diff options
| author | Byron Jones <glob@mozilla.com> | 2015-07-02 07:17:37 +0200 |
|---|---|---|
| committer | Byron Jones <glob@mozilla.com> | 2015-07-02 07:17:37 +0200 |
| commit | 09b4735659156961621663ed65b9175e69a7f3f2 (patch) | |
| tree | e44904d82f80d0a41a051815271b24690b5ab0fd /extensions | |
| parent | a5f0c0cbff15f9de31b312cb3d57faa0a5b77f43 (diff) | |
| download | bugzilla-09b4735659156961621663ed65b9175e69a7f3f2.tar.gz bugzilla-09b4735659156961621663ed65b9175e69a7f3f2.tar.xz | |
Bug 1171758: Persistent xss is possible on Firefox
Diffstat (limited to 'extensions')
| -rw-r--r-- | extensions/InlineHistory/web/inline-history.js | 10 |
1 files changed, 7 insertions, 3 deletions
diff --git a/extensions/InlineHistory/web/inline-history.js b/extensions/InlineHistory/web/inline-history.js index 4c4452d6a..0c8293519 100644 --- a/extensions/InlineHistory/web/inline-history.js +++ b/extensions/InlineHistory/web/inline-history.js @@ -379,9 +379,13 @@ var inline_history = { }, confirmUnsafeUrl: function(url) { - return confirm( - 'This is considered an unsafe URL and could possibly be harmful.\n' - + 'The full URL is:\n\n' + url + '\n\nContinue?'); + try { + return confirm( + 'This is considered an unsafe URL and could possibly be harmful.\n' + + 'The full URL is:\n\n' + url + '\n\nContinue?'); + } catch(e) { + return false; + } }, previousElementSibling: function(el) { |