CVE-2016-8505

https://notcve.org/view.php?id=CVE-2016-8505

XSS in Yandex Browser BookReader in Yandex browser for desktop for versions before 16.6. could be used by remote attacker for evaluation arbitrary javascript code. XSS en Yandex Browser BookReader en navegador Yandex para escritorio para versiones anteriores a 16.6. podría ser usado por un atacante remoto para una evaluación arbitraria de código javascript. • http://www.securityfocus.com/bid/93925 https://browser.yandex.com/security/changelogs • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •