Diracdeltas

**Name of the Vulnerable Software and Affected Versions** Brave version 0.22.810 through 0.24.0 **Description** The issue allows websites to run inline JavaScript even if script is blocked, making it easier for attackers to track users. This can be exploited when a victim visits a specially crafted website. The function `ContentSettingsObserver::AllowScript()` in `content settings observer.cc` is affected. **Recommendations** For versions 0.22.810 through 0.24.0, update to version 0.25.2 to resolve the issue.