Bug 29306
Summary: | [XSSAuditor] Scripts with accented characters can bypass the XSSAuditor | ||||||
---|---|---|---|---|---|---|---|
Product: | WebKit | Reporter: | Daniel Bates <dbates> | ||||
Component: | WebCore Misc. | Assignee: | Nobody <webkit-unassigned> | ||||
Status: | RESOLVED FIXED | ||||||
Severity: | Normal | CC: | abarth, mario.heiderich, sam | ||||
Priority: | P2 | Keywords: | XSSAuditor | ||||
Version: | 528+ (Nightly build) | ||||||
Hardware: | All | ||||||
OS: | All | ||||||
URL: | http://eaea.sirdarckcat.net/xss.php?html_xss=<img%20src=ä%20onerror=alert('ä')> | ||||||
Bug Depends on: | |||||||
Bug Blocks: | 29278 | ||||||
Attachments: |
|
2009-09-16 12:29 PDT, Daniel Bates