[Webkit-unassigned] [Bug 15039] Cross domain JavaScript injection
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Tue Aug 21 18:45:32 PDT 2007
http://bugs.webkit.org/show_bug.cgi?id=15039
------- Comment #7 from ggaren at apple.com 2007-08-21 18:45 PDT -------
I think the problem may be that we do some security checking via execState, not
domain. This example demonstrates why you have to use domain always.
--
Configure bugmail: http://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
More information about the webkit-unassigned
mailing list