PT-2026-26680 · Browsercompany Of New York · Arcsearch
Published
2026-03-20
·
Updated
2026-03-20
·
CVE-2026-2378
CVSS v3.1
7.4
High
| AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N |
ArcSearch for Android versions prior to 1.12.7 could display a different domain in the address bar than the content being shown, enabling address bar spoofing after user interaction via crafted web content.
Fix
Clickjacking
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Arcsearch