René's URL Explorer Experiment


Title: Add new test cases for server-based sanitization against reflected XSS by shivababuh · Pull Request #173 · OWASP-Benchmark/BenchmarkJava · GitHub

Open Graph Title: Add new test cases for server-based sanitization against reflected XSS by shivababuh · Pull Request #173 · OWASP-Benchmark/BenchmarkJava

X Title: Add new test cases for server-based sanitization against reflected XSS by shivababuh · Pull Request #173 · OWASP-Benchmark/BenchmarkJava

Description: 6 new test cases were added to demonstrate proper (and improper) sanitization of reflected user input against XSS. The tainted user input is reflected in an HTML attribute (2 cases), in an HTML tag...

Open Graph Description: 6 new test cases were added to demonstrate proper (and improper) sanitization of reflected user input against XSS. The tainted user input is reflected in an HTML attribute (2 cases), in an HTML tag...

X Description: 6 new test cases were added to demonstrate proper (and improper) sanitization of reflected user input against XSS. The tainted user input is reflected in an HTML attribute (2 cases), in an HTML tag...

Opengraph URL: https://github.com/OWASP-Benchmark/BenchmarkJava/pull/173

X: @github

direct link

Domain: patch-diff.githubusercontent.com

route-pattern/_view_fragments/voltron/pull_requests/show/:user_id/:repository/:id/pull_request_layout(.:format)
route-controllervoltron_pull_requests_fragments
route-actionpull_request_layout
fetch-noncev2:c8b8ea7c-862d-323f-a548-91a6e9bc6f8a
current-catalog-service-hashae870bc5e265a340912cde392f23dad3671a0a881730ffdadd82f2f57d81641b
request-idCC7E:1B11A3:336757B:486A855:6979124E
html-safe-nonce3f9062f566fa4bceef8018d23d4e6a04e185b7192f52793502cfce9a404d9b16
visitor-payloadeyJyZWZlcnJlciI6IiIsInJlcXVlc3RfaWQiOiJDQzdFOjFCMTFBMzozMzY3NTdCOjQ4NkE4NTU6Njk3OTEyNEUiLCJ2aXNpdG9yX2lkIjoiMzg5MDE0NzMyODUzODUxMzk5OCIsInJlZ2lvbl9lZGdlIjoiaWFkIiwicmVnaW9uX3JlbmRlciI6ImlhZCJ9
visitor-hmac3001fed7d7683b00316296dd4ac2dbdca2d1ae2348c484537405dd34646ce326
hovercard-subject-tagpull_request:806418443
github-keyboard-shortcutsrepository,pull-request-list,pull-request-conversation,pull-request-files-changed,copilot
google-site-verificationApib7-x98H0j5cPqHWwSMm6dNU4GmODRoqxLiDzdx9I
octolytics-urlhttps://collector.github.com/github/collect
analytics-location///voltron/pull_requests_fragments/pull_request_layout
fb:app_id1401488693436528
apple-itunes-appapp-id=1477376905, app-argument=https://github.com/_view_fragments/voltron/pull_requests/show/OWASP-Benchmark/BenchmarkJava/173/pull_request_layout
twitter:imagehttps://opengraph.githubassets.com/2c29a613c489553ea8b17128478b4f4a46d8afacdd9527a3923c2f102b74a3e8/OWASP-Benchmark/BenchmarkJava/pull/173
twitter:cardsummary_large_image
og:imagehttps://opengraph.githubassets.com/2c29a613c489553ea8b17128478b4f4a46d8afacdd9527a3923c2f102b74a3e8/OWASP-Benchmark/BenchmarkJava/pull/173
og:image:alt6 new test cases were added to demonstrate proper (and improper) sanitization of reflected user input against XSS. The tainted user input is reflected in an HTML attribute (2 cases), in an HTML tag...
og:image:width1200
og:image:height600
og:site_nameGitHub
og:typeobject
og:author:usernameshivababuh
hostnamegithub.com
expected-hostnamegithub.com
Nonedb675ffbe86f3a08023aaf76f083fc7f65e074708cdc617650b84119176f1009
turbo-cache-controlno-preview
go-importgithub.com/OWASP-Benchmark/BenchmarkJava git https://github.com/OWASP-Benchmark/BenchmarkJava.git
octolytics-dimension-user_id80600360
octolytics-dimension-user_loginOWASP-Benchmark
octolytics-dimension-repository_id33565372
octolytics-dimension-repository_nwoOWASP-Benchmark/BenchmarkJava
octolytics-dimension-repository_publictrue
octolytics-dimension-repository_is_forkfalse
octolytics-dimension-repository_network_root_id33565372
octolytics-dimension-repository_network_root_nwoOWASP-Benchmark/BenchmarkJava
turbo-body-classeslogged-out env-production page-responsive
disable-turbofalse
browser-stats-urlhttps://api.github.com/_private/browser/stats
browser-errors-urlhttps://api.github.com/_private/browser/errors
release3e6c9f597d227b0490794716e8b9dddd21a41ead
ui-targetfull
theme-color#1e2327
color-schemelight dark

Links:

Skip to contenthttps://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pull/173#start-of-content
https://patch-diff.githubusercontent.com/
Sign in https://patch-diff.githubusercontent.com/login?return_to=https%3A%2F%2Fgithub.com%2FOWASP-Benchmark%2FBenchmarkJava%2Fpull%2F173
GitHub CopilotWrite better code with AIhttps://github.com/features/copilot
GitHub SparkBuild and deploy intelligent appshttps://github.com/features/spark
GitHub ModelsManage and compare promptshttps://github.com/features/models
MCP RegistryNewIntegrate external toolshttps://github.com/mcp
ActionsAutomate any workflowhttps://github.com/features/actions
CodespacesInstant dev environmentshttps://github.com/features/codespaces
IssuesPlan and track workhttps://github.com/features/issues
Code ReviewManage code changeshttps://github.com/features/code-review
GitHub Advanced SecurityFind and fix vulnerabilitieshttps://github.com/security/advanced-security
Code securitySecure your code as you buildhttps://github.com/security/advanced-security/code-security
Secret protectionStop leaks before they starthttps://github.com/security/advanced-security/secret-protection
Why GitHubhttps://github.com/why-github
Documentationhttps://docs.github.com
Bloghttps://github.blog
Changeloghttps://github.blog/changelog
Marketplacehttps://github.com/marketplace
View all featureshttps://github.com/features
Enterpriseshttps://github.com/enterprise
Small and medium teamshttps://github.com/team
Startupshttps://github.com/enterprise/startups
Nonprofitshttps://github.com/solutions/industry/nonprofits
App Modernizationhttps://github.com/solutions/use-case/app-modernization
DevSecOpshttps://github.com/solutions/use-case/devsecops
DevOpshttps://github.com/solutions/use-case/devops
CI/CDhttps://github.com/solutions/use-case/ci-cd
View all use caseshttps://github.com/solutions/use-case
Healthcarehttps://github.com/solutions/industry/healthcare
Financial serviceshttps://github.com/solutions/industry/financial-services
Manufacturinghttps://github.com/solutions/industry/manufacturing
Governmenthttps://github.com/solutions/industry/government
View all industrieshttps://github.com/solutions/industry
View all solutionshttps://github.com/solutions
AIhttps://github.com/resources/articles?topic=ai
Software Developmenthttps://github.com/resources/articles?topic=software-development
DevOpshttps://github.com/resources/articles?topic=devops
Securityhttps://github.com/resources/articles?topic=security
View all topicshttps://github.com/resources/articles
Customer storieshttps://github.com/customer-stories
Events & webinarshttps://github.com/resources/events
Ebooks & reportshttps://github.com/resources/whitepapers
Business insightshttps://github.com/solutions/executive-insights
GitHub Skillshttps://skills.github.com
Documentationhttps://docs.github.com
Customer supporthttps://support.github.com
Community forumhttps://github.com/orgs/community/discussions
Trust centerhttps://github.com/trust-center
Partnershttps://github.com/partners
GitHub SponsorsFund open source developershttps://github.com/sponsors
Security Labhttps://securitylab.github.com
Maintainer Communityhttps://maintainers.github.com
Acceleratorhttps://github.com/accelerator
Archive Programhttps://archiveprogram.github.com
Topicshttps://github.com/topics
Trendinghttps://github.com/trending
Collectionshttps://github.com/collections
Enterprise platformAI-powered developer platformhttps://github.com/enterprise
GitHub Advanced SecurityEnterprise-grade security featureshttps://github.com/security/advanced-security
Copilot for BusinessEnterprise-grade AI featureshttps://github.com/features/copilot/copilot-business
Premium SupportEnterprise-grade 24/7 supporthttps://github.com/premium-support
Pricinghttps://github.com/pricing
Search syntax tipshttps://docs.github.com/search-github/github-code-search/understanding-github-code-search-syntax
documentationhttps://docs.github.com/search-github/github-code-search/understanding-github-code-search-syntax
Sign in https://patch-diff.githubusercontent.com/login?return_to=https%3A%2F%2Fgithub.com%2FOWASP-Benchmark%2FBenchmarkJava%2Fpull%2F173
Sign up https://patch-diff.githubusercontent.com/signup?ref_cta=Sign+up&ref_loc=header+logged+out&ref_page=%2F%3Cuser-name%3E%2F%3Crepo-name%3E%2Fvoltron%2Fpull_requests_fragments%2Fpull_request_layout&source=header-repo&source_repo=OWASP-Benchmark%2FBenchmarkJava
Reloadhttps://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pull/173
Reloadhttps://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pull/173
Reloadhttps://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pull/173
OWASP-Benchmark https://patch-diff.githubusercontent.com/OWASP-Benchmark
BenchmarkJavahttps://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava
Notifications https://patch-diff.githubusercontent.com/login?return_to=%2FOWASP-Benchmark%2FBenchmarkJava
Fork 1.4k https://patch-diff.githubusercontent.com/login?return_to=%2FOWASP-Benchmark%2FBenchmarkJava
Star 767 https://patch-diff.githubusercontent.com/login?return_to=%2FOWASP-Benchmark%2FBenchmarkJava
Code https://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava
Issues 14 https://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/issues
Pull requests 1 https://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pulls
Actions https://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/actions
Projects 0 https://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/projects
Security 0 https://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/security
Insights https://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pulse
Code https://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava
Issues https://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/issues
Pull requests https://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pulls
Actions https://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/actions
Projects https://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/projects
Security https://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/security
Insights https://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pulse
Sign up for GitHub https://patch-diff.githubusercontent.com/signup?return_to=%2FOWASP-Benchmark%2FBenchmarkJava%2Fissues%2Fnew%2Fchoose
terms of servicehttps://docs.github.com/terms
privacy statementhttps://docs.github.com/privacy
Sign inhttps://patch-diff.githubusercontent.com/login?return_to=%2FOWASP-Benchmark%2FBenchmarkJava%2Fissues%2Fnew%2Fchoose
Jump to bottomhttps://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pull/173#issue-comment-box
shivababuhhttps://patch-diff.githubusercontent.com/shivababuh
OWASP-Benchmark:masterhttps://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/tree/master
shivababuh:masterhttps://patch-diff.githubusercontent.com/shivababuh/Benchmark/tree/master
Add new test cases for server-based sanitization against reflected XSS https://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pull/173#top
shivababuhhttps://patch-diff.githubusercontent.com/shivababuh
OWASP-Benchmark:masterhttps://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/tree/master
shivababuh:masterhttps://patch-diff.githubusercontent.com/shivababuh/Benchmark/tree/master
Conversation 2 https://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pull/173
Commits 5 https://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pull/173/commits
Checks 0 https://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pull/173/checks
Files changed https://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pull/173/files
Please reload this pagehttps://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pull/173
https://github.co/hiddenchars
https://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pull/{{ revealButtonHref }}
https://patch-diff.githubusercontent.com/shivababuh
shivababuhhttps://patch-diff.githubusercontent.com/shivababuh
Dec 20, 2021https://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pull/173#issue-1084529093
Please reload this pagehttps://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pull/173
shivababuhhttps://patch-diff.githubusercontent.com/shivababuh
September 8, 2021 09:47https://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pull/173#commits-pushed-3a2aabe
https://patch-diff.githubusercontent.com/shivababuh
Generate Scorecard to include the New XML Format post 10.x release (https://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pull/173/commits/3a2aabe07fc66d36437348a8ee0e500a14aeac79
#2https://github.com/shivababuh/Benchmark/pull/2
)https://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pull/173/commits/3a2aabe07fc66d36437348a8ee0e500a14aeac79
3a2aabehttps://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pull/173/commits/3a2aabe07fc66d36437348a8ee0e500a14aeac79
https://patch-diff.githubusercontent.com/shivababuh
https://patch-diff.githubusercontent.com/Lakshman1911
Xss mods (https://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pull/173/commits/cb015f8939daba52e4853a94601b0b7ce88e42a3
#1https://github.com/shivababuh/Benchmark/pull/1
)https://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pull/173/commits/cb015f8939daba52e4853a94601b0b7ce88e42a3
cb015f8https://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pull/173/commits/cb015f8939daba52e4853a94601b0b7ce88e42a3
https://patch-diff.githubusercontent.com/shivababuh
Resolve Conflicts:Merge Master Branch Changeshttps://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pull/173/commits/8718694e89a618d85b09085d549b37876194beb9
8718694https://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pull/173/commits/8718694e89a618d85b09085d549b37876194beb9
https://patch-diff.githubusercontent.com/shivababuh
Merge branch 'OWASP-Benchmark-master'https://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pull/173/commits/a4c6d70f42e5e54940e0c74ab750fa51a04ab8a1
a4c6d70https://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pull/173/commits/a4c6d70f42e5e54940e0c74ab750fa51a04ab8a1
https://patch-diff.githubusercontent.com/lakshmankaveti1911
https://patch-diff.githubusercontent.com/Lakshman1911
https://patch-diff.githubusercontent.com/darkspirit510
https://patch-diff.githubusercontent.com/davewichers
https://patch-diff.githubusercontent.com/dandersonaspect
https://patch-diff.githubusercontent.com/arunmuthu255
https://patch-diff.githubusercontent.com/appscanchallenge
https://patch-diff.githubusercontent.com/shivababuh
xss_new_scenarios (https://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pull/173/commits/77d6eb9edbcca81b8b7da5a0277448c92ba81ed8
#4https://github.com/shivababuh/Benchmark/pull/4
)https://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pull/173/commits/77d6eb9edbcca81b8b7da5a0277448c92ba81ed8
77d6eb9https://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pull/173/commits/77d6eb9edbcca81b8b7da5a0277448c92ba81ed8
OWASP-Benchmark#157https://github.com/OWASP-Benchmark/BenchmarkJava/pull/157
70e7c48https://github.com/shivababuh/Benchmark/commit/70e7c48bab28ed988e3046c6b26f96b0a468a02f
#1https://github.com/shivababuh/Benchmark/pull/1
https://patch-diff.githubusercontent.com/davewichers
davewichershttps://patch-diff.githubusercontent.com/davewichers
Dec 21, 2021https://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pull/173#issuecomment-998969816
Please reload this pagehttps://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pull/173
https://patch-diff.githubusercontent.com/PyaeHlianMoe
PyaeHlianMoehttps://patch-diff.githubusercontent.com/PyaeHlianMoe
Jun 19, 2023https://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pull/173#issuecomment-1597086115
@davewichershttps://github.com/davewichers
Please reload this pagehttps://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pull/173
Sign up for freehttps://patch-diff.githubusercontent.com/join?source=comment-repo
Sign in to commenthttps://patch-diff.githubusercontent.com/login?return_to=https%3A%2F%2Fgithub.com%2FOWASP-Benchmark%2FBenchmarkJava%2Fpull%2F173
Please reload this pagehttps://patch-diff.githubusercontent.com/OWASP-Benchmark/BenchmarkJava/pull/173
https://patch-diff.githubusercontent.com/shivababuh
https://patch-diff.githubusercontent.com/davewichers
https://patch-diff.githubusercontent.com/PyaeHlianMoe
https://patch-diff.githubusercontent.com/lakshmankaveti1911
https://github.com
Termshttps://docs.github.com/site-policy/github-terms/github-terms-of-service
Privacyhttps://docs.github.com/site-policy/privacy-policies/github-privacy-statement
Securityhttps://github.com/security
Statushttps://www.githubstatus.com/
Communityhttps://github.community/
Docshttps://docs.github.com/
Contacthttps://support.github.com?tags=dotcom-footer

Viewport: width=device-width

URLs of crawlers that visited me.