git-svn-id: http://dev.piwik.org/svn/trunk@1166 59fd770c-687e-43c8-a1e3-f5a4ff64c105

author: mattpiwik <matthieu.aubry@gmail.com> 2009-06-01 05:06:33 +0400
committer: mattpiwik <matthieu.aubry@gmail.com> 2009-06-01 05:06:33 +0400
commit: 8e1646f4f227e9c01b21d739b51313526812e3b9 (patch)
tree: e449ee67d95ab91f92e4079a814c3f3f0c27de3f /tests/resources/referer-xss.txt
parent: be60eaa6a548530a0f946c58a830eac9b4aaf5c3 (diff)
1 files changed, 2 insertions, 1 deletions
diff --git a/tests/resources/referer-xss.txt b/tests/resources/referer-xss.txt
index e0defb1725..11baff6a97 100644
--- a/tests/resources/referer-xss.txt
+++ b/tests/resources/referer-xss.txt
@@ -9,7 +9,8 @@ enable_detect_unique_visitor_using_settings = 0
 always_archive_data = 1
 
 2. go to /misc/testJavascriptTracker/ and fake the referer using, eg. RefControl options Firefox extension
-http://www.google.co.uk/search?hl=en&q=<script>alert('test');</script>
+http://www.google.co.uk/search?hl=en&q=';alert(String.fromCharCode(88,83,83))//\';alert(String.fromCharCode(88,83,83))//";alert(String.fromCharCode(88,83,83))//\";alert(String.fromCharCode(88,83,83))//--></SCRIPT>">'><SCRIPT>alert(String.fromCharCode(88,83,83))</SCRIPT>
+http://example.com/';alert(String.fromCharCode(88,83,83))//\';alert(String.fromCharCode(88,83,83))//";alert(String.fromCharCode(88,83,83))//\";alert(String.fromCharCode(88,83,83))//--></SCRIPT>">'><SCRIPT>alert(String.fromCharCode(88,83,83))</SCRIPT>
 http://example.com/&quot;&lt;script&gt;alert(''test'');&lt;/script&gt;
 http://example3.com/test>"'><script>alert('XSS')</script>
 http://example.com/"><script>alert('yo')</script>
author	mattpiwik <matthieu.aubry@gmail.com>	2009-06-01 05:06:33 +0400
committer	mattpiwik <matthieu.aubry@gmail.com>	2009-06-01 05:06:33 +0400
commit	8e1646f4f227e9c01b21d739b51313526812e3b9 (patch)
tree	e449ee67d95ab91f92e4079a814c3f3f0c27de3f /tests/resources/referer-xss.txt
parent	be60eaa6a548530a0f946c58a830eac9b4aaf5c3 (diff)