OpenAI Operator Fullscreen API Spoofing Vulnerability

A vulnerability in OpenAI Operator SaaS on the web allows remote attackers to spoof the Fullscreen API and redress the user interface. This issue enables the capture of sensitive user input, such as login credentials and email addresses. The vulnerability arises from the application's handling of the Fullscreen API, where a deceptive fullscreen interface can be displayed overlaid with fake browser controls. Additionally, a distracting element, like a cookie consent screen, can obscure important fullscreen notifications, tricking users into interacting with malicious sites.

Impact

Exploitation of this vulnerability could lead to the unauthorized capture of sensitive user input entered into the OpenAI Operator after visiting a malicious page.

Reproduction

To reproduce this vulnerability, first, upload the provided proof-of-concept HTML file to a web server. Then, visit the page with OpenAI Operator. The page will enter fullscreen mode without the operator's knowledge, allowing the attacker to capture any input entered after that.