[Webkit-unassigned] [Bug 26708] XSSAuditor false negatives
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Sat Jun 27 08:56:41 PDT 2009
https://bugs.webkit.org/show_bug.cgi?id=26708
abarth at webkit.org changed:
What |Removed |Added
----------------------------------------------------------------------------
Attachment #31973|review? |review-
Flag| |
------- Comment #6 from abarth at webkit.org 2009-06-27 08:56 PDT -------
(From update of attachment 31973)
This looks great except for the HTML entities part. That code really shouldn't
be in the XSSAuditor. It should be shared with the parser. Can you post a
version of the patch without the HTML entities fix? That way we can get the
other issues squared away and focus on the right HTML entities patch.
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
More information about the webkit-unassigned
mailing list