deac/instiki
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity

Another XSS fix

Browse source 
Yet another interesting XSS attack from 
  http://ha.ckers.org/xss.html
This commit is contained in:
Jacques Distler 2007-06-11 00:03:51 -05:00
parent aac197430c
commit c2bfdefa57
2 changed files with 14 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

14
vendor/plugins/HTML5lib/tests/test_sanitizer.rb vendored
View file

@ -398,11 +398,23 @@ class SanitizeTest < Test::Unit::TestCase
input = %(<!--[if gte IE 4]><script>alert\('XSS'\);</script><![endif]-->)
output = ""
check_sanitization(input, output, output, output)
input = %(<![if !IE 5]><script>alert\('XSS'\);</script><![endif]>)
output = "&lt;script&gt;alert('XSS');&lt;/script&gt;"
rexmloutput = "Ill-formed XHTML!"
check_sanitization(input, output, output, rexmloutput)
end
def test_xml_base
input =%(<div xml:base="javascript:alert('XSS');//">foo</div>)
input = %(<div xml:base="javascript:alert('XSS');//">foo</div>)
output = "<div>foo</div>"
check_sanitization(input, output, output, output)
end
def test_grave_accents
input =%(<img src=`javascript:alert('XSS')` />)
output = "<img/>"
rexmloutput = "Ill-formed XHTML!"
check_sanitization(input, output, output, rexmloutput)
end
end