Script Execution - innerHTML, jQuery html ()

Question

Script Execution - innerHTML, jQuery html ()

document.body.innerHTML = "<script>alert(11);</script>"

$("body").html("<script>alert(11);</script>")

innerHTML

not executed.

Performed

jQuery html()

.

Why is that?

+3

javascript jquery html innerhtml

user3336280 06 Aug '14 at 1:17

source to share

3 answers

Alexander O'Mara · Answer 1 · 2014-08-06T01:43:40+0000

Without getting into theoretical questions about why jQuery chose to do this, jQuery html()

behaves differently than native innerHTML

. By default jQuery will find script tags in HTML and load asynchronously. If this behavior is undesirable, you can use $.parseHTML

to prevent this from happening by setting the third argument to false

.

$("body").empty().append($.parseHTML("<script>alert(11);</script>", document, false));

Please note that script tags will not be added to the DOM using this method.

Conversely, if you want to achieve the same effect as your jQuery statement in vanilla JS, you can do the following.

var script = document.createElement('script');
script.text = 'alert(11);';
document.body.innerHTML = '';
document.body.appendChild(script);

jned29 · Answer 2 · 2014-08-06T01:31:47+0000

Try it...

var x = document.createElement('script');
var y = document.getElementsByTagName('script')[0];
x.text = "alert(11);"
y.parentNode.insertBefore(x, y);

ahj.ashish · Answer 3 · 2014-08-06T01:47:28+0000

Using innerHTML will stop the script execution according to the documentation in simple terms, without going into details.

<script type="text/javascript">
    var script = document.createElement('script');
    script.appendChild(document.createTextNode("alert('11')"));
    document.body.appendChild(script);
</script>

Script Execution - innerHTML, jQuery html ()

More articles: