[Webkit-unassigned] [Bug 110880] Cross-origin XSLT requests should be allowed
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Tue Feb 26 10:02:58 PST 2013
https://bugs.webkit.org/show_bug.cgi?id=110880
--- Comment #1 from Adam Barth <abarth at webkit.org> 2013-02-26 10:05:21 PST ---
I've added you to the bugs in question. They're old enough that we can probably make them public. The short answer is that cross-origin XSLT can lead to XSS vulnerabilities.
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list