[Webkit-unassigned] [Bug 50415] Mismatched address bar URL and page contents when using back after pushState and location.replace
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Mon Dec 6 10:19:49 PST 2010
https://bugs.webkit.org/show_bug.cgi?id=50415
Mihai Parparita <mihaip at chromium.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |inferno at chromium.org
--- Comment #1 from Mihai Parparita <mihaip at chromium.org> 2010-12-06 10:19:48 PST ---
Abishek, does this have any security implications? As far as I can tell, an attacker could get the location bar to show a URL under his control while the page contents are not, so it's not exploitable for spoofing, but I might be missing something.
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list