[Bug 305976] Plugins should be able to inject code in the <head> section of Template.html

Wed Aug 29 11:40:26 BST 2012

https://bugs.kde.org/show_bug.cgi?id=305976

Martin Klapetek <martin.klapetek at gmail.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |martin.klapetek at gmail.com

--- Comment #1 from Martin Klapetek <martin.klapetek at gmail.com> ---
Be super careful with allowing third-parties to inject custom javascript. I'm
not sure about QtWebKit security, but cross-site scripting can be very
dangerous. This also allows sending data (like the conversation history) to any
server.

-- 
You are receiving this mail because:
You are the assignee for the bug.