root/trunk/plagger/t/samples/evil.xml

Revision 1656 (checked in by miyagawa, 14 years ago)
  • Updated captured variable name to $warnings.
  • Fixed POD bug in Publish::Takahashi
  • Updated ID of Publish::Takahashi test to use MD5 of file path, since it depends on local path, Eh.
  • Added failing test for Planet XSS bug
Line 
1 <?xml version="1.0" encoding="utf-8"?>
2 <feed xmlns="http://purl.org/atom/ns#" xmlns:default="http://www.w3.org/1999/xhtml">
3   <title xmlns="http://purl.org/atom/ns#">Evil Feed</title>
4   <author xmlns="http://purl.org/atom/ns#">
5     <name xmlns="http://purl.org/atom/ns#">mock at obscurity dot org</name>
6   </author>
7   <link xmlns="http://purl.org/atom/ns#" rel="alternate" href="javascript:alert('XSS');" type="text/html"/>
8   <tagline xmlns="http://purl.org/atom/ns#">OMGWTFBBQ</tagline>
9
10   <entry xmlns="http://purl.org/atom/ns#" xmlns:default="http://www.w3.org/1999/xhtml">
11     <title xmlns="http://purl.org/atom/ns#">feed sillyness</title>
12     <link xmlns="http://purl.org/atom/ns#" rel="alternate" href="http://sketchfactory.com/xxx" type="text/html"/>
13     <issued xmlns="http://purl.org/atom/ns#">2006-08-24T06:56:00-07:00</issued>
14     <content xmlns="http://purl.org/atom/ns#" xmlns:default="http://www.w3.org/1999/xhtml" mode="escaped" type="text/html">
15 <![CDATA[<iframe src.="javascript:alert('XSS')" />]]>
16 </content>
17   </entry>
18
19 </feed>
20
Note: See TracBrowser for help on using the browser.