Sha256: 6258aed1d1b78951e34d01504d8141440ec27eb6f4b15ba7306fadafcfb31b1e

Contents?: true

Size: 1.99 KB

Versions: 96

Compression:

Stored size: 1.99 KB

Contents

---
in:  Just a little harmless xss <script src=http://ha.ckers.org/xss.js>stuff</script>.
sanitized_html: <p>Just a little harmless xss stuff.</p>
---
in: Here's a bad image <img src="JaVaScRiPt:alert('XSS');" />
sanitized_html: <p>Here&#8217;s a bad image <img /></p>
---
in: Just some random > and < characters, but also a <br/> tag.
sanitized_html: <p>Just some random &gt; and &lt; characters, but also a <br/> tag.</p>
---
name: processes text beginning with space
in: ' This began with a space and ends with some XSS: <script type="text/javascript">alert("Hai. I`m in ya PC. Makin ya XSS viruzz! KThxBye");</script>'
sanitized_html: 'This began with a space and ends with some <span class="caps">XSS</span>: alert(&#8220;Hai. I`m in ya PC. Makin ya <span class="caps">XSS</span> viruzz! KThxBye&#8221;);'
---
name: processes text in notextile tags
in: |-
  <notextile>
  The bad tags should be <b>missing</b>: <script type="text/javascript">alert("Hai. I`m in ya PC. Makin ya XSS viruzz! KThxBye");</script>
  </notextile>
sanitized_html: |-
  The bad tags should be <b>missing</b>: alert("Hai. I`m in ya PC. Makin ya XSS viruzz! KThxBye");
---
name: processes text in inline notextile tags
in: |-
  The bad tags should be <b>missing</b>: <notextile><script type="text/javascript">alert("Hai. I`m in ya PC. Makin ya XSS viruzz! KThxBye");</script></notextile>
sanitized_html: |-
  <p>The bad tags should be <b>missing</b>: alert("Hai. I`m in ya PC. Makin ya XSS viruzz! KThxBye");</p>
---
name: removes script tags
in: |-
  <script type="text/javascript">
    alert("Hai. I`m in ya PC. Makin ya XSS viruzz! KThxBye");
  </script>
sanitized_html: "alert(&#8220;Hai. I`m in ya PC. Makin ya <span class=\"caps\">XSS</span> viruzz! KThxBye&#8221;);"
---
name: removes nested script tags
in: |-
  <script type="text/javascript"><script>
    alert("Hai. I`m in ya PC. Makin ya XSS viruzz! KThxBye");
  </script></script>
sanitized_html: |-
  alert(&#8220;Hai. I`m in ya PC. Makin ya <span class="caps">XSS</span> viruzz! KThxBye&#8221;);

Version data entries

96 entries across 96 versions & 10 rubygems

Version Path
trusty-cms-7.0.9.1 vendor/bundle/ruby/3.3.0/gems/RedCloth-4.3.3/spec/fixtures/sanitize_html.yml
RedCloth-4.3.4 spec/fixtures/sanitize_html.yml
RedCloth-4.3.3 spec/fixtures/sanitize_html.yml
BBRedCloth-0.9.0.alpha1 test/sanitize_html.yml
gv-RedCloth-4.3.2 spec/fixtures/sanitize_html.yml
RedCloth-4.3.2 spec/fixtures/sanitize_html.yml
RedCloth-4.3.1 spec/fixtures/sanitize_html.yml
RedCloth-4.3.0 spec/fixtures/sanitize_html.yml
parity-RedCloth-4.2.13 spec/fixtures/sanitize_html.yml
parity-RedCloth-4.2.12 spec/fixtures/sanitize_html.yml
parity-RedCloth-4.2.11 spec/fixtures/sanitize_html.yml
parity-RedCloth-4.2.10 spec/fixtures/sanitize_html.yml
parity-RedCloth-4.2.9 spec/fixtures/sanitize_html.yml
jeremy-RedCloth-4.1.1 test/sanitize_html.yml
YSRedCloth-4.2.18 spec/fixtures/sanitize_html.yml
assplecake-RedCloth-4.2.10 spec/fixtures/sanitize_html.yml
YSRedCloth-4.2.17 spec/fixtures/sanitize_html.yml
YSRedCloth-4.2.16 spec/fixtures/sanitize_html.yml
BBRedCloth-0.8.8 test/sanitize_html.yml
gv-RedCloth-4.2.9 spec/fixtures/sanitize_html.yml