[Webkit-unassigned] [Bug 16523] Calling window.open("", "foo") allows arbitrary scripting by any domain
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Thu Dec 20 11:37:39 PST 2007
http://bugs.webkit.org/show_bug.cgi?id=16523
------- Comment #3 from hk9565 at gmail.com 2007-12-20 11:37 PDT -------
Further investigation reveals that this bug can be exploited without the
cooperation of the victim site, making this arbitrary script execution. We can
send you a PoC via email if you'd rather we didn't post it to the bug.
Is there some mechanism for reporting these issues privately? Mozilla has a
check box that hides security sensitive bugs from the public...
--
Configure bugmail: http://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
More information about the webkit-unassigned
mailing list