Message 123016 - Python tracker

➜

This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author	Michael.Brooks
Recipients	Michael.Brooks
Date	2010-12-01.21:21:45
SpamBayes Score	5.68648e-06
Marked as misclassified	No
Message-id	<1291238509.2.0.989759336682.issue10599@psf.upfronthosting.co.za>
In-reply-to

Content
In the attached example is a very simple usage of sgmllib that is trying to parse: <input value="><a href=http://bug>link</a>"> The bug is that sgmllib is parsing this href. Browsers on the other hand see this as the input's value. Also keep in mind that escaping of quote marks in HTML is not like python. \" is not a character literal " thus <input value="\"><a href=http://bug>link</a>"> is still quoted text and the href should not be parsed. Thank you

In the attached example is a very simple usage of sgmllib that is trying to parse:
<input value="><a href=http://bug>link</a>">

The bug is that sgmllib is parsing this href.  Browsers on the other hand see this as the input's value.  

Also keep in mind that escaping of quote marks in HTML is not like python.  \" is not a character literal "  thus <input value="\"><a href=http://bug>link</a>"> is still quoted text and the href should not be parsed. 

Thank you

History
Date	User	Action	Args
2010-12-01 21:21:49	Michael.Brooks	set	recipients: + Michael.Brooks
2010-12-01 21:21:49	Michael.Brooks	set	messageid: <1291238509.2.0.989759336682.issue10599@psf.upfronthosting.co.za>
2010-12-01 21:21:45	Michael.Brooks	link	issue10599 messages
2010-12-01 21:21:45	Michael.Brooks	create