Skip to content
This repository was archived by the owner on May 14, 2020. It is now read-only.

Commit 1ca8708

Browse files
csanders-gitlifeforms
csanders-git
authored and
lifeforms
committed
Updating quotes to fix 941190
(cherry picked from commit 6d0b0ab)
1 parent 5206485 commit 1ca8708

File tree

2 files changed

+6
-6
lines changed

2 files changed

+6
-6
lines changed

util/regression-tests/tests/REQUEST-941-APPLICATION-ATTACK-XSS/941100.yaml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -6,7 +6,7 @@
66
description: "Tests to trigger, or not trigger 941100"
77
tests:
88
-
9-
test_title: 941100-1
9+
test_title: 941100-1FN
1010
desc: Test as described in http://www.client9.com/article/five-interesting-injection-attacks/
1111
stages:
1212
-
@@ -20,7 +20,7 @@
2020
User-Agent: ModSecurity CRS 3 Tests
2121
Host: localhost
2222
output:
23-
log_contains: id "941100"
23+
no_log_contains: id "941100"
2424
-
2525
test_title: 941100-2
2626
desc: XSS in XML Test as described in http://www.client9.com/article/five-interesting-injection-attacks/
@@ -71,7 +71,7 @@
7171
output:
7272
no_log_contains: id "941100"
7373
-
74-
test_title: 941100-5
74+
test_title: 941100-5FN
7575
desc: XSS testing of libinjection in User-Agent
7676
stages:
7777
-
@@ -86,4 +86,4 @@
8686
Referer: '/demo/xss/xml/vuln.xml.php?input=<script xmlns="http://www.w3.org/1999/xhtml">setTimeout("top.frame2.location=\"javascript:(function () {var x = document.createElement(\\\"script\\\");x.src = \\\"//sdl.me/popup.js?//\\\";document.childNodes\[0\].appendChild(x);}());\"",1000)</script>&//'
8787
Host: localhost
8888
output:
89-
log_contains: id "941100"
89+
no_log_contains: id "941100"

util/regression-tests/tests/REQUEST-941-APPLICATION-ATTACK-XSS/941190.yaml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -19,7 +19,7 @@
1919
headers:
2020
User-Agent: ModSecurity CRS 3 Tests
2121
Host: localhost
22-
data: '941190-1=<STYLE>@import'http://xss.rocks/xss.css';</STYLE>'
22+
data: "941190-1=<STYLE>@import'http://xss.rocks/xss.css';</STYLE>"
2323
output:
2424
log_contains: id "941190"
2525
-
@@ -36,7 +36,7 @@
3636
headers:
3737
User-Agent: ModSecurity CRS 3 Tests
3838
Host: localhost
39-
data: 'x=<STYLE>@im\\port'\\ja\vasc\\ript:alert('XSS')';</STYLE>'
39+
data: "x=<STYLE>@im\\port'\\ja\vasc\\ript:alert('XSS')';</STYLE>"
4040
output:
4141
log_contains: id "941190"
4242
-

0 commit comments

Comments
 (0)