[Webkit-unassigned] [Bug 29523] [XSSAuditor] JavaScript URLs that are URL-encoded twice can by bypass the XSSAuditor
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Wed Sep 23 11:21:17 PDT 2009
https://bugs.webkit.org/show_bug.cgi?id=29523
Daniel Bates <dbates at webkit.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Resolution| |FIXED
Status|NEW |RESOLVED
--- Comment #10 from Daniel Bates <dbates at webkit.org> 2009-09-23 11:21:17 PDT ---
Sending LayoutTests/ChangeLog
Adding
LayoutTests/http/tests/security/xssAuditor/iframe-javascript-url-url-encoded-expected.txt
Adding
LayoutTests/http/tests/security/xssAuditor/iframe-javascript-url-url-encoded.html
Adding
LayoutTests/http/tests/security/xssAuditor/javascript-link-url-encoded-expected.txt
Adding
LayoutTests/http/tests/security/xssAuditor/javascript-link-url-encoded.html
Sending WebCore/ChangeLog
Sending WebCore/bindings/js/ScriptController.cpp
Sending WebCore/bindings/v8/ScriptController.cpp
Sending WebCore/loader/FrameLoader.cpp
Transmitting file data .........
Committed revision 48680.
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list