XSS filter bypass via document.write(location.href) and fragments
authordbates@webkit.org <dbates@webkit.org@268f45cc-cd09-0410-ab3c-d52691b4dbfc>
Wed, 24 Aug 2011 22:35:52 +0000 (22:35 +0000)
committerdbates@webkit.org <dbates@webkit.org@268f45cc-cd09-0410-ab3c-d52691b4dbfc>
Wed, 24 Aug 2011 22:35:52 +0000 (22:35 +0000)
commitbe6303768cb6d8cea5f6f803c47fdb22cdeca5f9
tree6f89c455b5f7f192666b1c91a084d33ae78e6805
parenta9d42fcb29c272d7ab6bc47eb8978397edde238b
XSS filter bypass via document.write(location.href) and fragments
https://bugs.webkit.org/show_bug.cgi?id=66585

Reviewed by Darin Adler.

Add a test case for a variation of a DOM-based XSS attack using an anchor URL.

* http/tests/security/xssAuditor/anchor-url-dom-write-location2-expected.txt: Added.
* http/tests/security/xssAuditor/anchor-url-dom-write-location2.html: Added.

git-svn-id: https://svn.webkit.org/repository/webkit/trunk@93745 268f45cc-cd09-0410-ab3c-d52691b4dbfc
LayoutTests/ChangeLog
LayoutTests/http/tests/security/xssAuditor/anchor-url-dom-write-location2-expected.txt [new file with mode: 0644]
LayoutTests/http/tests/security/xssAuditor/anchor-url-dom-write-location2.html [new file with mode: 0644]