Security Advisory
CVE-2016-8504
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
CSRF of synchronization form in Yandex Browser for desktop before version 16.6 could be used by remote attacker to steal saved data in browser profile.