tags:

views:

56

answers:

1
Q: 

IE javascript html encoding weirdness

Put this in your location bar in IE

javascript:location.href='http://www.google.com/search?q=something&lt=bar'

Watch in horror as it helpfully thinks &lt actually means &lt; and makes it a <.

WTF is going on here?

Other browsers don't do this. How do I prevent IE from doing this?

+1  A: 

Since this is part of an HTML document you should escape the & by replacing it by &amp;

An ampersand '&' in HTML mark the start of a character reference entity such as &lt; &gt; and &eacute;

Literal ampersands in your document should be written as &amp;

Note that if that code is generated dynamical you should also escape the URL so that it can appear in a javascript string as well.

Edited: I can confirm this particular problem occurs when pasting javascript code directly in the address bar. It seems HTML character escaping rules are irrelevant here after all.

I've googled a bit and found this blog post which identify that particular behavior as an ie bug.

Alexandre Jasmin  2009-12-31 04:46:47
This occurs even when you run javascript in the location bar.It would even occur when referring the function from a .js file.And doing this would break every other browser which doesn't expect javascript strings to be encoded. (It breaks chrome and firefox for sure - not sure about Opera)
HS  2009-12-31 05:17:57
@HS Your're right. I found this blog post about the issue it looks like an ie bug http://nedbatchelder.com/blog/200812/accidental_html_entities_in_urls.html
Alexandre Jasmin  2009-12-31 05:31:11
Nice find. I tried googling but didn't know what keywords to use. Re-arranging the query string would solve this problem. Thanks. I'm going to mark this answer as 'correct' - edit your post to add this link to it.
HS  2009-12-31 05:51:58

related questions

What JavaScript patterns do you use most?
Javascript events
What style do you use for creating an "class" in JavaScript?
Graphing JavaScript Library
What's the difference in closure style
Getting the text from a drop-down box
How to specify javascript to run when ModalPopupExtender is shown
Length of Javascript Associative Array
How Do I Post and then redirect to an external URL from ASP.Net?
How to set up a CSS switcher in ASP.NET
Wrapping lists into columns
Javascript keyboard events primer? (or rather: help me with my custom dropdown)
Http Auth in a Firefox 3 bookmarklet
Best Debugging Tools for JavaScript/xulrunner Development
How can I turn a string of HTML into a DOM object in a Firefox extension?
Call ASP.NET Function From Javascript?
Javascript troubleshooting tools in IE
MAC addresses in JavaScript
Capturing TAB key in text box
CSS Background Color in Javascript
How can I make the browser see CSS and Javascript changes?
Triple Quotes? How do I delimit a databound Javascript string parameter in ASP.NET?
ASP .Net Custom Client-Side Validation
What JavaScript library would you choose for a new project and why?
Detecting font in JavaScript