team-alpha/railsgoat
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fixes xss spec failure

Browse Source
This commit is contained in:
cktricky
2015-03-27 15:04:31 -04:00
parent efe81fb6a6
commit 48986b1bbb
1 changed files with 4 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files
spec/vulnerabilities/xss_spec.rb
+4 -3
View File
@@ -11,17 +11,18 @@ feature 'xss' do
visit "/users/#{@normal_user.user_id}/account_settings" visit "/users/#{@normal_user.user_id}/account_settings"
within('#account_edit') do within('#account_edit') do
fill_in 'First name', :with => "B<script>$(function() { $('form.button_to input.btn.btn-primary').val('RailsGoat h4x0r3d') } )</script>" fill_in 'First name', :with => "<script>$(function() { $('div input.btn').val('RailsGoat h4x0r3d') } )</script>"
# password gets screwed up if you don't re-submit - need to fix # password gets screwed up if you don't re-submit - need to fix
fill_in 'user_password', :with => @normal_user.clear_password fill_in 'user_password', :with => @normal_user.clear_password
fill_in 'user_password_confirmation', :with => @normal_user.clear_password fill_in 'user_password_confirmation', :with => @normal_user.clear_password
end end
click_on 'Submit' click_on 'Submit'
sleep(1)
visit '/' visit '/'
pending(:if => verifying_fixed?) { find('form.button_to input.btn.btn-primary').value.should == 'RailsGoat h4x0r3d' } pending(:if => verifying_fixed?) { find('div input.btn').value.should == 'RailsGoat h4x0r3d' }
# might be nice to demonstrate posting cookie contents or somesuch, but # might be nice to demonstrate posting cookie contents or somesuch, but
# this at least shows the vulnerability still exists. # this at least shows the vulnerability still exists.