- From: Boris Zbarsky <bzbarsky@MIT.EDU>
- Date: Thu, 10 Jan 2013 10:02:12 -0500
- To: public-webappsec@w3.org
On 1/10/13 9:44 AM, Yoav Weiss wrote: > It seems that at least in some browsers, img data URIs are XSS > exploitable[1][2]. Uh.... no. They're not. What made you think they are, exactly? The links you point to certainly say nothing of the sort. -Boris
Received on Thursday, 10 January 2013 15:02:55 UTC