Changes between Initial Version and Version 1 of Ticket #50997, comment 9
- Timestamp:
- 07/16/2022 08:54:21 AM (4 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
Ticket #50997, comment 9
initial v1 1 1 Sorry, I meant of course Function (capital F) object. Examples: 2 2 * https://github.com/WordPress/WordPress/blob/master/wp-includes/js/dist/data.js#L346 3 * https://github.com/WordPress/WordPress/blob/master/wp-includes/js/dist/block-editor.js 3 * https://github.com/WordPress/WordPress/blob/master/wp-includes/js/dist/block-editor.js (e.g. line 49564 which is unfortunately a good example for a vulnerability representing a cross-site-scripting attack) 4 4 5 5 As you see it is the same as eval and thus bad.