New issue
Advanced search Search tips

Issue 677677 link

Starred by 1 user
Status: Archived
Owner: ----
Closed: Mar 2018
Components:
EstimatedDays: ----
NextAction: ----
OS: Chrome
Pri: ----
Type: Feature



Sign in to add a comment

Security: Uploading a file to a shared folder does not alert user to exposure of private information

Reported by lu...@dibeneditto.com, Dec 30 2016 
VULNERABILITY DETAILS
Using the web application https://drive.google.com/ or Chromebook Files application does not alert the user that the files will be shared, and could expose private information.

VERSION
Chrome Version: 55.0.2883.103 + stable

Operating System: 
Google Chrome OS
Version 55.0.2883.103
Platform 8872.73.0 (Official Build) stable-channel daisy
Firmware Google_Snow.2695.117.0

V8
5.5.372.33

User Agent
Mozilla/5.0 (X11; CrOS armv7l 8872.73.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.103 Safari/537.36

Build Date
Saturday, December 17, 2016

REPRODUCTION CASE
Upload a file to drive.google.com or using Chromebook Files application to a shared folder.

Comment 1 by kenrb@chromium.org, Dec 31 2016

Labels: -Type-Bug-Security -Restrict-View-SecurityTeam OS-Chrome Type-Feature
Status: Untriaged (was: Unconfirmed)

Comment 2 by dtapu...@chromium.org, Feb 12 2018

Components: Platform>Apps>FileManager>Drive

Comment 3 by sashab@chromium.org, Feb 22 2018

Components: Platform>Apps>FileManager
Labels: CrOS-FilesApp-DriveSync

Comment 4 by sashab@chromium.org, Feb 28 2018

Labels: CrOSFilesFeature-DriveSync

Comment 5 by sashab@chromium.org, Feb 28 2018

Labels: -CrOS-FilesApp-DriveSync

Comment 6 by sashab@chromium.org, Mar 15 2018

Status: Archived (was: Untriaged)

Sign in to add a comment