[WebKit-devel] [Bug 217464] Universal XSS and / or crash
Tim Brown
kde at machine.org.uk
Sat Dec 5 22:18:39 CET 2009
https://bugs.kde.org/show_bug.cgi?id=217464
--- Comment #2 from Tim Brown <kde machine org uk> 2009-12-05 22:18:37 ---
Looks like QtDemoBrowser is also affected and is more than likely the original
source of the bug:
demos/browser/webview.cpp:
QFile file(QLatin1String(":/notfound.html"));
bool isOpened = file.open(QIODevice::ReadOnly);
Q_ASSERT(isOpened);
Q_UNUSED(isOpened)
QString title = tr("Error loading page: %1").arg(reply->url().toString());
QString html = QString(QLatin1String(file.readAll()))
.arg(title)
.arg(reply->errorString())
.arg(reply->url().toString());
--
Configure bugmail: https://bugs.kde.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.
More information about the WebKit-devel
mailing list