Closed
Bug 545069
Opened 15 years ago
Closed 15 years ago
web site is able to retrieve my name and email address upon loading up its own page
Categories
(Core :: General, defect)
Tracking
()
RESOLVED
INVALID
People
(Reporter: dudubravo, Unassigned)
References
()
Details
(Keywords: privacy)
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US; rv:1.9.1.7) Gecko/20091221 Firefox/3.5.7 (.NET CLR 3.5.30729) Build Identifier: Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US; rv:1.9.1.7) Gecko/20091221 Firefox/3.5.7 (.NET CLR 3.5.30729) I was visiting the aforementioned web site and when I scrolled to the bottom of the page, where it says "Leave a Reply", my *name* and *email* were already filled out! This does not happen with IE. I am a Software Engineer too, have the latest and greatest updates, services packs, anti-virus, you name it, so this got to be a glitch on Mozilla. If a malicious web site wants to get my name and email, all they have to do is to trigger an auto-send in JavaScript to send that info that is already filled in the text boxes. This is a big deal! Thanks for looking. Reproducible: Always
|
||
Comment 1•15 years ago
|
||
Your name and email appear on http://jachman.wordpress.com/ comment forms because you've commented on some wordpress blog in the past. The site uses a cookie to remember what you've entered. Assuming wordpress.com disallows scripts, this doesn't let other wordpress.com users see your name unless you submit a comment. But if you're paranoid, you can always change your settings to disable cookies for wordpress.com, or make all cookies go away when you restart Firefox.
Group: core-security
Status: UNCONFIRMED → RESOLVED
Closed: 15 years ago
Keywords: privacy
Resolution: --- → INVALID
Thanks for explanation, Jesse. You're right. I did blog on a site that uses wordpress.com as a base. Feel free to remove/delete this bug report that I originated. Thanks.
You need to log in
before you can comment on or make changes to this bug.
Description
•