[Webkit-unassigned] [Bug 26921] [XSSAuditor] HTML entities can bypass xssAuditor
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Fri Jul 10 23:42:08 PDT 2009
https://bugs.webkit.org/show_bug.cgi?id=26921
Adam Barth <abarth at webkit.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Attachment #32602|review? |review+
Flag| |
--- Comment #5 from Adam Barth <abarth at webkit.org> 2009-07-10 23:42:07 PDT ---
(From update of attachment 32602)
This is fine for now. Now that we've worked through all the known issues, it's
time to do a clean up patch for the auditor. There are some nits that I'd
change with this patch, but we can deal with them in the cleanup patch.
Thanks for the thorough test cases. That work is about to pay off.
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list