New issue
Advanced search Search tips

Issue 768221 link

Starred by 2 users
Status: WontFix
Owner: ----
Closed: Sep 2017
EstimatedDays: ----
NextAction: ----
OS: ----
Pri: ----
Type: Bug-Security



Sign in to add a comment

Security: User may set home button to JavaScript URL

Reported by alternat...@gmail.com, Sep 24 2017 



VULNERABILITY DETAILS


 
POC
1. 1st open setting or type chrome://settings/ in address bar
2. Then navigate to Appearance 
3. Find show home section
4. Edit custom web adders and input this code javascript:alert(document.cookie);//http://eesec.org
5. Open any website and click home icon/button.
Poc Link http://prntscr.com/gp1xxn

VERSION
Google Chrome 
Version 61.0.3163.100 (Official Build) (64-bit)
Operating System: [win 8]
poc chrome.png
252 KB View Download
gmail.jpg
195 KB View Download
poc url v.png
72.1 KB View Download

Comment 1 by elawrence@chromium.org, Sep 24 2017

Status: WontFix (was: Unconfirmed)
Summary: Security: User may set home button to JavaScript URL (was: Security: Web input Validation Not work and XSS In Home Button )
This is working as expected; see https://chromium.googlesource.com/chromium/src/+/master/docs/security/faq.md#Does-entering-JavaScript_URLs-in-the-URL-bar-or-running-script-in-the-developer-tools-mean-there_s-an-XSS-vulnerability for details.

Comment 2 by alternat...@gmail.com, Sep 24 2017 

 javascript:alert(document.cookie); but their not show trusted site 

show cookie

Comment 3 Deleted

Project Member

Comment 4 by sheriffbot@chromium.org, Jan 1 2018

Labels: -Restrict-View-SecurityTeam allpublic
This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Comment 5 by dpa...@chromium.org, Nov 20 

Issue 907083 has been merged into this issue.

Sign in to add a comment