Steve Clay mrclay

## AjaxForm.js
/**
 * Notes:
 *  - This is not the complete JS module
 */

/**
 * An object to simplify fetching Drupal forms via Ajax
 *
 * @param {object} spec Object with keys:
 *

## elgg-profile-queries.php
<?php
/**
 * Query profiler for Elgg 1.10-1.12
 *
 * Require this script inside settings.php and the JavaScript console will report all
 * queries with their time in seconds, and the total time spent in mysql_query().
 *
 * This will not include queries performed after the "output", "page" hook.
 *
 * On production you could include this only if a particular query string is set:

## wp_xss_20150426.md

      
              1 file
            
          
              0 forks
            
          
              4 comments
            
          
              0 stars
            
          
                mrclay
                / wp_xss_20150426.md
            
            
              Last active
              August 29, 2015 14:20
            
          
    More details on the WordPress XSS vulnerability found by Klikki. Both real exploits include a style attribute to widen the mouseover area to the whole viewport; I've left it out here to keep it simple.
The exploit comment is valid HTML and won't be altered by an HTML santizer:
<a title='x onmouseover=alert(unescape(/hello%20world/.source)) AAAAAAAAAAAA...[64 kb]..AAA'></a>
But once truncated by MySQL, the comment will become malformed HTML (note the attribute is left open):
<a title='x onmouseover=alert(unescape(/hello%20world/.source)) AAAAAAAAAAA


## runsAfter.js
/**
 * Jasmine helper: Call func sequentially after blocking for {delay} milliseconds
 *
 * @param {Number} delay
 * @param {Function} func
 *
 * @link http://jasmine.github.io/1.3/introduction.html#section-Asynchronous_Support
 */
function runsAfter(delay, func) {
	var blocking = true;

## elgg_mem.php
<?php

require __DIR__ . '/engine/start.php';

global $ENTITY_CACHE;
_elgg_services()->db->disableQueryCache();
$md_cache = _elgg_services()->metadataCache;

$mem_initial = 0;
$show_mem_delta = function () use (&$mem_initial) {

## elgg_prune_entities.sql
DELETE FROM elgg_entities
WHERE guid in (
  SELECT * FROM (
    SELECT e.guid FROM elgg_entities AS e
    LEFT JOIN elgg_users_entity AS u ON (e.guid = u.guid)
    WHERE e.type = 'user'
    AND u.guid IS NULL
  ) AS q1
  UNION
  SELECT * FROM (

## annotation_test.php
<?php
/**
 * Help me determine the best-supported flavor of variable annotations across PHP IDEs.
 *
 * 1. Open this file in your IDE
 *
 * 2. Place your cursor at the bottom of the file and see which variables are understood
 *    as instances of the class Foo
 *
 * 3. Report your findings to http://goo.gl/forms/qBO8OpLPlj

## xss_check.html
"><script>alert(1)</script>"&gt;&lt;script&gt;alert(2)&lt;/script&gt;

## site_lock.php
<?php
/**
 * Place a site in maintenance mode, disable caches, and disable plugin boot.
 */

if (php_sapi_name() !== "cli") {
	exit;
}

require __DIR__ . '/engine/start.php';

## Enums_Base.php
<?php

namespace Enums;

/**
 * Base class for an Enum type where each value is a class instance. Possible values are
 * parsed from PHPdoc comments (must be static methods that return the type and are all caps)
 */
abstract class Base {
	/**
	* Notes:
	* - This is not the complete JS module
	*/

	/**
	* An object to simplify fetching Drupal forms via Ajax
	*
	* @param {object} spec Object with keys:
	*
	<?php
	/**
	* Query profiler for Elgg 1.10-1.12
	*
	* Require this script inside settings.php and the JavaScript console will report all
	* queries with their time in seconds, and the total time spent in mysql_query().
	*
	* This will not include queries performed after the "output", "page" hook.
	*
	* On production you could include this only if a particular query string is set:
	/**
	* Jasmine helper: Call func sequentially after blocking for {delay} milliseconds
	*
	* @param {Number} delay
	* @param {Function} func
	*
	* @link http://jasmine.github.io/1.3/introduction.html#section-Asynchronous_Support
	*/
	function runsAfter(delay, func) {
	var blocking = true;
	<?php

	require __DIR__ . '/engine/start.php';

	global $ENTITY_CACHE;
	_elgg_services()->db->disableQueryCache();
	$md_cache = _elgg_services()->metadataCache;

	$mem_initial = 0;
	$show_mem_delta = function () use (&$mem_initial) {
	DELETE FROM elgg_entities
	WHERE guid in (
	SELECT * FROM (
	SELECT e.guid FROM elgg_entities AS e
	LEFT JOIN elgg_users_entity AS u ON (e.guid = u.guid)
	WHERE e.type = 'user'
	AND u.guid IS NULL
	) AS q1
	UNION
	SELECT * FROM (
	<?php
	/**
	* Help me determine the best-supported flavor of variable annotations across PHP IDEs.
	*
	* 1. Open this file in your IDE
	*
	* 2. Place your cursor at the bottom of the file and see which variables are understood
	* as instances of the class Foo
	*
	* 3. Report your findings to http://goo.gl/forms/qBO8OpLPlj
	<?php
	/**
	* Place a site in maintenance mode, disable caches, and disable plugin boot.
	*/

	if (php_sapi_name() !== "cli") {
	exit;
	}

	require __DIR__ . '/engine/start.php';
	<?php

	namespace Enums;

	/**
	* Base class for an Enum type where each value is a class instance. Possible values are
	* parsed from PHPdoc comments (must be static methods that return the type and are all caps)
	*/
	abstract class Base {