111Re: [caplet] Re: ADsafe, Take 6
- Oct 19 9:48 AMWhy is ADsafe allowing invalid HTML at all? It seems like requiring
the HTML to be well-formed is a good first step in trying to
understand how it will be executed in different browsers.
On 10/19/07, collin_jackson <collinj@...> wrote:
> Here's another one:
> --- In email@example.com, "Douglas Crockford" <douglas@...> wrote:
> > --- In firstname.lastname@example.org, "collin_jackson" <collinj@> wrote:
> > >
> > > <div x="\"><img onload=alert(42)
> > > src=http://json.org/img/json160.gif>"></div>
> > Excellent. Keep them coming.
- << Previous post in topic Next post in topic >>