Chromium does not properly validate access to the initial document, which allows remote attackers to spoof the address bar via a crafted web site.
Chromium does not properly validate access to the initial document, which allows remote attackers to spoof the address bar via a crafted web site.
https://bugs.chromium.org/p/chromium/issues/detail?id=630662 https://bugzilla.redhat.com/show_bug.cgi?id=1372216