Closed
Bug 305656
Opened 19 years ago
Closed 19 years ago
Deer Park - specifying JavaScript code in frame src attribute doesn't work
Categories
(Core :: DOM: Core & HTML, defect)
Tracking
()
VERIFIED
DUPLICATE
of bug 306630
People
(Reporter: mirzmaster+bugzilla, Unassigned)
Details
(Keywords: regression)
Attachments
(1 file)
|
300 bytes,
text/html
|
Details |
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8b4) Gecko/20050822 Firefox/1.0+ Build Identifier: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8b4) Gecko/20050822 Firefox/1.0+ The src attribute of a frame does not seem to accept JavaScript code or function calls that output HTML. This appears to be a regression from Firefox 1.0.6. I have attached a simplified test case that illustrates the problem. In Deer Park, the top frame will remain blank, whereas Firefox 1.0.6 will render the correct output. Was this feature disabled to prevent XSS vulnerabilities? Reproducible: Always Steps to Reproduce: 1. View a framed HTML page where one of the frame's src attributes is JavaScript. Actual Results: Frame with JavaScript src does not render. Context menu on that frame has three options: Copy Select All -------------- View Selection Source Expected Results: Output results of JavaScript into frame.
|
Reporter | |
Comment 1•19 years ago
|
||
The testcase could be further simplified by changing the frame's src attribute
value to "javascript:document.write("Hello, World!");". The results are the
same in either case.|
|
Reporter | |
Updated•19 years ago
|
Attachment #193597 -
Attachment mime type: text/plain → text/html
|
||
Comment 2•19 years ago
|
||
not js engine, over to dom0
Assignee: general → general
Component: JavaScript Engine → DOM: Level 0
QA Contact: general → ian
|
||
Updated•19 years ago
|
Keywords: regression
|
|
Reporter | |
Comment 3•19 years ago
|
||
(In reply to comment #2) > not js engine, over to dom0 I really took a long hard look at which Component to file this bug under and JS Engine was my best guess. :) Oh well, thank you for sending it to the correct category!
|
|
Reporter | |
Updated•19 years ago
|
Flags: blocking1.8b5?
|
|
Reporter | |
Updated•19 years ago
|
Flags: blocking1.8b5? → blocking1.8b4?
|
||
Comment 4•19 years ago
|
||
Sohail, do you know when this regressed? Would you be willing to investigate nightly builds to determine that?
|
|
Reporter | |
Comment 5•19 years ago
|
||
(In reply to comment #4) > Sohail, do you know when this regressed? Would you be willing to investigate > nightly builds to determine that? Sure, I'll take a look into it tonight.
|
||
Comment 6•19 years ago
|
||
This is actually the exact same issue as I just reported (as a dupe) in bug 306630. Duping to that bug since there's already a fix there. *** This bug has been marked as a duplicate of 306630 ***
Status: UNCONFIRMED → RESOLVED
Closed: 19 years ago
Resolution: --- → DUPLICATE
|
|
||
Updated•19 years ago
|
Status: RESOLVED → VERIFIED
Flags: blocking1.8b4?
You need to log in
before you can comment on or make changes to this bug.
Description
•