"><h1>longin</h1> <h1><a href="https://alish244.github.io/hatestck/">Visit</a></h1><!--

alish244 / github

testhack

1 stars 0 forks source link

Open alish244 opened 3 months ago

alish244 commented 3 months ago

alish244 commented 3 months ago

alish244 commented 3 months ago

    doc = load_html(html)
    options = @options.merge(css_string: CSSHelper.css_for_doc(doc))

    super(doc.to_s, options)

alish244 commented 3 months ago

%3Ca+href%3D%22%01java%03script%3Aconfirm%28document.domain%29%22%3EClick+to+execute%3Ca%3E%0D%0A

alish244 commented 3 months ago

Uh oh...

alish244 commented 3 months ago

Escape SRC - onerror

alish244 commented 3 months ago

<div id="1

<a title="a