Bug #745
closed
Cookie may be given out when user clicks a url passing through R.id.url_edittext
Added by yixin chen almost 3 years ago.
Updated almost 3 years ago.
Description
The cookie is set as a header property in SaveUrl.java , and may be sent to the malicious link passing from R.id.url_edittext component.
Would you confirm this defect? Thanks.
- Tracker changed from Feature to Bug
- Status changed from New to Closed
- Assignee set to Soren Stoutner
- Priority changed from 4.x to 3.x
That is not a bug. That is a feature that allows you to download files that require you to be logged in.
Cookies are not sent when saving a file unless they are enabled for the domain in Privacy Browser. Because cookies are disabled by default for all domains, this only happens when users have explicitly enabled cookies. Hence, there is no way this can be exploited by a malicious link unless the user has specifically done something to allow it.
Also available in: Atom
PDF