Apple’s Safari Web browser will give away a user’s Mac OS X Address Book data if asked by a malicious Web site. Jeremiah Grossman, founder and CTO of WhiteHat Security, reveals that the AutoFill functionality built into Safari 4 and 5 can be triggered remotely using a simple Web form. Grossman says he notified Apple about the vulnerability on June 17, 2010, but has received no response from the company. The flaw may also be present in older versions of Google’s Chrome browser, which also relies on WebKit engine.”]
Source: https://www.darkreading.com/attacks-breaches/apple-safari-browser-surrenders-personal-data