JS prototype chain properties should not be treated as entities #370

karfau · 2022-01-27T06:42:03Z

Source code using in instead of Object.hasOwnProperty:

Lines 68 to 69 in 40745c6

    
           if(k in entityMap){ 
        
           	return entityMap[k];

import { DOMParser, XMLSerializer } from '@xmldom/xmldom';

const source = `<xml>&hasOwnProperty; &__proto__; &constructor;</xml>`;

const doc = new DOMParser({ errorHandler: console.error }).parseFromString(
  source,
  'text/xml'
);
console.log(
  doc.documentElement.toString()
);

leads to the output
<xml>function hasOwnProperty() { [native code] </xml>

Try it: https://stackblitz.com/edit/js-xmldom370?devtoolsheight=33&file=index.js

The text was updated successfully, but these errors were encountered:

Fixes xmldom#370

karfau added the bug Something isn't working label Jan 27, 2022

karfau mentioned this issue Jan 27, 2022

Parse internal entity declarations in internal DTD #367

Closed

4 tasks

karfau added this to the 0.8.x milestone Jan 27, 2022

karfau added a commit to karfau/xmldom that referenced this issue Feb 13, 2022

fix(sax): Only use own properties in entityMap

2f90b45

Fixes xmldom#370

karfau mentioned this issue Feb 13, 2022

fix(sax): Only use own properties in entityMap #374

Merged

karfau closed this as completed in #374 Feb 13, 2022

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

JS prototype chain properties should not be treated as entities #370

JS prototype chain properties should not be treated as entities #370

karfau commented Jan 27, 2022 •

edited

Loading

JS prototype chain properties should not be treated as entities #370

JS prototype chain properties should not be treated as entities #370

Comments

karfau commented Jan 27, 2022 • edited Loading

karfau commented Jan 27, 2022 •

edited

Loading