Skip to content
This repository was archived by the owner on May 14, 2020. It is now read-only.

Commit 1c2e631

Browse files
lifeformslifeforms
authored
Merge pull request #1571 from dune73/new-tests-for-941290
Adding new test for 941260 and 941290 based on XSS cheatsheet by portswigger
2 parents 8877f8d + 47dd151 commit 1c2e631

File tree

2 files changed

+32
-0
lines changed

2 files changed

+32
-0
lines changed

util/regression-tests/tests/REQUEST-941-APPLICATION-ATTACK-XSS/941260.yaml

Lines changed: 16 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -21,3 +21,19 @@
2121
version: HTTP/1.0
2222
output:
2323
log_contains: id "941260"
24+
-
25+
test_title: 941260-2
26+
desc: "XSS test based on portswigger XSS cheatsheet"
27+
stages:
28+
-
29+
stage:
30+
input:
31+
dest_addr: 127.0.0.1
32+
headers:
33+
Host: localhost
34+
method: POST
35+
port: 80
36+
data: "payload=<meta charset=\"UTF-7\" /> +ADw-script+AD4-alert(1)+ADw-/script+AD4-</a>"
37+
version: HTTP/1.0
38+
output:
39+
log_contains: id "941260"

util/regression-tests/tests/REQUEST-941-APPLICATION-ATTACK-XSS/941290.yaml

Lines changed: 16 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -21,3 +21,19 @@
2121
version: HTTP/1.0
2222
output:
2323
log_contains: id "941290"
24+
-
25+
test_title: 941290-2
26+
desc: "XSS test based on portswigger XSS cheatsheet"
27+
stages:
28+
-
29+
stage:
30+
input:
31+
dest_addr: 127.0.0.1
32+
headers:
33+
Host: localhost
34+
method: POST
35+
port: 80
36+
data: "payload=<applet onreadystatechange=alert(1)></applet></a>"
37+
version: HTTP/1.0
38+
output:
39+
log_contains: id "941290"

0 commit comments

Comments
 (0)