[whatwg] Security attacks on local storage
Ian Hickson
ian at hixie.ch
Fri Feb 20 14:15:44 PST 2009
On Fri, 20 Feb 2009, David Gerard wrote:
>
> http://research.zscaler.com/2009/02/practical-example-of-cssqli-using.html
> http://it.slashdot.org/article.pl?sid=09/02/19/2055210
As Anne noted, this appears to be a bogus claim. I do not intend to change
the spec here. If anyone sees an actual localStorage threat here, please
let me know.
--
Ian Hickson U+1047E )\._.,--....,'``. fL
http://ln.hixie.ch/ U+263A /, _.. \ _\ ;`._ ,.
Things that are impossible just take longer. `._.-(,_..'--(,_..'`-.;.'
More information about the whatwg
mailing list