mirror of https://gitlab.com/bashrc2/epicyon
Test for html containing php script
parent
a538cf86e7
commit
a067353aff
4
tests.py
4
tests.py
|
@ -4107,6 +4107,10 @@ def _test_danger_markup():
|
|||
'.innerHTML = "def";</script></p>'
|
||||
assert dangerous_markup(content, allow_local_network_access)
|
||||
|
||||
content = '<p>This html contains more than you expected... ' + \
|
||||
'<?php $server_output = curl_exec($ch); ?></p>'
|
||||
assert dangerous_markup(content, allow_local_network_access)
|
||||
|
||||
content = '<p>This is a valid-looking message. But wait... ' + \
|
||||
'<script src="https://evilsite/payload.js" /></p>'
|
||||
assert dangerous_markup(content, allow_local_network_access)
|
||||
|
|
Loading…
Reference in New Issue