Sha256: e0c0a7a7e9364af6a7ebc48a9476a48a105fef8d1b20b2c43f730317f15d17bf

Contents?: true

Size: 964 Bytes

Versions: 35

Compression:

Stored size: 964 Bytes

Contents

require 'sinatra'

require 'ap'

get '/' do
    <<-EOHTML
        <a href="/query/">Query</a>
        <a href="/form_action1/">Form action no quotes</a>
        <a href="/form_action2/">Form action single quotes</a>
        <a href="/form_action3/">Form action double quotes</a>
    EOHTML
end

get '/<*' do
    URI.unescape( env['REQUEST_PATH'] )
end

get '/query/' do
    URI.unescape( env['QUERY_STRING'] )
end

get "/form_action1*" do
    <<-EOHTML
        <form action=#{URI.unescape( env['REQUEST_PATH'] )}>
            <input name='input' value='default' />
        </form>
    EOHTML
end

get "/form_action2*" do
    <<-EOHTML
        <form action='#{URI.unescape( env['REQUEST_PATH'] )}'>
            <input name='input' value='default' />
        </form>
    EOHTML
end

get "/form_action3*" do
    <<-EOHTML
        <form action="#{URI.unescape( env['REQUEST_PATH'] )}">
            <input name='input' value='default' />
        </form>
    EOHTML
end

Version data entries

35 entries across 35 versions & 1 rubygems

Version Path
arachni-1.6.1.3 spec/support/servers/checks/active/xss_path.rb
arachni-1.6.1.2 spec/support/servers/checks/active/xss_path.rb
arachni-1.6.1.1 spec/support/servers/checks/active/xss_path.rb
arachni-1.6.1 spec/support/servers/checks/active/xss_path.rb
arachni-1.6.0 spec/support/servers/checks/active/xss_path.rb
arachni-1.5.1 spec/support/servers/checks/active/xss_path.rb
arachni-1.5 spec/support/servers/checks/active/xss_path.rb
arachni-1.4 spec/support/servers/checks/active/xss_path.rb
arachni-1.3.2 spec/support/servers/checks/active/xss_path.rb
arachni-1.3.1 spec/support/servers/checks/active/xss_path.rb
arachni-1.3 spec/support/servers/checks/active/xss_path.rb
arachni-1.2.1 spec/support/servers/checks/active/xss_path.rb
arachni-1.2 spec/support/servers/checks/active/xss_path.rb
arachni-1.1 spec/support/servers/checks/active/xss_path.rb
arachni-1.0.6 spec/support/servers/checks/active/xss_path.rb
arachni-1.0.5 spec/support/servers/checks/active/xss_path.rb
arachni-1.0.4 spec/support/servers/checks/active/xss_path.rb
arachni-1.0.3 spec/support/servers/checks/active/xss_path.rb
arachni-1.0.2 spec/support/servers/checks/active/xss_path.rb
arachni-1.0.1 spec/support/servers/checks/active/xss_path.rb