For the XSS attacker, couldn't they just use
`theInput.removeAttribute("writeonly"); alert(theInput.value);`?Or is this some kind of new "un-removable attribute"?
- Re: [whatwg] Proposal: Write-only submittable form-a... Boris Zbarsky
- Re: [whatwg] Proposal: Write-only submittable f... Mike West
- Re: [whatwg] Proposal: Write-only submittab... Eduardo Robles Elvira
- Re: [whatwg] Proposal: Write-only submittable form-a... Michal Zalewski
- Re: [whatwg] Proposal: Write-only submittable f... Mike West
- Re: [whatwg] Proposal: Write-only submittab... Michal Zalewski
- Re: [whatwg] Proposal: Write-only submi... Michal Zalewski
- Re: [whatwg] Proposal: Write-only s... Mike West
- Re: [whatwg] Proposal: Write-o... Michal Zalewski
- Re: [whatwg] Proposal: Wri... Mike West
- Re: [whatwg] Proposal: Write-only submittable form-a... Domenic Denicola
- Re: [whatwg] Proposal: Write-only submittable f... Tab Atkins Jr.
- Re: [whatwg] Proposal: Write-only submittab... Mike West
- Re: [whatwg] Proposal: Write-only submittab... Roger Hågensen
- Re: [whatwg] Proposal: Write-only submittable f... Mike West
- Re: [whatwg] Proposal: Write-only submittable form-a... Ben Maurer
