diff options
| author | thomascube <thomas@roundcube.net> | 2009-03-02 14:46:12 +0000 |
|---|---|---|
| committer | thomascube <thomas@roundcube.net> | 2009-03-02 14:46:12 +0000 |
| commit | 63d4b1217216f3d04894090026ed3f01aba9b385 (patch) | |
| tree | f951e8fa1431f6dd27e255685b64628e3c49f271 /tests/src/htmlxss.txt | |
| parent | f54a3a6d41e5700c45120091a57f2c73b804ae25 (diff) | |
Create some basic unit tests based in simpletest.org
Diffstat (limited to 'tests/src/htmlxss.txt')
| -rw-r--r-- | tests/src/htmlxss.txt | 22 |
1 files changed, 22 insertions, 0 deletions
diff --git a/tests/src/htmlxss.txt b/tests/src/htmlxss.txt new file mode 100644 index 000000000..60ceb944e --- /dev/null +++ b/tests/src/htmlxss.txt @@ -0,0 +1,22 @@ +<html> +<body> + +<p><img onLoad.="alert(document.cookie)" src="skins/default/images/roundcube_logo.png" /></p> + +<p><a href="javascript:alert(document.cookie)">mail me!</a> +<a href="http://roundcube.net" target="_self">roundcube.net</a> +<a href="http://roundcube.net" \onmouseover="alert('XSS')">roundcube.net (2)</a> + +</p> + +<div>Brilliant!</div> + +<table><tbody><tr><td background="javascript:alert('XSS')">BBBBBB</td></tr></tbody></table> + +<p> +Have a nice Christmas time.<br /> +Thomas +</p> + +</body> +</html> |