Open Bug 1910269 Opened 1 year ago Updated 1 year ago

Dragging a single word from a tab to another tab causes the browser to try to navigate to that word

Categories

(Core :: DOM: Copy & Paste and Drag & Drop, defect)

Product:
Core
Component:
DOM: Copy & Paste and Drag & Drop
Type:
defect

Tracking

()

People

(Reporter: mayankleoboy1, Unassigned)

References

Details

Attachments

(2 files)

bandicam 2024-07-28 10-57-12-034.mp4
1.46 MB, video/mp4
Details
about:support
46.43 KB, text/plain
Details

Open 2 windows in the browser
Adjust the two windows such that they both are in the foreground
Open example.com in both the windows/tabs.
Drag a SINGLE word (e.g. "domain") from tab1 to inside tab2

AR: In tab2, the browser tries to navigate to "http://domain"
ER: Not so.
Chrome does the expected behavioir here.

Attached file about:support
See Also: → 1759604
Severity: -- → S3
See Also: → 1759400

At least for the Address Bar, this is an expected behavior, as a malicious site may convince the user to drop a string on the urlbar to spoof a website.
If the final behavior requested here is to put the string in the urlbar but don't navigate to it, that may be unsafe.
If otherwise is to prevent dropping, no concerns, the user could still force the navigation dropping on the urlbar.

If you drag the word into the title bar or address bar, the result is a search for that word using the default search engine. (The same occurs if you drag a selection containing multiple words.) This seems correct.

However, if you drag the word into the content area (viewport), the reported behaviour occurs. If you drag a selection containing multiple space-separated words here, nothing happens.

The expected behaviour (I would have thought) would be a search for the word or phrase in all cases.

(In reply to Marco Bonardo [:mak] (away Aug 5-12, Aug 19-21) from comment #2)

At least for the Address Bar, this is an expected behavior

The current behaviour upon dragging to the address bar is not the erroneous navigation to http://word (which I don't think should be expected), but to the search engine, and seems corect. This bug concerns the behaviour when dragging to the main content window, which is different and not as expected.

Worth noting that I have separate URL and search bar. Behaviour might be different with combined URL/search.

a malicious site may convince the user to drop a string on the urlbar to spoof a website.

I don't understand how.

You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: