[Webkit-unassigned] [Bug 16523] Calling window.open("", "foo") allows arbitrary scripting by any domain
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Thu Dec 20 01:32:33 PST 2007
http://bugs.webkit.org/show_bug.cgi?id=16523
------- Comment #1 from hk9565 at gmail.com 2007-12-20 01:32 PDT -------
We know how to fix this, but the fix depends on Bug 15313. Basically, a
Document should compute its m_securityOrigin once and refuse to change it.
This seems to be how Firefox deals with this corner case.
--
Configure bugmail: http://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
More information about the webkit-unassigned
mailing list