fix: avoid DOM Clobbering gadget in getRelativeUrlFromDocument (#18115)

jackfromeast · patak-dev · commit 179b17773cf3 · 2024-09-16T21:00:19.000+02:00
diff --git a/packages/vite/src/node/build.ts b/packages/vite/src/node/build.ts
@@ -1133,7 +1133,7 @@ const getRelativeUrlFromDocument = (relativePath: string, umd = false) =>
   getResolveUrl(
     `'${escapeId(partialEncodeURIPath(relativePath))}', ${
       umd ? `typeof document === 'undefined' ? location.href : ` : ''
-    }document.currentScript && document.currentScript.src || document.baseURI`,
+    }document.currentScript && document.currentScript.tagName.toUpperCase() === 'SCRIPT' && document.currentScript.src || document.baseURI`,
   )
 
 const getFileUrlFromFullPath = (path: string) =>

Original file line number	Diff line number	Diff line change
`@@ -1133,7 +1133,7 @@ const getRelativeUrlFromDocument = (relativePath: string, umd = false) =>`
`1133`	`1133`	`getResolveUrl(`
`1134`	`1134`	`'${escapeId(partialEncodeURIPath(relativePath))}', ${
`1135`	`1135`	umd ? `typeof document === 'undefined' ? location.href : ` : ''
`1136`		- }document.currentScript && document.currentScript.src \|\| document.baseURI`,
	`1136`	+ }document.currentScript && document.currentScript.tagName.toUpperCase() === 'SCRIPT' && document.currentScript.src \|\| document.baseURI`,
`1137`	`1137`	`)`
`1138`	`1138`
`1139`	`1139`	`const getFileUrlFromFullPath = (path: string) =>`