added locator and fixed editor

devwerks · Oct 8, 2019 · 0f7c2d9 · 0f7c2d9
1 parent 15aff6f
commit 0f7c2d9
Show file tree

Hide file tree

Showing 2 changed files with 21 additions and 10 deletions.
diff --git a/html/editor.html b/html/editor.html
@@ -27,27 +27,28 @@
     window.editbox.document.close();
 
     $.ajax({ 
-        url: 'https://raw.githubusercontent.com/devwerks/XSS-Cheatsheet/master/vectors.json', 
+        url: 'https://raw.githubusercontent.com/devwerks/XSS-Cheatsheet/master/events.json', 
         dataType: 'json',
         success: function (data) { 
+            var ret = location.hash.slice(1).replace('event','');
             $.each(data, function(index, element) {
-                if(element.id==location.hash.slice(1)) {
-                    window.editbox.document.f.ta.value = element.data;
+                if(element.id==ret) {
+                    var1 = '<img src=x ' 
+                    var2 = '=alert("XSS")>'
+                    window.editbox.document.f.ta.value = var1 + element.data + var2;
                 }
             });
         }
     });
 
+
     $.ajax({ 
-        url: 'https://raw.githubusercontent.com/devwerks/XSS-Cheatsheet/master/events.json', 
+        url: 'https://raw.githubusercontent.com/devwerks/XSS-Cheatsheet/master/vectors.json', 
         dataType: 'json',
         success: function (data) { 
-            var ret = location.hash.slice(1).replace('event','');
             $.each(data, function(index, element) {
-                if(element.id==ret) {
-                    var1 = '<img src=x ' 
-                    var2 = '=alert("XSS")>'
-                    window.editbox.document.f.ta.value = var1 + element.data + var2;
+                if(element.id==location.hash.slice(1)) {
+                    window.editbox.document.f.ta.value = element.data;
                 }
             });
         }

diff --git a/html/index.html b/html/index.html
@@ -11,9 +11,19 @@
     <body>
         <h1>XSS Cheatsheet</h1>
         <a href="https://github.com/devwerks/XSS-Cheatsheet/"><img style="position: absolute; top: 0; right: 0; border: 0;" src="https://camo.githubusercontent.com/365986a132ccd6a44c23a9169022c0b5c890c387/68747470733a2f2f73332e616d617a6f6e6177732e636f6d2f6769746875622f726962626f6e732f666f726b6d655f72696768745f7265645f6161303030302e706e67" alt="Fork me on GitHub" data-canonical-src="https://s3.amazonaws.com/github/ribbons/forkme_right_red_aa0000.png"></a>
-        <div id="content"></div>
+        <div id="content"><a id="locator"></a><h2>XSS Locator</h2><li><div class="item"><code class="data">'';!--"<XSS>=&{()}</code></div></li><a id="vectors"></a><h2>Vectors</h2></div>
         <div id="events"><a id="events"></a><h2>Events</h2></div>
         <div id="sidebar">All XSS vectors tested with latest Firefox.
+            <ul>
+                <li>
+                    <a href="#locator">Locator</a></a>
+                </li>
+            </ul>
+            <ul>
+                <li>
+                    <a href="#vectors">Vectors</a>
+                </li>
+            </ul>
             <ul>
                 <li>
                     <a href="#events">Events</a>