[Webkit-unassigned] [Bug 236432] New: Autofill sets the `value` of an `<input>` with `name="token"` to the user's email address

[bugzilla-daemon at webkit.org]

https://bugs.webkit.org/show_bug.cgi?id=236432

            Bug ID: 236432
           Summary: Autofill sets the `value` of an `<input>` with
                    `name="token"` to the user's email address
           Product: WebKit
           Version: Safari 15
          Hardware: Unspecified
                OS: macOS 12
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: Forms
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: brody at brody.digital
                CC: cdumez at apple.com, wenson_hsieh at apple.com

While developing a website I noticed some unusual activity while testing it in Safari.

Given a form such as:

```
<form>
  <input type="hidden" name="token" value="[SOME LONG RANDOM STRING HERE]" autocomplete="off">
  <input type="password" name="password" autocomplete="new-password">
  <input type="password" name="password_confirmation" autocomplete="new-password">
</form>
```

The browser is setting the token to the user's email address. The workaround involved using the `Referer` header when the `User-Agent` matches Safari but no other browser ran into this issue.

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20220210/7dbaede8/attachment.htm>