[Greasemonkey] Re: unsafeWindow.XmlHttpRequest in Greasemonkey
0.6.4
Aaron Boodman
zboogs at gmail.com
Thu Jan 12 18:32:10 EST 2006
On 1/12/06, Julien Couvreur <julien.couvreur at gmail.com> wrote:
> The first line succeeded, alerting with "[XMLHttpRequest]".
Great! so something wonky on that first machine.
> And the second also succeeded too, leaking GM_log into the page. Then
> I used the shell to call window.GM_log and it wrote to the console.
There's a very confusing web of permissions that comes in to play when
you call a chrome-defined function from shell via a content object. I
would think it would be disallowed, but not totally sure. To be sure,
you should try calling it from an actual HTML file loaded into the
browser.
I would still greatly prefer that you not do this, even if it works,
but instead use another method to do the logging like opening a blank
text window and writing to it.
- a
More information about the Greasemonkey
mailing list