Please see the hints in bug 1211384 about fixing these kinds of problems. The Firefox OS Security team is there to help you with any kind of question that you may have. You can reach out by setting the needinfo or sec-review flag to firstname.lastname@example.org Unsafe assignment to innerHTML: In apps/ftu/js/ui.js, line 560, column 5: > this.dateConfigurationLabel.innerHTML = In apps/ftu/js/wifi.js, line 333, column 7: > networksDOM.innerHTML = noResult; In apps/ftu/test/unit/language_test.js, line 21, column 5: > document.body.innerHTML = MockImportNavigationHTML; In apps/ftu/test/unit/language_test.js, line 34, column 5: > document.body.innerHTML = realHTML;
Summary: Unsafe innerHTML/outerHTML/insertAdjacentHTML usage in gaia::tv → Unsafe innerHTML/outerHTML/insertAdjacentHTML usage in gaia::first time experience
I will stop tracking the bugs and this bug is unassigned. Closing WONTFIX.
Status: NEW → RESOLVED
Last Resolved: 2 years ago
Resolution: --- → WONTFIX
You need to log in before you can comment on or make changes to this bug.