Create a gist now

Instantly share code, notes, and snippets.

What would you like to do?
jQuery Mobile XSS
application: jquery-mobile-xss
version: 1
runtime: python27
api_version: 1
threadsafe: yes
- url: /.*
script: main.APP
- name: webapp2
version: "2.5.2"
import webapp2
class MainHandler(webapp2.RequestHandler):
def get(self): # pylint:disable-msg=invalid-name
"""Handle GET requests."""
<link rel="stylesheet" href="" />
<script src=""></script>
<script src=""></script>""")
class RedirectHandler(webapp2.RequestHandler):
def get(self):
"""Handle GET requests."""
APP = webapp2.WSGIApplication([
('/redirect', RedirectHandler),
('/.*', MainHandler),
], debug=True)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment