New issue
Advanced search Search tips

Issue 668893 link

Starred by 1 user
Status: WontFix
Owner: ----
Closed: Nov 2016
EstimatedDays: ----
NextAction: ----
OS: ----
Pri: ----
Type: Bug-Security



Sign in to add a comment

Xss in address bar

Reported by craxerbi...@gmail.com, Nov 27 2016 
Reflected xss in address bar
Payload:
data:text/html;base64,PHN2Zy9vbmxvYWQ9YWxlcnQoMik+
Result:
Screenshot attached.
Attacker can use it to steal anyone cookies and for other attack too
Screenshot_2016-11-27-22-26-30.png
78.7 KB View Download

Comment 1 by craxerbi...@gmail.com, Nov 27 2016 

It is in latest version of android google chrome may be same payload may work in desktop version too

Comment 2 by dominickn@chromium.org, Nov 27 2016

Status: WontFix (was: Unconfirmed)
The ability to use text/html in data URIs is intended behaviour. This is not a reflected XSS attack because there's no "cross" site scripting happening; it's clear in the URL bar that you're not on a trustworthy origin and you can't use the address bar to inject this into a trustworthy origin.
Project Member

Comment 3 by sheriffbot@chromium.org, Mar 6 2017

Labels: -Restrict-View-SecurityTeam allpublic
This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Sign in to add a comment