It seems to be that they've added a lot of newlines to the end of the alert message, scrolling the button below the screen.
Here's an attached example file. Turns out, the OK button is actually at the bottom of all that whitespace. But a malicious user can just add miles and miles of whitespace. I myself would suggest two fixes: 1) Trim whitespace on alerts. 2) Always show the OK button at the bottom, outside of the Flickable. ** Attachment added: "test.html" https://bugs.launchpad.net/ubuntu/+source/webbrowser-app/+bug/1611874/+attachment/4719069/+files/test.html ** Changed in: webbrowser-app (Ubuntu) Status: Incomplete => New ** Description changed: + Open the attached test.html file in webbrowser-app. + + A javascript alert will come up in which you can't scroll down to the OK + button. And you can't dismiss the alert or switch tabs or anything. + + == Original description == + Visit http://youbute.com/ (which is a scam site) on your phone in webbrowser-app. A javascript alert will come up warning about viruses and nonsense. But you can't scroll down to the OK button. And you can't dismiss the alert or switch tabs or anything. -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to webbrowser-app in Ubuntu. https://bugs.launchpad.net/bugs/1611874 Title: JS alerts shouldn't be able to take over the screen Status in webbrowser-app package in Ubuntu: New Bug description: Open the attached test.html file in webbrowser-app. A javascript alert will come up in which you can't scroll down to the OK button. And you can't dismiss the alert or switch tabs or anything. == Original description == Visit http://youbute.com/ (which is a scam site) on your phone in webbrowser-app. A javascript alert will come up warning about viruses and nonsense. But you can't scroll down to the OK button. And you can't dismiss the alert or switch tabs or anything. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/webbrowser-app/+bug/1611874/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
