CVEs-PoC/2020/CVE-2020-6506.md

### [CVE-2020-6506](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-6506)
![](https://img.shields.io/static/v1?label=Product&message=Chrome&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3C%2083.0.4103.106%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Insufficient%20policy%20enforcement&color=brighgreen)

### Description

Insufficient policy enforcement in WebView in Google Chrome on Android prior to 83.0.4103.106 allowed a remote attacker to bypass site isolation via a crafted HTML page.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/ARPSyndicate/cvemon
- https://github.com/Aucode-n/AndroidSec
- https://github.com/RClueX/Hackerone-Reports
- https://github.com/RG-Belasco/Android-BugBounty
- https://github.com/Scada-Hacker/Android-BugBounty
- https://github.com/Swordfish-Security/awesome-android-security
- https://github.com/annapustovaya/Mobix
- https://github.com/iamsarvagyaa/AndroidSecNotes
- https://github.com/imhunterand/hackerone-publicy-disclosed
- https://github.com/xdavidhu/awesome-google-vrp-writeups