CVE-2024-25677 Information

Description

In Min before 1.31.0 local files are not correctly treated as unique security origins which allows them to improperly request cross-origin resources. For example a local file may request other local files through an XML document.

Reference

https://github.com/minbrowser/min/security/advisories/GHSA-4w9v-7h8h-rv8x