github/jquery
1
1
Fork 0
mirror of https://github.com/jquery/jquery.git synced 2026-04-20 03:01:22 -04:00
Code Issues Packages Projects Releases Wiki Activity

Prioritize #id over <tag> to avoid XSS via location.hash (#9521)

Browse Source
This commit is contained in:
Dave Methvin
2011-08-23 08:25:11 -04:00
parent 84f29084d6
commit 749dbad981
2 changed files with 20 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

18
test/unit/core.js
View File

@@ -467,6 +467,24 @@ test("isXMLDoc - HTML", function() {
document.body.removeChild( iframe );
});
test("XSS via location.hash", function() {
expect(1);
stop();
jQuery._check9521 = function(x){
ok( x, "script called from #id-like selector with inline handler" );
jQuery("#check9521").remove();
delete jQuery._check9521;
start();
};
try {
// This throws an error because it's processed like an id
jQuery( '#<img id="check9521" src="no-such-.gif" onerror="jQuery._check9521(false)">' ).appendTo("#qunit-fixture");
} catch (err) {
jQuery._check9521(true);
};
});
if ( !isLocal ) {
test("isXMLDoc - XML", function() {
expect(3);