Closed
Bug 1329592
Opened 7 years ago
Closed 7 years ago
Universal XSS - Bookmark
Categories
(Firefox :: Untriaged, defect)
Tracking
()
RESOLVED
DUPLICATE
of bug 371923
People
(Reporter: mrbaslote, Unassigned)
Details
User Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:50.0) Gecko/20100101 Firefox/50.0
Build ID: 20161208153507
Steps to reproduce:
* Edit a saved bookmark in Bookmarks toolbar to;
Name: Any
URL: javascript:alert(document.domain)
* Go to any website, i.e, mozilla.com
* Click the edited bookmark in the bookmark toolbar,
Actual results:
XSS will trigger to any website when the edited bookmark is clicked.
Expected results:
XSS to any website.
|
Reporter | |
Comment 1•7 years ago
|
||
Unlisted Video - https://youtu.be/ovS70DT0x0A
|
||
Updated•7 years ago
|
Group: firefox-core-security
Status: UNCONFIRMED → RESOLVED
Closed: 7 years ago
Resolution: --- → DUPLICATE
You need to log in
before you can comment on or make changes to this bug.
Description
•