CVE Database · CVE-2010-5071
CVSS v3.1
N/A
EPSS
13.46%
Published
Dec 7, 2011
Modified
Apr 28, 2026
Public PoC / Exploit
All weaponized →No public PoC or exploit code indexed for this CVE.
Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.
Description
The JavaScript implementation in Microsoft Internet Explorer 8.0 and earlier does not properly restrict the set of values contained in the object returned by the getComputedStyle method, which allows remote attackers to obtain sensitive information about visited web pages by calling this method.
Weaknesses (CWE)
Affected Products (101)
References (2)
...and 51 more
