[webkit-reviews] review granted: [Bug 30242] [XSSAuditor] IFrame JavaScript URLs that are URL-encoded twice can by bypass the XSSAuditor : [Attachment 41015] Patch with test cases
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Sun Oct 11 21:12:22 PDT 2009
Adam Barth <abarth at webkit.org> has granted Daniel Bates <dbates at webkit.org>'s
request for review:
Bug 30242: [XSSAuditor] IFrame JavaScript URLs that are URL-encoded twice can
by bypass the XSSAuditor
https://bugs.webkit.org/show_bug.cgi?id=30242
Attachment 41015: Patch with test cases
https://bugs.webkit.org/attachment.cgi?id=41015&action=review
------- Additional Comments from Adam Barth <abarth at webkit.org>
Thanks Dan. I agree that we should do a cleanup patch after fixing the inline
event handler bug.
More information about the webkit-reviews
mailing list