-2025-8881
About this tag
CVE-2025-8881 is a Chromium vulnerability affecting the browser's File Picker implementation, which could be exploited to leak cross-origin data when a user is tricked into specific UI gestures on a crafted page. The bug impacts Google Chrome builds prior to version 139.0.7258.127 and was fixed in the stable Chrome update released in August 2025. Since Chromium is the engine behind browsers like Google Chrome, Microsoft Edge, Opera, and Brave, users of these browsers should ensure they are updated to the latest version to mitigate this security issue. The tag covers discussions about the vulnerability, its impact, and the patch released to address it.
A newly recorded Chromium vulnerability, tracked as CVE-2025-8881, exposes a weakness in the browser’s File Picker implementation that can be coaxed into leaking cross‑origin data when a user is tricked into specific UI gestures on a crafted page; the bug affects Google Chrome builds prior to...