Issue metadata
Sign in to add a comment
|
Security: DOM cloberring using name attribute
Reported by
saurabh....@gmail.com,
Nov 14 2017
|
||||||||||||||||||||
Issue descriptionVULNERABILITY DETAILS Use of name attribute as 'domain' causes the latest Google Chrome to confuse as a result of which the DOM gets clobbered and document.domain API of JS gives incorrect value. VERSION Chrome Version: [Version 61.0.3163.100 (Official Build) (64-bit)] + [stable] Operating System: [Windows 7] REPRODUCTION CASE Include the following HTML code in browser and observe: <h3>Welcome to the real-time HTML editor!</h3> <p>Type HTML in the textarea above, and it will magically appear in the frame below.</p> <script>document.write(document.domain);</script> <br> <br> <br> <form name="domain"></form> <br> <br> <br> <script>document.write(document.domain);</script>
,
Nov 14 2017
Re 1: I wish to see that original bug but I do not have the permission. Can you please grant me it?
,
Nov 15 2017
Re 1: I wish to see that original bug but I do not have the permission. Can you please grant me it?
,
Feb 21 2018
This bug has been closed for more than 14 weeks. Removing security view restrictions. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot |
|||||||||||||||||||||
►
Sign in to add a comment |
|||||||||||||||||||||
Comment 1 by dominickn@chromium.org
, Nov 14 2017Status: Duplicate (was: Unconfirmed)