[webkit-reviews] review requested: [Bug 29523] [XSSAuditor] JavaScript URLs that are URL-encoded twice can by bypass the XSSAuditor : [Attachment 39828] Patch with test cases
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Sat Sep 19 17:55:38 PDT 2009
Daniel Bates <dbates at webkit.org> has asked for review:
Bug 29523: [XSSAuditor] JavaScript URLs that are URL-encoded twice can by
bypass the XSSAuditor
https://bugs.webkit.org/show_bug.cgi?id=29523
Attachment 39828: Patch with test cases
https://bugs.webkit.org/attachment.cgi?id=39828&action=review
------- Additional Comments from Daniel Bates <dbates at webkit.org>
On Adam's remarks, removed checks m_frame->script()->isEnabled(),
m_frame->script()->isPaused() from patch
More information about the webkit-reviews
mailing list