Added example of CSRF vulnerability in csrf_spec.

2013-09-30 15:29:36 -05:00
parent da061c79b6
commit 0df6735b53
3 changed files with 44 additions and 3 deletions
@@ -21,10 +21,8 @@ feature 'command injection' do
        attach_file 'benefits_upload', hackety_file
        find(:xpath, "//input[@id='benefits_backup']", :visible => false).set 'true'
      end
-      save_screenshot('screenshot.before.upload.png')
      click_on 'Start Upload'
    end
-    save_screenshot('screenshot.after.upload.png')
    File.exists?(legit_file).should be_false
  end
 end