[Webkit-unassigned] [Bug 274310] REGRESSION (Safari 17.x): Strange mix of content from two websites loaded simultaneously
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Mon Aug 5 13:19:15 PDT 2024
https://bugs.webkit.org/show_bug.cgi?id=274310
--- Comment #11 from Penar Musaraj <pmusaraj at gmail.com> ---
Got a better repro (thanks to a colleague, David Taylor).
https://d5.musaraj.com and https://d6.musaraj.com are identical, but d5 has the COOP header, d6 doesn't. The HTML for both is:
```
<ol>
<li><button onclick="window.history.pushState({}, null, '/foo')">Click me</button></li>
<li>Use browser to go 'back' one step</li>
<li><a href="https://d4.musaraj.com">Then click me</a></li>
</ol>
```
https://d4.musaraj.com has this HTML:
```
<script>document.write(`window.location is ${window.location}`)</script>
```
Can see that window history gets corrupted with steps followed in d5 but not with d6.
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20240805/e56e6865/attachment.htm>
More information about the webkit-unassigned
mailing list