Revisions to Safely turning a JSON string into an object

edited tags

Link

edited Sep 21, 2020 at 12:15

javascript json parsing

edited for readability

Source Link

edited Nov 27, 2019 at 0:55

Given a string of JSON data, how can youI safely turn that string into a JavaScript object?

Obviously youI can do this unsafely with something like...:

var obj = eval("(" + json + ')');

...but but that leaves usme vulnerable to the jsonJSON string containing other code, which it seems very dangerous to simply eval.

Given a string of JSON data, how can you safely turn that string into a JavaScript object?

Obviously you can do this unsafely with something like...

var obj = eval("(" + json + ')');

...but that leaves us vulnerable to the json string containing other code, which it seems very dangerous to simply eval.

Given a string of JSON data, how can I safely turn that string into a JavaScript object?

Obviously I can do this unsafely with something like:

var obj = eval("(" + json + ')');

but that leaves me vulnerable to the JSON string containing other code, which it seems very dangerous to simply eval.

Question Protected by cassiomolin

occurred Feb 28, 2019 at 9:07

removed ajax tag, irrelevant

Link

javascript ajax json

Source Link

asked Sep 5, 2008 at 0:12

Loading

Return to Question