P3
Note, the webview is working under our swing application
In our application, we have a feature to allow user to upload some html content to our system. We find that
some misused script will lead the JVM crashed.
Because we cannot guarantee that user's script is complete safe, so this issue is quite fatal to us.
a proved script is like below
The cause we beleive is DOMSubtreeModified event here.
<script>
$('iframe#myIframe').attr('src', 'inner.html');
$('iframe#myIframe').load(function(){
$('html', $('#myIframe').contents()).bind("DOMSubtreeModified", function() {
$(this).attr('disabled','true');
});
});
//retrieveData();
</script>
In our application, we have a feature to allow user to upload some html content to our system. We find that
some misused script will lead the JVM crashed.
Because we cannot guarantee that user's script is complete safe, so this issue is quite fatal to us.
a proved script is like below
The cause we beleive is DOMSubtreeModified event here.
<script>
$('iframe#myIframe').attr('src', 'inner.html');
$('iframe#myIframe').load(function(){
$('html', $('#myIframe').contents()).bind("DOMSubtreeModified", function() {
$(this).attr('disabled','true');
});
});
//retrieveData();
</script>