Skip to content

Instantly share code, notes, and snippets.

@barnabywalters
Last active December 17, 2015 21:18
Show Gist options
  • Save barnabywalters/5673385 to your computer and use it in GitHub Desktop.
Save barnabywalters/5673385 to your computer and use it in GitHub Desktop.
Test case for microformats-2 e-* p-* HTML injection potential security hole
<span class="h-thing">
<span class="e-content">&lt; Things &gt; &amp;</span>
</span>
<span class="h-thing">
<span class="p-content">&lt; Things &gt; &amp;</span>
</span>
{
"items": [
{
"type": [
"h-thing"
],
"properties": {
"content": [
"&lt; Things &gt; &amp;"
],
"name": [
"< Things > &"
]
}
},
{
"type": [
"h-thing"
],
"properties": {
"content": [
"< Things > &"
],
"name": [
"< Things > &"
]
}
}
]
}
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment