感谢您的任何想法和建议！ ---- Scott。/I only have a rough knowledge of the full power of cascadingstylesheets. Are there any other security concerns I should bethinking about? In particular, is there any way to embedclient-executed code (like JavaScript) into a stylesheet, implementsome other kind of cross-site scripting attack, or otherwise cause thestylesheet to do anything besides alter the display of the page?Any other risks I may not have considered?Thanks for any thoughts and advice!----Scott. 这篇关于从CGI参数中获取样式表URL的安全隐患的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持！ 上岸，阿里云！