mirror of
https://github.com/github/codeql.git
synced 2025-12-20 10:46:30 +01:00
21 lines
572 B
JavaScript
21 lines
572 B
JavaScript
function escapeHtml(s) {
|
|
var amp = /&/g, lt = /</g, gt = />/g;
|
|
return s.toString()
|
|
.replace(amp, '&')
|
|
.replace(lt, '<')
|
|
.replace(gt, '>');
|
|
}
|
|
|
|
function escapeAttr(s) {
|
|
return s.toString()
|
|
.replace(/'/g, '%22')
|
|
.replace(/"/g, '%27');
|
|
}
|
|
|
|
function test() {
|
|
var tainted = window.name;
|
|
var elt = document.createElement();
|
|
elt.innerHTML = "<a href=\"" + escapeAttr(tainted) + "\">" + escapeHtml(tainted) + "</a>"; // OK
|
|
elt.innerHTML = "<div>" + escapeAttr(tainted) + "</div>"; // NOT OK, but not flagged
|
|
}
|