New issue
Advanced search Search tips

Issue 804846 link

Starred by 2 users

Issue metadata

Status: WontFix
Owner: ----
Closed: Jan 2018
EstimatedDays: ----
NextAction: ----
OS: ----
Pri: ----
Type: Bug-Security



Sign in to add a comment

Security: Self XSS And Html Injection In Chrome

Reported by wasdwasd...@gmail.com, Jan 23 2018

Issue description

Hello, I Am Samet Sahin [F4LCONE_]
I Found XSS And HTML Injection In Chrome.


VERSION
Chrome Version: [63.0.3239.132 ] + [cohort: Stable, 64 bit]
Operating System: [Windows 10]

Website address line payload : javascript:prompt(document.domain)

I Sent PoC.
All information on video.


 
GoogleChromeXSS.mp4
7.5 MB View Download

Comment 1 by rsesek@chromium.org, Jan 23 2018

Labels: -Restrict-View-SecurityTeam
Status: WontFix (was: Unconfirmed)
We do not consider this a security vulnerability. For more information, please see the entry about it in our Security FAQ: https://chromium.googlesource.com/chromium/src/+/master/docs/security/faq.md#Does-entering-JavaScript_URLs-in-the-URL-bar-or-running-script-in-the-developer-tools-mean-there_s-an-XSS-vulnerability

Sign in to add a comment