[WebKit-devel] [Bug 217464] Universal XSS and / or crash
Tim Brown
kde at machine.org.uk
Sat Feb 6 11:44:21 CET 2010
https://bugs.kde.org/show_bug.cgi?id=217464
--- Comment #9 from Tim Brown <kde machine org uk> 2010-02-06 11:44:13 ---
Possibly, I would need to build rekonq from git to confirm. I've seen the
changes but I don't know Qt well enough to give you a guaranteed answer without
checking. Unfortunately, Qt in Debian hasn't quite caught up with where Rekonq
is at, so for now I can't build it :(.
I have also found further cases of XSS. When you open a new tab you get a tool
bar with favourites, bookmarks, closed tabs and history. These "about:" views
are rendered using webkit's HTML rendering engine and can therefore be used to
execute injected Javascript. For example any HTML including script tags in the
title of the page, or the URL will be rendered. Luckily document.domain for
these is not set, so the associated risk is less severe, but still.
--
Configure bugmail: https://bugs.kde.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.
More information about the WebKit-devel
mailing list