Fix browsers compliance and add new vectors (no parentheses) #45
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Payload adjustment without parenthesis and eval for Chrome/Edge, for Safari and for Firefox.
Add : No parentheses using exception handling and object eval on Firefox / Safari
Add : No parentheses using exception handling and location hash eval on all browsers
Add : No parentheses, no quotes, no spaces using exception handling and location hash eval on all browsers
…wsers Add : No parentheses, no quotes, no spaces, no curly brackets using exception handling and location hash eval on all browsers
|
Thanks for the quality PR's. I'm sorry I didn't credit you with your Twitter handle. I probably didn't know it. I'll update the credit too. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Hello,
Just a little PR to:
Thank you for your great resources and hard work!
PS: as indicated, can you update XSS Cheat Sheet credits with my Twitter handle link (
@ycam_asafety) or, if possible, directly to my website (https://yann.cam) (I am already on credits page, but not linked to any URL) ?Sincerely,