OLD | NEW |
1 <!DOCTYPE html> | 1 <!DOCTYPE html> |
2 <html> | 2 <html> |
3 <head> | 3 <head> |
4 <script src="http://localhost:8000/security/xssAuditor/resources/utilities.js"><
/script> | 4 <script src="http://localhost:8000/security/xssAuditor/resources/utilities.js"><
/script> |
5 <script> | 5 <script> |
6 if (window.testRunner) { | 6 if (window.testRunner) { |
7 testRunner.dumpAsText(); | 7 testRunner.dumpAsText(); |
8 testRunner.dumpChildFramesAsText(); | 8 testRunner.dumpChildFramesAsText(); |
9 testRunner.waitUntilDone(); | 9 testRunner.waitUntilDone(); |
10 testRunner.setXSSAuditorEnabled(true); | 10 testRunner.setXSSAuditorEnabled(true); |
11 } | 11 } |
12 </script> | 12 </script> |
13 </head> | 13 </head> |
14 <body> | 14 <body> |
15 <p>This tests that the X-XSS-Protection reports are sent out properly</p> | 15 <p>This tests that the X-XSS-Protection reports are sent out properly</p> |
16 <iframe id="frame" src="http://127.0.0.1:8000/security/xssAuditor/resources/echo
-intertag.pl?test=report-script-tag.html&echo-report=1&enable-report=1&q=<script
>alert(String.fromCharCode(0x58,0x53,0x53))</script><p>If you see this message,
no JavaScript alert(), and a dump of the report below, then the test PASSED.</p>
"> | 16 <iframe name="frame" src="http://127.0.0.1:8000/security/xssAuditor/resources/ec
ho-intertag.pl?test=report-script-tag.html&echo-report=1&enable-report=1&q=<scri
pt>alert(String.fromCharCode(0x58,0x53,0x53))</script><p>If you see this message
, no JavaScript alert(), and a dump of the report below, then the test PASSED.</
p>"> |
17 </iframe> | 17 </iframe> |
18 </body> | 18 </body> |
19 </html> | 19 </html> |
OLD | NEW |