[prev in list] [next in list] [prev in thread] [next in thread] 

List:       konq-bugs
Subject:    [Bug 161409] [testcase] Konq treats escaped HTML in <title> tag
From:       Martin Meredith <mez () ubuntu ! com>
Date:       2008-04-29 11:49:54
Message-ID: 20080429114954.30822.qmail () ktown ! kde ! org
[Download RAW message or body]

------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
         
http://bugs.kde.org/show_bug.cgi?id=161409         
mez ubuntu com changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
            Version|3.5                         |unspecified



------- Additional Comments From mez ubuntu com  2008-04-29 13:49 -------
This also creates security issues, as any &lt; or &gt; in the rest of the page get \
interpreted literally. For example

&lt;script&gt;alert(document.cookie);&lt;/script&gt;

Will be interpreted as

<script>alert(document.cookie)</script>
_______________________________________________
Konq-bugs mailing list
Konq-bugs@mail.kde.org
https://mail.kde.org/mailman/listinfo/konq-bugs


[prev in list] [next in list] [prev in thread] [next in thread]

Configure | About | News | Add a list | Sponsored by KoreLogic