previewtab vulnerability

The previewtab vulnerability tag covers a specific Chrome for Android security issue, CVE-2026-11226, disclosed on June 4, 2026. This flaw in the PreviewTab feature allowed a remote attacker to bypass the browser's same-origin policy after persuading a user to perform specific UI gestures. The vulnerability was patched in Chrome version 149.0.7827.53. While not a critical threat for most home users, it highlights how browser security increasingly involves the interaction between preview surfaces, mobile gestures, and web isolation rules. Discussions on this tag focus on the technical details of the bug, its low-severity classification, and the broader implications for Chromium security architecture.