instiki/vendor/plugins/HTML5lib/testdata
Jacques Distler 52c1f74ecc Add a couple of XSS tests.
Some more tests from Clint Ruoho. The main branch of Instiki (and, I guess,
the old sanitizer) are vulnerable.

Also: under Ruby 1.8.x, CGI.unescapeHTML screws up horribly decoding NCRs
which represent high-bit ASCII characters. UTF-8 agrees with 7-bit ASCII,
but CGI.unescapeHTML doesn't seem to know that they disagree for i>127.
2009-01-05 16:25:27 -06:00
..
encoding Sanitize url refs in SVG attributes 2007-10-27 17:34:29 -05:00
sanitizer Add a couple of XSS tests. 2009-01-05 16:25:27 -06:00
serializer Minor S5 tweaks and Sync with Latest HTML5lib 2007-08-30 12:19:10 -05:00
sites Sync with latest HTML5lib 2007-06-11 23:33:06 -05:00
sniffer Minor S5 tweaks and Sync with Latest HTML5lib 2007-08-30 12:19:10 -05:00
tokenizer Update to latest HTML5lib 2007-09-09 22:26:19 -05:00
tree-construction Fix Unicode bug 2007-12-17 03:17:43 -06:00
validator Sync with latest HTML5lib 2007-10-06 11:55:58 -05:00