test_render_xss_onclickAttribute

Sort Score
Num 10 results
Language All

Results 1 - 1 of 1 for test_render_xss_onclickAttribute (0.54 seconds)

src/test/java/org/codelibs/fess/helper/MarkdownRendererTest.java

        // Script tags should be removed by sanitizer
        assertFalse(result.contains("<script>"));
        assertFalse(result.contains("</script>"));
    }

    @Test
    public void test_render_xss_onclickAttribute() {
        String malicious = "<a href=\"#\" onclick=\"alert('XSS')\">Click</a>";
        String result = markdownRenderer.render(malicious);
        // onclick attribute should be removed

Created: Tue Mar 31 13:07:34 GMT 2026

- Last Modified: Wed Jan 14 14:29:07 GMT 2026

- 11.1K bytes

- Click Count (0)

Search Options

src/test/java/org/codelibs/fess/helper/MarkdownRendererTest.java