[Date Prev]
| [Thread Prev]
| [Thread Next]
| [Date Next]
--
[Date Index]
| [Thread Index]
Re: [xml-dev] Namespace prefixes are a security risk
- From: Michael Ludwig <milu71@gmx.de>
- To: "'xml-dev@lists.xml.org'" <xml-dev@lists.xml.org>
- Date: Mon, 28 Dec 2009 17:32:59 +0100
Maybe I'm missing something ...
> And the prefix can be anything, e.g.,
>
> <attackNOW:book xmlns:attackNOW="http://www.book.org";>
But this just seems to be a badly chosen prefix.
> Not so innocent-looking anymore, is it?
It looks a bit silly, just like the following in C or Java:
int attackNOW = 0;
--
Michael Ludwig
[Date Prev]
| [Thread Prev]
| [Thread Next]
| [Date Next]
--
[Date Index]
| [Thread Index]
