test_render_xss_javascriptProtocol

Sort Score
Num 10 results
Language All

Results 1 - 1 of 1 for test_render_xss_javascriptProtocol (0.11 seconds)

The search processing time has exceeded the limit. The displayed results may be partial.

src/test/java/org/codelibs/fess/helper/MarkdownRendererTest.java

        String result = markdownRenderer.render(malicious);
        // onclick attribute should be removed
        assertFalse(result.contains("onclick"));
    }

    @Test
    public void test_render_xss_javascriptProtocol() {
        String malicious = "[Click me](javascript:alert('XSS'))";
        String result = markdownRenderer.render(malicious);
        // javascript: protocol should be blocked

Created: Tue Mar 31 13:07:34 GMT 2026

- Last Modified: Wed Jan 14 14:29:07 GMT 2026

- 11.1K bytes

- Click Count (0)

Search Options

src/test/java/org/codelibs/fess/helper/MarkdownRendererTest.java