AngularJS curly brackets

minimaxir / big-list-of-naughty-strings

The Big List of Naughty Strings is a list of strings which have a high probability of causing issues when used as user-input data.

MIT License

46.01k stars 2.13k forks source link

AngularJS curly brackets #99

Open korotin opened 7 years ago

korotin commented 7 years ago

Hello.

I assume double curly brackets used in AngularJS for data binding are worth adding to that list. If not escaped properly string like {{ blablabla }} may crash AngularJS app.

More on AngularJS syntax: https://docs.angularjs.org/guide/introduction

xavhan commented 7 years ago

and maybe something like that : {{x = {'y':''.constructor.prototype}; x['y'].charAt=[].join;$eval('x=alert(1)');}}

cf : https://finnwea.com/blog/stealing-passwords-from-mcdonalds-users

Plazmaz commented 6 years ago

https://gist.github.com/mccabe615/cc92daaf368c9f5e15eda371728083a3