Popunder restriction bypass with Presentation API
Reported by
masatoki...@gmail.com,
Sep 26 2017
|
|||||
Issue descriptionUserAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3222.0 Safari/537.36 Steps to reproduce the problem: 1. Go to https://vulnerabledoma.in/popunder/presentation_api.html . 2. Click "Create PopUnder" button. 3. The popunder window is opened. What is the expected behavior? The popunder window should not be opened. What went wrong? The popunder window is opened. Did this work before? N/A Chrome version: 63.0.3222.0 Channel: n/a OS Version: 10.0 Flash Version: This issue is similar to Issue 768230 , but it's caused by Presentation API, not payment request API. I confirmed it works on Windows/Linux. But I couldn't reproduce on Mac.
,
Sep 27 2017
Able to reproduce this issue with steps mentioned in comment#0 on reported version 63.0.3222.0 and on latest canary 63.0.3225.0 using Ubuntu 14.04 and Windows 10. i.e; popunder window is opened behind main window. This issue is seen from M50.[50.0.2166.0].Hence considering this as Non-regression and marking this as Untriaged. NOTE: In Mac after clicking on button window is seen on main window. Attaching screencast for reference. Thanks!!
,
Sep 27 2017
,
Oct 26 2017
avi@, is this something you were planning on getting to for M63?
,
Oct 26 2017
I'm investigating. This will likely not hit M63; I'm still working on it.
,
Oct 30 2017
The following revision refers to this bug: https://chromium.googlesource.com/chromium/src.git/+/7154fd06247eb6ec748720b19cffae42fe8ebc1e commit 7154fd06247eb6ec748720b19cffae42fe8ebc1e Author: Avi Drissman <avi@chromium.org> Date: Mon Oct 30 19:50:41 2017 Don't activate tabs showing tab modal dialogs. BUG= 768475 , 768900 ,769351 TEST=as in bugs Change-Id: I1fb3244db8883e059e927e84ecca09dd3591f75d Reviewed-on: https://chromium-review.googlesource.com/687811 Reviewed-by: Mike Wittman <wittman@chromium.org> Reviewed-by: Scott Violet <sky@chromium.org> Reviewed-by: Sidney San MartÃn <sdy@chromium.org> Commit-Queue: Avi Drissman <avi@chromium.org> Cr-Commit-Position: refs/heads/master@{#512585} [modify] https://crrev.com/7154fd06247eb6ec748720b19cffae42fe8ebc1e/chrome/browser/ui/blocked_content/popup_blocker_browsertest.cc [modify] https://crrev.com/7154fd06247eb6ec748720b19cffae42fe8ebc1e/chrome/browser/ui/cocoa/web_contents_modal_dialog_host_cocoa.h [modify] https://crrev.com/7154fd06247eb6ec748720b19cffae42fe8ebc1e/chrome/browser/ui/cocoa/web_contents_modal_dialog_host_cocoa.mm [modify] https://crrev.com/7154fd06247eb6ec748720b19cffae42fe8ebc1e/chrome/browser/ui/views/frame/browser_view_layout.cc [modify] https://crrev.com/7154fd06247eb6ec748720b19cffae42fe8ebc1e/components/constrained_window/native_web_contents_modal_dialog_manager_views.cc [modify] https://crrev.com/7154fd06247eb6ec748720b19cffae42fe8ebc1e/components/web_modal/modal_dialog_host.cc [modify] https://crrev.com/7154fd06247eb6ec748720b19cffae42fe8ebc1e/components/web_modal/modal_dialog_host.h
,
Nov 1 2017
|
|||||
►
Sign in to add a comment |
|||||
Comment 1 by ligim...@chromium.org
, Sep 26 2017