mozilla.BenB%bucksch.org f5ccf4d5f1 - Bug 243040: Re-escape attribute values which Gecko unescaped for us. Not doing this allowed to insert arbitary unchecked HTML into the result. ...

- JS quotes in attribute values are now probably possible (but JS still usually disabled by allowed attribute prefs and javascript: URL blocker)
- removed base64 blocker which is probably pointless
- comment and debug changes
- little code style cleanup
r=akk, sr=jst

2004-06-05 22:47:40 +00:00

..

public

bug 196380

2004-06-05 17:57:00 +00:00

src

- Bug 243040: Re-escape attribute values which Gecko unescaped for us. Not doing this allowed to insert arbitary unchecked HTML into the result.

2004-06-05 22:47:40 +00:00

.cvsignore

Adding and updating necessary .cvsignore files. Bug #61550

2001-02-24 06:22:49 +00:00

Makefile.in

Bug 236613: change to MPL/LGPL/GPL tri-license.

2004-04-17 21:52:36 +00:00