Summary: | CSS from STYLE tag is applied to page even when STYLE element is not in the document | ||||||||
---|---|---|---|---|---|---|---|---|---|
Product: | WebKit | Reporter: | Andrew Kulinich <b30r4> | ||||||
Component: | DOM | Assignee: | Nobody <webkit-unassigned> | ||||||
Status: | RESOLVED CONFIGURATION CHANGED | ||||||||
Severity: | Normal | CC: | annevk | ||||||
Priority: | P2 | ||||||||
Version: | 528+ (Nightly build) | ||||||||
Hardware: | PC | ||||||||
OS: | Windows XP | ||||||||
URL: | http://ua.zapatec.net/~vanger/webkit-css-innerhtml-bug.html | ||||||||
Attachments: |
|
Description
Andrew Kulinich
2009-03-06 02:33:59 PST
Created attachment 28354 [details]
example to reproduce an error
Workaround - use createElementNS to create element in different namespace - in this case STYLE won't affect local document. same problem with <LINK> element - for LINK rel="stylesheet" corresponding CSS file is loaded and applied to the page Created attachment 28357 [details]
XSS
attached new file - XSS attack using this bug. This seems to be working fine today. |