[Webkit-unassigned] [Bug 7135] window.history object persists data across pages

bugzilla-daemon at opendarwin.org bugzilla-daemon at opendarwin.org
Tue Feb 7 13:06:00 PST 2006


http://bugzilla.opendarwin.org/show_bug.cgi?id=7135


ggaren at apple.com changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|UNCONFIRMED                 |NEW
     Ever Confirmed|0                           |1
            Summary|window.history object       |window.history object
                   |                            |persists data across pages




------- Comment #2 from ggaren at apple.com  2006-02-07 13:06 PDT -------
I can verify that Safari does persist the data, whereas FF doesn't. It's not
immediately clear to me why this is a vulnerability. A malicious site can only
read the data if another site has explicitly made it available.


-- 
Configure bugmail: http://bugzilla.opendarwin.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.



More information about the webkit-unassigned mailing list