On 06/05/15 08:00, Tantek Çelik wrote: > Result: loss of user data that user had put into the clipboard > previously. This isn't possible with current DOM APIs and is a new > vulnerability introduced by cut/copy.
Given that most text-editing applications have "undo" (if you used "cut" originally), this strikes me as a low-level web page annoyance on a par with auto-playing irritating music. Although perhaps a little less discoverable as to the cause. I doubt this will be an issue in practice - as the page doesn't get to see the data its deleting, doing so would be pure vandalism, not worthy of an attacker who was trying to actually accomplish something. Gerv _______________________________________________ dev-platform mailing list dev-platform@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-platform