PHP :: Bug #7086 :: Trans-sid modifies JavaScript

Bug #7086	Trans-sid modifies JavaScript
Submitted:	2000-10-08 10:36 UTC	Modified:	2000-10-16 14:20 UTC
From:	tobias at pressline dot de	Assigned:
Status:	Closed	Package:	Session related
PHP Version:	4.0 Latest CVS (08/10/2000)	OS:	linux-2.2.17
Private report:	No	CVE-ID:	None

View Developer Edit

[2000-10-08 10:36 UTC] tobias at pressline dot de

the following javascript gets modified:
function MM_swapImgRestore() { //v3.0
  var i,x,a=document.MM_sr; for(i=0;a&&i<a.length&&(x=a[i])&&x.oSrc;i++) x.src=x.oSrc;
}

function MM_preloadImages() { //v3.0
  var d=document; if(d.images){ if(!d.MM_p) d.MM_p=new Array();
    var i,j=d.MM_p.length,a=MM_preloadImages.arguments; for(i=0; i<a.length; i++)
    if (a[i].indexOf("#")!=0){ d.MM_p[j]=new Image; d.MM_p[j++].src=a[i];}}
}

function MM_findObj(n, d) { //v3.0
  var p,i,x;  if(!d) d=document; if((p=n.indexOf("?"))>0&&parent.frames.length) {
    d=parent.frames[n.substring(p+1)].document; n=n.substring(0,p);}
  if(!(x=d[n])&&d.all) x=d.all[n]; for (i=0;!x&&i<d.forms.length;i++) x=d.forms[i][n];
  for(i=0;!x&&d.layers&&i<d.layers.length;i++) x=MM_findObj(n,d.layers[i].document); return x;
}

function MM_swapImage() { //v3.0
  var i,j=0,x,a=MM_swapImage.arguments; document.MM_sr=new Array; for(i=0;i<(a.length-2);i+=3)
   if ((x=MM_findObj(a[i]))!=null){document.MM_sr[j++]=x; if(!x.oSrc) x.oSrc=x.src; x.src=a[i+2];}
}

modified version: (there are a couple of " added to the script)

function MM_swapImgRestore() { //v3.0
  var i,x,a=document.MM_sr; for(i=0;a&&i<a.length&&(x="a[i])&&x.oSrc;i++)" x.src="x.oSrc;"
}

function MM_preloadImages() { //v3.0
  var d="document;" if(d.images){ if(!d.MM_p) d.MM_p="new"  Array();
    var i,j="d.MM_p.length,a=MM_preloadImages.arguments;" for(i="0;" i<a.length; i++)
    if (a[i].indexOf("#")!=0){ d.MM_p[j]=new Image; d.MM_p[j++].src="a[i];}}"
}

function MM_findObj(n, d) { //v3.0
  var p,i,x;  if(!d) d="document;" if((p="n.indexOf(""?"))>0&&parent.frames.length) {
    d=parent.frames[n.substring(p+1)].document; n=n.substring(0,p);}
  if(!(x=d[n])&&d.all) x=d.all[n]; for (i=0;!x&&i<d.forms.length;i++) x=d.forms[i][n];
  for(i=0;!x&&d.layers&&i<d.layers.length;i++) x=MM_findObj(n,d.layers[i].document); return x;
}

function MM_swapImage() { //v3.0
  var i,j=0,x,a=MM_swapImage.arguments; document.MM_sr=new Array; for(i=0;i<(a.length-2);i+=3)
   if ((x=MM_findObj(a[i]))!=null){document.MM_sr[j++]=x; if(!x.oSrc) x.oSrc=x.src; x.src=a[i+2];}
}

Patches

Pull Requests

History

AllCommentsChangesGit/SVN commitsRelated reports

[2000-10-16 14:20 UTC] sas@php.net

Trans-sid modifies HTML, so if your JavaScript contains HTML, we recommened to escape it:

var foo = "<a href='url'>";

becomes

var foo = "<a "+"href='url'>";

	php.net \| support \| documentation \| report a bug \| advanced search \| search howto \| statistics \| random bug \| login
go to bug id or search bugs for


Copyright © 2001-2025 The PHP Group All rights reserved.	Last updated: Thu Oct 30 07:00:02 2025 UTC