[Webkit-unassigned] [Bug 68560] [Qt] HTTP header injection vulnerability (QWebPage::userAgentForUrl)
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Wed Sep 21 13:09:11 PDT 2011
https://bugs.webkit.org/show_bug.cgi?id=68560
--- Comment #2 from Jarred Nicholls <jarred at sencha.com> 2011-09-21 13:09:11 PST ---
(In reply to comment #1)
> Now that we had this heads-up, is there any other place our API might be prone to injection?!
Good question; I'll scour the API to see if any relevant issues are present elsewhere. In the meantime though I will prepare an official patch w/ a test to cover up this one case in particular. Sound good?
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list