[Webkit-unassigned] [Bug 27151] [XSSAuditor] JavaScript URLs with null/control characters bypass XSSAuditor
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Fri Jul 10 13:35:24 PDT 2009
https://bugs.webkit.org/show_bug.cgi?id=27151
Daniel Bates <dbates at berkeley.edu> changed:
What |Removed |Added
----------------------------------------------------------------------------
Attachment #32565|0 |1
is obsolete| |
Attachment #32573| |review?
Flag| |
--- Comment #3 from Daniel Bates <dbates at berkeley.edu> 2009-07-10 13:35:23 PDT ---
Created an attachment (id=32573)
--> (https://bugs.webkit.org/attachment.cgi?id=32573)
Updated patch with tests.
I made the changes in the V8 bindings, but how do I test it?
Also, moved line "const String* savedSourceURL = m_sourceURL;" to its original
place in file WebCore/bindings/js/ScriptController.cpp.
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list