-
Type:
Bug
-
Resolution: Unresolved
-
Priority:
Later
-
None
-
Affects Version/s: 6.5.3, 9.0.0
-
Component/s: ZK Loader
-
None
-
None
Similar to ZK-1836 the error can be reproduced by adding a space after "script"
<zk> If you can see the log with "</script >", the bug is fixed. <script> var s = "</script >"; zk.log(s); </script> </zk>
or
<zk> If you can see the log with "</script >", the bug is fixed. <script><![CDATA[ var s = "</script >"; zk.log(s); ]]></script> </zk>
Assuming other breaking variants exist we should consider using a dedicated encoding/escaping library.
- clones
-
ZK-1836 Javascript string with </script> escape issue
-
- Closed
-