W3C home > Mailing lists > Public > public-html@w3.org > August 2011

[Bug 13605] New: ES < and & escaping in inline script

From: <bugzilla@jessica.w3.org>
Date: Wed, 03 Aug 2011 12:55:46 +0000
To: public-html@w3.org
Message-ID: <bug-13605-2495@http.www.w3.org/Bugs/Public/>

           Summary: ES < and & escaping in inline script
           Product: HTML WG
           Version: unspecified
          Platform: PC
        OS/Version: Linux
            Status: NEW
          Severity: normal
          Priority: P2
         Component: HTML/XHTML Compatibility Authoring Guide (ed: Eliot
        AssignedTo: eliotgra@microsoft.com
        ReportedBy: plh@w3.org
         QAContact: public-html-bugzilla@w3.org
                CC: mike@w3.org, public-html-wg-issue-tracking@w3.org,
                    public-html@w3.org, eliotgra@microsoft.com

Polyglot indicates:
When polyglot markup must use script or style commands within its source code,
it uses safe content.

Safe content is content that does not contain a < or & character. The following
example is safe because it does not contain problematic characters within the
script tag.

Can one use \x3C and \x26 instead? If so, it would be nice to remind authors
about them.

Configure bugmail: http://www.w3.org/Bugs/Public/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.
Received on Wednesday, 3 August 2011 12:55:51 UTC

This archive was generated by hypermail 2.3.1 : Wednesday, 7 January 2015 16:26:01 UTC