Custom Query (13852 matches)
Results (10 - 12 of 13852)
Ticket | Resolution | Summary | Owner | Reporter | |
---|---|---|---|---|---|
#15226 | notabug | Invalidating issue #9521 | |||
Description |
When including "jquery migrate" library after jquery (in that particular order) you get to invalidate issue #9521, creating a XSS condition. <html><head> <script src='http://code.jquery.com/jquery-1.11.1.js'></script> <script src='http://code.jquery.com/jquery-migrate-1.2.1.js'></script> </head><body><a href="" ></a><script> $('a[href="' + window.location.hash + '"]'); </script></body></html> When passing a selector plus an item as a parameter: $('a[href="<img src=a onerror=alert()>"]'); And then calling. http://localhost/test.html#<img src=a onerror=alert()> Would trigger the XSS condition. |
||||
#9692 | invalid | bug about function addclass | |||
Description |
in 1.6.2rc1 if setClass like "myclassname1" if i want addClass("classname1") then wrong in 1.5.1
is right |
||||
#14098 | notabug | contents()function can't support 'frame',only 'iframe' | |||
Description |
contents: function( elem ) {
|
Note: See TracQuery
for help on using queries.