From 8e1646f4f227e9c01b21d739b51313526812e3b9 Mon Sep 17 00:00:00 2001
From: mattpiwik <matthieu.aubry@gmail.com>
Date: Mon, 1 Jun 2009 01:06:33 +0000
Subject: git-svn-id: http://dev.piwik.org/svn/trunk@1166
 59fd770c-687e-43c8-a1e3-f5a4ff64c105

---
 tests/resources/referer-xss.txt | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

(limited to 'tests/resources/referer-xss.txt')

diff --git a/tests/resources/referer-xss.txt b/tests/resources/referer-xss.txt
index e0defb1725..11baff6a97 100644
--- a/tests/resources/referer-xss.txt
+++ b/tests/resources/referer-xss.txt
@@ -9,7 +9,8 @@ enable_detect_unique_visitor_using_settings = 0
 always_archive_data = 1
 
 2. go to /misc/testJavascriptTracker/ and fake the referer using, eg. RefControl options Firefox extension
-http://www.google.co.uk/search?hl=en&q=<script>alert('test');</script>
+http://www.google.co.uk/search?hl=en&q=';alert(String.fromCharCode(88,83,83))//\';alert(String.fromCharCode(88,83,83))//";alert(String.fromCharCode(88,83,83))//\";alert(String.fromCharCode(88,83,83))//--></SCRIPT>">'><SCRIPT>alert(String.fromCharCode(88,83,83))</SCRIPT>
+http://example.com/';alert(String.fromCharCode(88,83,83))//\';alert(String.fromCharCode(88,83,83))//";alert(String.fromCharCode(88,83,83))//\";alert(String.fromCharCode(88,83,83))//--></SCRIPT>">'><SCRIPT>alert(String.fromCharCode(88,83,83))</SCRIPT>
 http://example.com/&quot;&lt;script&gt;alert(''test'');&lt;/script&gt;
 http://example3.com/test>"'><script>alert('XSS')</script>
 http://example.com/"><script>alert('yo')</script>
-- 
cgit v1.2.3