Index: LayoutTests/http/tests/security/xssAuditor/reflection-in-path-expected.txt |
diff --git a/LayoutTests/http/tests/security/xssAuditor/reflection-in-path-expected.txt b/LayoutTests/http/tests/security/xssAuditor/reflection-in-path-expected.txt |
new file mode 100644 |
index 0000000000000000000000000000000000000000..9ae1c58c235c328f53f652fa0d59a8268e5b280e |
--- /dev/null |
+++ b/LayoutTests/http/tests/security/xssAuditor/reflection-in-path-expected.txt |
@@ -0,0 +1,9 @@ |
+CONSOLE ERROR: line 5: The XSS Auditor refused to execute a script in 'http://localhost:8000/security/xssAuditor/intercept/echo-form-action.pl/%22%20onmouseover=%22JavaScript:alert(document.domain)%22%20name=%22?m=login' because its source code was found within the request. The auditor was enabled as the server sent neither an 'X-XSS-Protection' nor 'Content-Security-Policy' header. |
+ |
+ |
+-------- |
+Frame: '<!--framePath //<!--frame0-->-->' |
+-------- |
+This is an iframe with a injected form |
+ |
+ |