[Webkit-unassigned] [Bug 27071] [XSSAuditor] HTTP parameters with null/control characters bypass XSSAuditor
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Wed Jul 8 11:02:18 PDT 2009
https://bugs.webkit.org/show_bug.cgi?id=27071
--- Comment #5 from Daniel Bates <dbates at berkeley.edu> 2009-07-08 11:02:18 PDT ---
Right. I just used it as a place holder for the plugin-based tests, but it
isn't needed as you pointed out. I'll add such a test and post the patch again.
(In reply to comment #4)
> (From update of attachment 32433 [details])
> What is execGetURL.swf ? I don't think we can put flash movies in layout
> tests. This probably isn't needed because the auditor blocks the load anyway.
> Also, where is script-tag-post-control-char.html ?
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list