Bug 83794

Summary: Typos in LayoutTests/http/tests/security/xssAuditor/script-tag-inside-svg-tag*.html
Product: WebKit Reporter: Thomas Sepez <tsepez>
Component: WebCore Misc.Assignee: Thomas Sepez <tsepez>
Status: RESOLVED FIXED    
Severity: Trivial CC: abarth, dbates, webkit.review.bot
Priority: P2 Keywords: XSSAuditor
Version: 528+ (Nightly build)   
Hardware: All   
OS: All   
Attachments:
Description Flags
Patch none

Thomas Sepez
Reported 2012-04-12 11:04:04 PDT
Several changes needed to make the XSS in these test cases fire against actual vulnerable browser: - %24 appears in a few places where %23 is required. - Appears webkit's httpd will terminate query parameters at unencoded semicolons ( ; ) - Misordered </svg></script> tags. The tests are still valid, but it is more intuitive to see the XSS pop up.
Attachments
Patch (3.66 KB, patch)
2012-04-12 11:17 PDT, Thomas Sepez 		no flags
DetailsFormatted DiffDiff
View All Add attachment proposed patch, testcase, etc.
Thomas Sepez
Comment 1 2012-04-12 11:17:20 PDT
Created attachment 136937 [details] Patch Only tests modified.
WebKit Review Bot
Comment 2 2012-04-12 11:57:41 PDT
Comment on attachment 136937 [details] Patch Clearing flags on attachment: 136937 Committed r114010: <http://trac.webkit.org/changeset/114010>
WebKit Review Bot
Comment 3 2012-04-12 11:57:47 PDT
All reviewed patches have been landed. Closing bug.
Note You need to log in before you can comment on or make changes to this bug.