[prev in list] [next in list] [prev in thread] [next in thread] 

List:       kde-bugs-dist
Subject:    [Bug 148859] [testcase] Konqueror misinterprets HTML entities as code
From:       Anthony Winslow <anthony.winslow () student ! utdallas ! edu>
Date:       2008-08-26 19:42:11
Message-ID: 20080826194211.E3600334A () immanuel ! kde ! org
[Download RAW message or body]

http://bugs.kde.org/show_bug.cgi?id=148859


Anthony Winslow anthony winslow student utdallas edu changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |anthony.winslow@student.utda
                   |                            |llas.edu




--- Comment #4 from Anthony Winslow <anthony winslow student utdallas edu>  2008-08-26 21:42:10 ---
I ran into this bug on this page:

http://www.reddit.com/r/web_design/comments/6y3u1/if_ie_6style_displaynone_height1px_width1px/

There's a CSS display:none in that title so you'll have to open it in firefox
or something to see anything on the page.

For social content websites that allow users to define page titles, this
introduces some dangerous security issues...


-- 
Configure bugmail: http://bugs.kde.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.
[prev in list] [next in list] [prev in thread] [next in thread]