RE: GPS location - Added by Soren Stoutner almost 2 years ago
GPS location information requires the addition of the location dangerous permissions
From time to time there are vulnerabilities in WebView.
My guess is that there are a lot of unpatched 0-day vulnerabilities in WebView being actively exploited in the wild. Once the dangerous location permissions are granted to the app, any website that can exploit a WebView vulnerability would be able to track your location, regardless of whether the app enabled or disabled the setting. For that reason I never intend to add the location permissions.
PS. This is somewhat related to how the NSA uses 0-day exploits in Firefox to track people using Tor.