[Webkit-unassigned] [Bug 26899] XSSAuditor shouldn't strip control characters
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Wed Jul 1 17:35:09 PDT 2009
https://bugs.webkit.org/show_bug.cgi?id=26899
dbates at berkeley.edu changed:
What |Removed |Added
----------------------------------------------------------------------------
Attachment #32165| |review?
Flag| |
------- Comment #1 from dbates at berkeley.edu 2009-07-01 17:35 PDT -------
Created an attachment (id=32165)
--> (https://bugs.webkit.org/attachment.cgi?id=32165&action=view)
Patch with test
Upon further investigation, we need to remove null characters, since the
HTMLTokenizer does in processing scripts (i.e. the contents of
<script>al\0ert(1)</script> becomes alert(1) by the time it is passed to
XSSAuditor). Let me know if this change is better addressed in a separate bug.
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
More information about the webkit-unassigned
mailing list