[Webkit-unassigned] [Bug 199610] script elements created by the transformToFragment method of XSLTProcessor are not executed on insertion into DOM tree
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Fri Jul 12 15:31:21 PDT 2019
https://bugs.webkit.org/show_bug.cgi?id=199610
--- Comment #9 from Ryosuke Niwa <rniwa at webkit.org> ---
Comment on attachment 374000
--> https://bugs.webkit.org/attachment.cgi?id=374000
script elements created by the transformToFragment method of XSLTProcessor are not executed on insertion into DOM tree
It seems like this would be a pretty serious XSS risk for any website or apps embedding WKWebView / UIWebView relying on the existing to not execute scripts.
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20190712/90ac591a/attachment.html>
More information about the webkit-unassigned
mailing list