State diagram sanitization

2025-09-08 18:16:44 +02:00 · 2021-09-29 08:45:07 +02:00
parent 5c4ee44787
commit 75b79e1b23
4 changed files with 111 additions and 6 deletions
--- a/cypress/integration/other/xss.spec.js
+++ b/cypress/integration/other/xss.spec.js
@@ -68,5 +68,10 @@ describe('XSS', () => {
    cy.wait(1000);
    cy.get('#the-malware').should('not.exist');
  })
+  it('should not allow maniplulating antiscript to run javascript using onerror in state diagrams', () => {
+    cy.visit('http://localhost:9000/xss7.html');
+    cy.wait(1000);
+    cy.get('#the-malware').should('not.exist');
+  })

 })