This is an automated email from the ASF dual-hosted git repository.
aharui pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/flex-site.git
The following commit(s) were added to refs/heads/main by this push:
new 63c8c5b1c copy XSS prevention from content/asdoc/index.html
63c8c5b1c is described below
commit 63c8c5b1c1e474a8c8b22f266ab4a7105d326614
Author: Alex Harui <[email protected]>
AuthorDate: Sat Mar 2 19:44:11 2024 -0800
copy XSS prevention from content/asdoc/index.html
---
content/flexunit/asdoc/aircilistener/index.html | 11 +++++++++++
content/flexunit/asdoc/cilistener/index.html | 11 +++++++++++
content/flexunit/asdoc/flexUnit4FluintExtensions/index.html | 11 +++++++++++
content/flexunit/asdoc/flexcoverlistener/index.html | 11 +++++++++++
content/flexunit/asdoc/flexunit/index.html | 11 +++++++++++
content/flexunit/asdoc/uilistener/index.html | 11 +++++++++++
6 files changed, 66 insertions(+)
diff --git a/content/flexunit/asdoc/aircilistener/index.html
b/content/flexunit/asdoc/aircilistener/index.html
index 39eb4e364..a57e803e8 100644
--- a/content/flexunit/asdoc/aircilistener/index.html
+++ b/content/flexunit/asdoc/aircilistener/index.html
@@ -4,6 +4,17 @@
<script language="javascript" type="text/javascript">
<!--
window.onload=function(){
+ "use strict";
+ var d2=decodeURIComponent(document.location.search).toLowerCase();
+ if(
+ d2.indexOf('javascript:') > -1 ||
+ d2.indexOf('//') > -1 ||
+ d2.indexOf('..') > -1 ||
+ d2.indexOf(':') > -1
+ ){
+ return;
+ }
+
var d=document.location.search;
var args=d.substring(d.lastIndexOf('?')+1,d.length);
var classFrameContent=args;
diff --git a/content/flexunit/asdoc/cilistener/index.html
b/content/flexunit/asdoc/cilistener/index.html
index 8d46cb8ee..6e1e53d79 100644
--- a/content/flexunit/asdoc/cilistener/index.html
+++ b/content/flexunit/asdoc/cilistener/index.html
@@ -4,6 +4,17 @@
<script language="javascript" type="text/javascript">
<!--
window.onload=function(){
+ "use strict";
+ var d2=decodeURIComponent(document.location.search).toLowerCase();
+ if(
+ d2.indexOf('javascript:') > -1 ||
+ d2.indexOf('//') > -1 ||
+ d2.indexOf('..') > -1 ||
+ d2.indexOf(':') > -1
+ ){
+ return;
+ }
+
var d=document.location.search;
var args=d.substring(d.lastIndexOf('?')+1,d.length);
var classFrameContent=args;
diff --git a/content/flexunit/asdoc/flexUnit4FluintExtensions/index.html
b/content/flexunit/asdoc/flexUnit4FluintExtensions/index.html
index 8d46cb8ee..6e1e53d79 100644
--- a/content/flexunit/asdoc/flexUnit4FluintExtensions/index.html
+++ b/content/flexunit/asdoc/flexUnit4FluintExtensions/index.html
@@ -4,6 +4,17 @@
<script language="javascript" type="text/javascript">
<!--
window.onload=function(){
+ "use strict";
+ var d2=decodeURIComponent(document.location.search).toLowerCase();
+ if(
+ d2.indexOf('javascript:') > -1 ||
+ d2.indexOf('//') > -1 ||
+ d2.indexOf('..') > -1 ||
+ d2.indexOf(':') > -1
+ ){
+ return;
+ }
+
var d=document.location.search;
var args=d.substring(d.lastIndexOf('?')+1,d.length);
var classFrameContent=args;
diff --git a/content/flexunit/asdoc/flexcoverlistener/index.html
b/content/flexunit/asdoc/flexcoverlistener/index.html
index 8d46cb8ee..6e1e53d79 100644
--- a/content/flexunit/asdoc/flexcoverlistener/index.html
+++ b/content/flexunit/asdoc/flexcoverlistener/index.html
@@ -4,6 +4,17 @@
<script language="javascript" type="text/javascript">
<!--
window.onload=function(){
+ "use strict";
+ var d2=decodeURIComponent(document.location.search).toLowerCase();
+ if(
+ d2.indexOf('javascript:') > -1 ||
+ d2.indexOf('//') > -1 ||
+ d2.indexOf('..') > -1 ||
+ d2.indexOf(':') > -1
+ ){
+ return;
+ }
+
var d=document.location.search;
var args=d.substring(d.lastIndexOf('?')+1,d.length);
var classFrameContent=args;
diff --git a/content/flexunit/asdoc/flexunit/index.html
b/content/flexunit/asdoc/flexunit/index.html
index 8d46cb8ee..6e1e53d79 100644
--- a/content/flexunit/asdoc/flexunit/index.html
+++ b/content/flexunit/asdoc/flexunit/index.html
@@ -4,6 +4,17 @@
<script language="javascript" type="text/javascript">
<!--
window.onload=function(){
+ "use strict";
+ var d2=decodeURIComponent(document.location.search).toLowerCase();
+ if(
+ d2.indexOf('javascript:') > -1 ||
+ d2.indexOf('//') > -1 ||
+ d2.indexOf('..') > -1 ||
+ d2.indexOf(':') > -1
+ ){
+ return;
+ }
+
var d=document.location.search;
var args=d.substring(d.lastIndexOf('?')+1,d.length);
var classFrameContent=args;
diff --git a/content/flexunit/asdoc/uilistener/index.html
b/content/flexunit/asdoc/uilistener/index.html
index 39eb4e364..a57e803e8 100644
--- a/content/flexunit/asdoc/uilistener/index.html
+++ b/content/flexunit/asdoc/uilistener/index.html
@@ -4,6 +4,17 @@
<script language="javascript" type="text/javascript">
<!--
window.onload=function(){
+ "use strict";
+ var d2=decodeURIComponent(document.location.search).toLowerCase();
+ if(
+ d2.indexOf('javascript:') > -1 ||
+ d2.indexOf('//') > -1 ||
+ d2.indexOf('..') > -1 ||
+ d2.indexOf(':') > -1
+ ){
+ return;
+ }
+
var d=document.location.search;
var args=d.substring(d.lastIndexOf('?')+1,d.length);
var classFrameContent=args;
