agerix/jQuery-Autocomplete
2
0
Fork 0
mirror of https://github.com/devbridge/jQuery-Autocomplete.git synced 2024-11-26 06:46:32 +00:00
Code Issues Releases Activity

Update src/jquery.autocomplete.js

Browse Source 
Using the native JSON.parse built-in function in the browsers if it's available.
Adds more security to it, so the autocomplete is less prone to XSS attacks.
This commit is contained in:
Michiel 2012-11-15 16:21:55 +01:00
parent 8211e43cfd
commit 88bdbaf787
1 changed files with 4 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
src/jquery.autocomplete.js
View File

@ -361,7 +361,10 @@
var response; var response;
try { try {
response = eval('(' + text + ')'); if (typeof(JSON) != "undefined" && typeof(JSON.parse) != "undefined")
response = JSON.parse(text);
else
response = eval('(' + text + ')');
} catch (err) { } catch (err) {
return; return;
} }