| 6dd74de | | | 1 | <html> |
| 6dd74de | | | 2 | <head> |
| 6dd74de | | | 3 | <link href="https://fonts.googleapis.com/css?family=Montserrat&display=swap" rel="stylesheet" /> |
| 6dd74de | | | 4 | <style> |
| 6dd74de | | | 5 | .malware { |
| 6dd74de | | | 6 | position: fixed; |
| 6dd74de | | | 7 | bottom: 0; |
| 6dd74de | | | 8 | left: 0; |
| 6dd74de | | | 9 | right: 0; |
| 6dd74de | | | 10 | height: 150px; |
| 6dd74de | | | 11 | background: red; |
| 6dd74de | | | 12 | color: black; |
| 6dd74de | | | 13 | display: flex; |
| 6dd74de | | | 14 | display: flex; |
| 6dd74de | | | 15 | justify-content: center; |
| 6dd74de | | | 16 | align-items: center; |
| 6dd74de | | | 17 | font-family: monospace; |
| 6dd74de | | | 18 | font-size: 72px; |
| 6dd74de | | | 19 | } |
| 6dd74de | | | 20 | </style> |
| 6dd74de | | | 21 | <script> |
| 6dd74de | | | 22 | function xssAttack() { |
| 6dd74de | | | 23 | const div = document.createElement('div'); |
| 6dd74de | | | 24 | div.id = 'the-malware'; |
| 6dd74de | | | 25 | div.className = 'malware'; |
| 6dd74de | | | 26 | div.innerHTML = 'XSS Succeeded'; |
| 6dd74de | | | 27 | document.getElementsByTagName('body')[0].appendChild(div); |
| 6dd74de | | | 28 | throw new Error('XSS Succeeded'); |
| 6dd74de | | | 29 | } |
| 6dd74de | | | 30 | </script> |
| 6dd74de | | | 31 | </head> |
| 6dd74de | | | 32 | <body> |
| 6dd74de | | | 33 | <pre class="mermaid"> |
| 6dd74de | | | 34 | %%{init: { 'theme':'base', '__proto__': {'polluted': 'asdf'}} }%% |
| 6dd74de | | | 35 | graph LR |
| 6dd74de | | | 36 | A --> B |
| 6dd74de | | | 37 | </pre> |
| 6dd74de | | | 38 | <pre class="mermaid"> |
| 6dd74de | | | 39 | %%{init: { 'theme':'base', '__proto__': {'polluted': 'asdf'}} }%% |
| 6dd74de | | | 40 | %%{init: { 'theme':'base', '__proto__': {'polluted': 'asdf'}} }%% |
| 6dd74de | | | 41 | graph LR |
| 6dd74de | | | 42 | A --> B |
| 6dd74de | | | 43 | </pre> |
| 6dd74de | | | 44 | <pre class="mermaid"> |
| 6dd74de | | | 45 | %%{init: { 'prototype': {'__proto__': {'polluted': 'test'}}} }%% |
| 6dd74de | | | 46 | %%{init: { 'prototype': {'__proto__': {'polluted': 'test'}}} }%% |
| 6dd74de | | | 47 | sequenceDiagram |
| 6dd74de | | | 48 | Alice->>Bob: Hi Bob |
| 6dd74de | | | 49 | Bob->>Alice: Hi Alice |
| 6dd74de | | | 50 | </pre> |
| 6dd74de | | | 51 | <script type="module"> |
| 6dd74de | | | 52 | import mermaid from './mermaid.esm.mjs'; |
| 6dd74de | | | 53 | mermaid.initialize({ |
| 6dd74de | | | 54 | startOnLoad: true, |
| 6dd74de | | | 55 | useMaxWidth: true, |
| 6dd74de | | | 56 | }); |
| 6dd74de | | | 57 | let cnt = 0; |
| 6dd74de | | | 58 | let a; |
| 6dd74de | | | 59 | const handler = setInterval(() => { |
| 6dd74de | | | 60 | cnt++; |
| 6dd74de | | | 61 | a = {}; |
| 6dd74de | | | 62 | if (a.polluted !== undefined) { |
| 6dd74de | | | 63 | clearInterval(handler); |
| 6dd74de | | | 64 | xssAttack(); |
| 6dd74de | | | 65 | } |
| 6dd74de | | | 66 | if (cnt > 20) { |
| 6dd74de | | | 67 | clearInterval(handler); |
| 6dd74de | | | 68 | } |
| 6dd74de | | | 69 | }, 100); |
| 6dd74de | | | 70 | </script> |
| 6dd74de | | | 71 | </body> |
| 6dd74de | | | 72 | </html> |