[dtf]

Why does this page include this code?

https://github.com/huseyinstif/CVE-2026-2441-PoC

CVSS 8.8 (High) | Actively Exploited in the Wild | Renderer RCE (Sandboxed)

A use-after-free vulnerability in Google Chrome's Blink CSS engine that allows a remote attacker to execute arbitrary code inside the browser sandbox via a crafted HTML page.

[DetroitThrow]

I'm not on a vulnerable user, but I'd prefer not to run RCE's on web pages I'm browsing which aren't presented as containing the RCE, even if they are doing it to notify me of the vuln.

[_k2vp]

I was playing around with it a while back and forgot to remove it...