Issue 804846 link

Starred by 2 users

Issue metadata

Status:	WontFix
Owner:	----
Closed:	Jan 2018
EstimatedDays:	----
NextAction:	----
OS:	----
Pri:	----
Type:	Bug-Security

Security: Self XSS And Html Injection In Chrome

Reported by wasdwasd...@gmail.com, Jan 23 2018

Issue description

Hello, I Am Samet Sahin [F4LCONE_]
I Found XSS And HTML Injection In Chrome.


VERSION
Chrome Version: [63.0.3239.132 ] + [cohort: Stable, 64 bit]
Operating System: [Windows 10]

Website address line payload : javascript:prompt(document.domain)

I Sent PoC.
All information on video.

	GoogleChromeXSS.mp4 7.5 MB View Download

Comment 1 by rsesek@chromium.org, Jan 23 2018

Labels: -Restrict-View-SecurityTeam
Status: WontFix (was: Unconfirmed)

We do not consider this a security vulnerability. For more information, please see the entry about it in our Security FAQ: https://chromium.googlesource.com/chromium/src/+/master/docs/security/faq.md#Does-entering-JavaScript_URLs-in-the-URL-bar-or-running-script-in-the-developer-tools-mean-there_s-an-XSS-vulnerability

►

Issue 804846 link

Issue metadata

Security: Self XSS And Html Injection In Chrome

Issue description

Comment 1 by rsesek@chromium.org, Jan 23 2018

Comment 1 Deleted

Sign in to add a comment