"target" in "approved by..." links' tooltips

Just noticed by accident that on the "Recent Threads" page in the "approved by" links' titles, the substring "target" is being replaced by " ", e.g.

<a href="?node_id=520366" target title="Approved by  smart">A</a>
                                                    ^
[download]

in a node approved by targetsmart (as for example the recent 764194).

Certainly not the most important thing in the world... just wondering if that's some curious security feature (or side effect thereof), or simply a bug.

Update: actually, looking more closely, it seems to become a bogus target attribute (without value) of the <a ...> tag.

So now I wonder whether this is maybe more of a security issue than a security feature... but I won't create a user target=""onmouseover="javascript:..."smart (and wait until that user is allowed to approve) just in order to try :)

(where ... is some evil javascript that posts your credentials to a site of mine, or some such)

Comment on "target" in "approved by..." links' tooltips Select or Download Code

Replies are listed 'Best First'.
Re: "target" in "approved by..." links' tooltips (RSN) by tye (Sage) on May 16, 2009 at 04:27 UTC
Thanks. I see the source of the problem and should be able to find the time to fix it fairly soon. No, it won't allow you to sneak unapproved attributes like onmouseover into HTML. And you don't have to create a user or approve nodes to exercise the bug. Just write, for example, `<a href="/?node=login" title="and methion targetsomething">link</a>`: link - tye	[reply] [d/l]