Status: Accepted Owner: zcorpan New issue 92 by zcorpan: Possible to make IE run script after roundtripping in html5lib http://code.google.com/p/html5lib/issues/detail?id=92
What steps will reproduce the problem? Input: <br title=`><xmp>`><script>alert(1)</script></xmp> Serialization options: omit quotes. What is the expected output? Attribute values with ` in them should be quoted even with the omit quotes setting. What do you see instead? Quotes are omitted and hence, the script is run in IE. Please use labels and text to provide additional information. -- You received this message because you are listed in the owner or CC fields of this issue, or because you starred this issue. You may adjust your issue notification preferences at: http://code.google.com/hosting/settings --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "html5lib-discuss" group. To post to this group, send email to html5lib-discuss@googlegroups.com To unsubscribe from this group, send email to html5lib-discuss+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/html5lib-discuss?hl=en-GB -~----------~----~----~----~------~----~------~--~---
RetroSearch is an open source project built by @garambo | Open a GitHub Issue
Search and Browse the WWW like it's 1997 | Search results from DuckDuckGo
HTML:
3.2
| Encoding:
UTF-8
| Version:
0.7.4