Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

WebKit; worse off, WebKit and Chromium expose SQLite almost directly through WebSQL! Drive-by malware!


If I understand correctly, it requires JS to be enabled (which it is usually).

(Edit: wrong term, it's not "HTML5 Local Storage", it's "HTML5 Database" thanks):

Chromium (EDIT: idk yet)

Webkit2: https://webkitgtk.org/reference/webkit2gtk/stable/WebKitSett...


Drive-by malware used to require Flash or Java... which used to always be enabled.

Edit: don't disable local storage! you'll break lots of things that way, and I don't think that includes WebSQL.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: