Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
Google Chrome: Bypassing Navigation Restrictions Through HTML Page
CVE-2026-5903
Summary
A bug in older versions of Google Chrome allowed an attacker to trick a user into bypassing navigation restrictions by showing a specially crafted web page. This could potentially allow the attacker to redirect the user to a different website, but it's considered a low-risk issue. To stay safe, make sure to keep your Google Chrome browser up to date.
Original title
Policy bypass in IFrameSandbox in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass navigation restrictions via a craft...
Original description
Policy bypass in IFrameSandbox in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass navigation restrictions via a crafted HTML page. (Chromium security severity: Low)
Published: 8 Apr 2026 · Updated: 10 Apr 2026 · First seen: 8 Apr 2026