File: safe_output.html

package info (click to toggle)
php-league-commonmark 2.7.1-1
  • links: PTS, VCS
  • area: main
  • in suites: experimental
  • size: 8,264 kB
  • sloc: php: 20,396; xml: 1,988; ruby: 45; makefile: 21; javascript: 15
file content (85 lines) | stat: -rw-r--r-- 4,717 bytes parent folder | download | duplicates (3) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
 
<p><a>Click me</a></p>
<p><a href="java%0Ascript:alert(%22XSS%22)">Click me</a></p>
<p><a href="java%0Ascript:alert(document.location)">link</a></p>
<p><a>javascript:alert(&quot;XSS&quot;)</a></p>
<p><img src="data:image/gif;base64,R0lGODlhEAAQAMQAAORHHOVSKudfOulrSOp3WOyDZu6QdvCchPGolfO0o/XBs/fNwfjZ0frl3/zy7////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAkAABAALAAAAAAQABAAAAVVICSOZGlCQAosJ6mu7fiyZeKqNKToQGDsM8hBADgUXoGAiqhSvp5QAnQKGIgUhwFUYLCVDFCrKUE1lBavAViFIDlTImbKC5Gm2hB0SlBCBMQiB0UjIQA7" alt="Inline image" /></p>
<p>![Inline image](xx&quot; onerror=&quot;javascript:alert(1))</p>
<p>&lt;javas\x00cript:javascript:alert(1)&gt;</p>
<p>&lt;javas\x01cript:javascript:alert(1)&gt;</p>
<p>&lt;javas\x02cript:javascript:alert(1)&gt;</p>
<p>&lt;javas\x03cript:javascript:alert(1)&gt;</p>
<p>&lt;javas\x04cript:javascript:alert(1)&gt;</p>
<p>&lt;javas\x05cript:javascript:alert(1)&gt;</p>
<p>&lt;javas\x06cript:javascript:alert(1)&gt;</p>
<p>&lt;javas\x07cript:javascript:alert(1)&gt;</p>
<p>&lt;javas\x08cript:javascript:alert(1)&gt;</p>
<p>javas\x09cript:javascript:alert(1)&gt;</p>
<p>&lt;javas\x0Acript:javascript:alert(1)&gt;</p>
<p>&lt;javas\x0Bcript:javascript:alert(1)&gt;</p>
<p>&lt;javas\x0Ccript:javascript:alert(1)&gt;</p>
<p>&lt;javas\x0Dcript:javascript:alert(1)&gt;</p>
<p>&lt;javascript\x3Ajavascript:alert(1)&gt;</p>
<p>&lt;\x0Bjavascript:javascript:alert(1)&gt;</p>
<p>&lt;\x0Fjavascript:javascript:alert(1)&gt;</p>
<p>&lt;\xC2\xA0javascript:javascript:alert(1)&gt;</p>
<p>&lt;\x05javascript:javascript:alert(1)&gt;</p>
<p>&lt;\xE1\xA0\x8Ejavascript:javascript:alert(1)&gt;</p>
<p>&lt;\x18javascript:javascript:alert(1)&gt;</p>
<p>&lt;\x11javascript:javascript:alert(1)&gt;</p>
<p>&lt;\xE2\x80\x88javascript:javascript:alert(1)&gt;</p>
<p>&lt;\xE2\x80\x89javascript:javascript:alert(1)&gt;</p>
<p>&lt;\xE2\x80\x80javascript:javascript:alert(1)&gt;</p>
<p>&lt;\x17javascript:javascript:alert(1)&gt;</p>
<p>&lt;\x03javascript:javascript:alert(1)&gt;</p>
<p>&lt;\x0Ejavascript:javascript:alert(1)&gt;</p>
<p>&lt;\x1Ajavascript:javascript:alert(1)&gt;</p>
<p>&lt;\x00javascript:javascript:alert(1)&gt;</p>
<p>&lt;\x10javascript:javascript:alert(1)&gt;</p>
<p>&lt;\xE2\x80\x82javascript:javascript:alert(1)&gt;</p>
<p>&lt;\x20javascript:javascript:alert(1)&gt;</p>
<p>&lt;\x13javascript:javascript:alert(1)&gt;</p>
<p>&lt;\x09javascript:javascript:alert(1)&gt;</p>
<p>&lt;\xE2\x80\x8Ajavascript:javascript:alert(1)&gt;</p>
<p>&lt;\x14javascript:javascript:alert(1)&gt;</p>
<p>&lt;\x19javascript:javascript:alert(1)&gt;</p>
<p>&lt;\xE2\x80\xAFjavascript:javascript:alert(1)&gt;</p>
<p>&lt;\x1Fjavascript:javascript:alert(1)&gt;</p>
<p>&lt;\xE2\x80\x81javascript:javascript:alert(1)&gt;</p>
<p>&lt;\x1Djavascript:javascript:alert(1)&gt;</p>
<p>&lt;\xE2\x80\x87javascript:javascript:alert(1)&gt;</p>
<p>&lt;\x07javascript:javascript:alert(1)&gt;</p>
<p>&lt;\xE1\x9A\x80javascript:javascript:alert(1)&gt;</p>
<p>&lt;\xE2\x80\x83javascript:javascript:alert(1)&gt;</p>
<p>&lt;\x04javascript:javascript:alert(1)&gt;</p>
<p>&lt;\x01javascript:javascript:alert(1)&gt;</p>
<p>&lt;\x08javascript:javascript:alert(1)&gt;</p>
<p>&lt;\xE2\x80\x84javascript:javascript:alert(1)&gt;</p>
<p>&lt;\xE2\x80\x86javascript:javascript:alert(1)&gt;</p>
<p>&lt;\xE3\x80\x80javascript:javascript:alert(1)&gt;</p>
<p>&lt;\x12javascript:javascript:alert(1)&gt;</p>
<p>&lt;\x0Djavascript:javascript:alert(1)&gt;</p>
<p>&lt;\x0Ajavascript:javascript:alert(1)&gt;</p>
<p>&lt;\x0Cjavascript:javascript:alert(1)&gt;</p>
<p>&lt;\x15javascript:javascript:alert(1)&gt;</p>
<p>&lt;\xE2\x80\xA8javascript:javascript:alert(1)&gt;</p>
<p>&lt;\x16javascript:javascript:alert(1)&gt;</p>
<p>&lt;\x02javascript:javascript:alert(1)&gt;</p>
<p>&lt;\x1Bjavascript:javascript:alert(1)&gt;</p>
<p>&lt;\x06javascript:javascript:alert(1)&gt;</p>
<p>&lt;\xE2\x80\xA9javascript:javascript:alert(1)&gt;</p>
<p>&lt;\xE2\x80\x85javascript:javascript:alert(1)&gt;</p>
<p>&lt;\x1Ejavascript:javascript:alert(1)&gt;</p>
<p>&lt;\xE2\x81\x9Fjavascript:javascript:alert(1)&gt;</p>
<p>&lt;\x1Cjavascript:javascript:alert(1)&gt;</p>
<p>&lt;javascript\x00:javascript:alert(1)&gt;</p>
<p>&lt;javascript\x3A:javascript:alert(1)&gt;</p>
<p>&lt;javascript\x09:javascript:alert(1)&gt;</p>
<p>&lt;javascript\x0D:javascript:alert(1)&gt;</p>
<p>&lt;javascript\x0A:javascript:alert(1)&gt;</p>
<p>&lt;java&amp;#1&amp;#2&amp;#3&amp;#4&amp;#5&amp;#6&amp;#7&amp;#8&amp;#11&amp;#12script:javascript:alert(1)&gt;</p>
<p>&lt;jav&amp;#65ascript:javascript:alert(1)&gt;</p>
<p>&lt;jav&amp;#97ascript:javascript:alert(1)&gt;</p>
<p><a>jAvAsCrIpT:alert(1)</a></p>
<p><a>XSS</a></p>
<p><a>XSS</a></p>
<p><a href="javascript&amp;colon;alert%28'XSS'%29">XSS</a></p>