[Webkit-unassigned] [Bug 66720] New: chromium WebFrameImpl - don't load javascript URLs against chrome internal pages.
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Mon Aug 22 14:58:42 PDT 2011
https://bugs.webkit.org/show_bug.cgi?id=66720
Summary: chromium WebFrameImpl - don't load javascript URLs
against chrome internal pages.
Product: WebKit
Version: 528+ (Nightly build)
Platform: Unspecified
URL: chrome://...
OS/Version: Unspecified
Status: UNCONFIRMED
Severity: Normal
Priority: P2
Component: Page Loading
AssignedTo: webkit-unassigned at lists.webkit.org
ReportedBy: tsepez at chromium.org
CC: abarth at webkit.org, cevans at google.com
Running JS against a chrome:// page risks sensitive information. Add a safeguard against malicious bookmarklets and the like to WebKit/Source/WebKit/chromium/src/WebFrameImpl.cpp
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list