New issue
Advanced search Search tips

Issue 602385 link

Starred by 1 user
Status: WontFix
Owner: ----
Closed: Apr 2016
EstimatedDays: ----
NextAction: ----
OS: ----
Pri: ----
Type: Bug-Security



Sign in to add a comment

Security: False site integration on browser history

Reported by rooted.c...@gmail.com, Apr 11 2016 
Hello , 

I was just going through my chrom browser's history and suddenly I found a history a particuler history of mail.google.com which I never actually accessed . chrom accessed this by Itself ! I think this is a cross platform bug by any third party application affecting the browser . This is a serious security issue from chorm browser . you should resolve it 

Thanks 
rashed
endo.jpg
84.2 KB View Download

Comment 1 by kenrb@chromium.org, Apr 11 2016

Status: WontFix (was: Unconfirmed)
Hi rashed,

The history items display the page title, which for Gmail is usually the subject line of the open email. It is likely that there is an email with that subject line in your Gmail, whether it be spam or otherwise. If you have history sync enabled for your Google account, it is possible that your account on another computer had opened a message with that title.
Project Member

Comment 2 by sheriffbot@chromium.org, Jul 19 2016

Labels: -Restrict-View-SecurityTeam
This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
Project Member

Comment 3 by sheriffbot@chromium.org, Oct 1 2016 

This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
Project Member

Comment 4 by sheriffbot@chromium.org, Oct 2 2016 

This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Comment 5 by mbarbe...@chromium.org, Oct 2 2016

Labels: allpublic

Sign in to add a comment