Issue 804871 link

Starred by 2 users

Issue metadata

Status:	WontFix
Owner:	----
Closed:	Jan 2018
EstimatedDays:	----
NextAction:	----
OS:	----
Pri:	----
Type:	Bug-Security

Security: Chrome XSS Refleced ( Cookie Information )

Reported by pentestd...@gmail.com, Jan 23 2018

Issue description

Hello Google Security Team,

I'm a security researcher. I found xss reflected vulnerability in Chrome Desktop App. You can check the picture that I sent the display image to.

XSS Reflected Payload : Javascript:pormpt(document.cookie)

Safe days (:

	google_chrome_desktop_xss_reflected.PNG 40.6 KB View Download

Comment 1 by rsesek@chromium.org, Jan 23 2018

Labels: -Restrict-View-SecurityTeam
Status: WontFix (was: Unconfirmed)

We do not consider this a security vulnerability. For more information, please see the entry about it in our Security FAQ: https://chromium.googlesource.com/chromium/src/+/master/docs/security/faq.md#Does-entering-JavaScript_URLs-in-the-URL-bar-or-running-script-in-the-developer-tools-mean-there_s-an-XSS-vulnerability

Comment 2 by pentestd...@gmail.com, Jan 23 2018

Thank bro :)

►

Issue 804871 link

Issue metadata

Security: Chrome XSS Refleced ( Cookie Information )

Issue description

Comment 1 by rsesek@chromium.org, Jan 23 2018

Comment 1 Deleted

Comment 2 by pentestd...@gmail.com, Jan 23 2018

Comment 2 Deleted

Sign in to add a comment