Bug #745: Cookie may be given out when user clicks a url passing through R.id.url_edittext - Privacy Browser Android - Stoutner - Redmine

Actions

Copy link

Bug #745

closed

Cookie may be given out when user clicks a url passing through R.id.url_edittext

Added by yixin chen almost 3 years ago. Updated almost 3 years ago.

Status:

Closed

Priority:

3.x

Assignee:

Soren Stoutner

Start date:

07/15/2021

Due date:

% Done:

Estimated time:

Description

The cookie is set as a header property in SaveUrl.java , and may be sent to the malicious link passing from R.id.url_edittext component.
Would you confirm this defect? Thanks.

Actions

Copy link

Updated by Soren Stoutner almost 3 years ago

Tracker changed from Feature to Bug
Status changed from New to Closed
Assignee set to Soren Stoutner
Priority changed from 4.x to 3.x

That is not a bug. That is a feature that allows you to download files that require you to be logged in.

Cookies are not sent when saving a file unless they are enabled for the domain in Privacy Browser. Because cookies are disabled by default for all domains, this only happens when users have explicitly enabled cookies. Hence, there is no way this can be exploited by a malicious link unless the user has specifically done something to allow it.

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Privacy Browser Android

Bug #745

Cookie may be given out when user clicks a url passing through R.id.url_edittext

Updated by Soren Stoutner almost 3 years ago