The branch, master has been updated
via c2b530c005105fc0615ee04ebb5c1c550917a8f4 (commit)
from a418fa95b962d77a614a0cbf66626123db4fc87f (commit)
- Log -----------------------------------------------------------------
commit c2b530c005105fc0615ee04ebb5c1c550917a8f4
Author: Michal Čihař <[email protected]>
Date: Mon Jul 25 14:18:36 2011 +0200
Add another testcase for xss
-----------------------------------------------------------------------
Summary of changes:
test/libraries/PMA_sanitize_test.php | 6 ++++++
1 files changed, 6 insertions(+), 0 deletions(-)
diff --git a/test/libraries/PMA_sanitize_test.php
b/test/libraries/PMA_sanitize_test.php
index d88a82c..5d18355 100644
--- a/test/libraries/PMA_sanitize_test.php
+++ b/test/libraries/PMA_sanitize_test.php
@@ -33,6 +33,12 @@ class PMA_sanitize_test extends PHPUnit_Framework_TestCase
PMA_sanitize('[a@./Documentation.html]doc[/a]'));
}
+ public function testLinkDocXss()
+ {
+ $this->assertEquals('[a@./Documentation.html"
onmouseover="alert(foo)"]doc</a>',
+ PMA_sanitize('[a@./Documentation.html"
onmouseover="alert(foo)"]doc[/a]'));
+ }
+
public function testLinkAndXssInHref()
{
$this->assertEquals('<a
href="./Documentation.html">doc</a>[a@javascript:alert(\'XSS\');@target]link</a>',
hooks/post-receive
--
phpMyAdmin
------------------------------------------------------------------------------
Storage Efficiency Calculator
This modeling tool is based on patent-pending intellectual property that
has been used successfully in hundreds of IBM storage optimization engage-
ments, worldwide. Store less, Store more with what you own, Move data to
the right place. Try It Now! http://www.accelacomm.com/jaw/sfnl/114/51427378/
_______________________________________________
Phpmyadmin-git mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/phpmyadmin-git
