I realize that I'm on XML.com, but....

O'Reilly Home
Community
Books & Videos
Safari Books Online
Conferences
Training
School of Technology
About

Article:
Very Dynamic Web Interfaces

Subject: I realize that I'm on XML.com, but....

Date: 2005-04-26 15:58:43

From: krufty

Response to: I realize that I'm on XML.com, but....

incidentally, a programmer mistake by parsing literals on a data feed could result in something like

If your datafeed contained:

alert("oops, thought i took this debug line out of here");

you'd execute it. The datafeed cannot accidentally cause the calling page to execute javascript code unless you eval the data coming back.

Previous Message Up Next Message