* Hints added

* Solutions added * Bugfixes * Introduction added (including how to start with webgoat and useful tools) * New lesson: Password strength * New lessons: Multi Level Login * Not yet working new lesson: Session fixation (inital release) git-svn-id: http://webgoat.googlecode.com/svn/trunk/webgoat@301 4033779f-a91e-0410-96ef-6bf7bf53c507
2008-04-07 14:28:38 +00:00
parent 84f01ba70a
commit 5d930ec235
137 changed files with 4230 additions and 479 deletions
--- a/main/project/WebContent/lesson_solutions/JavaScriptValidation.html
+++ b/main/project/WebContent/lesson_solutions/JavaScriptValidation.html
@ -618,7 +618,7 @@ field-end'></span><![endif]--> Intercept request<span style='font-family:"Arial"
 <p class=MsoNormal><span style='font-family:"Arial","sans-serif"'><o:p>&nbsp;</o:p></span></p>

 <p class=MsoNormal><span style='font-family:"Arial","sans-serif"'>Add different
-symbols to the fields and click <EFBFBD>Accept changes<EFBFBD>.<o:p></o:p></span></p>
+symbols to the fields and click "Accept changes".<o:p></o:p></span></p>

 <p class=MsoNormal><span style='font-family:"Arial","sans-serif"'><o:p>&nbsp;</o:p></span></p>

@ -663,8 +663,8 @@ style='font-family:"Arial","sans-serif"'> Lesson 6 Completed<o:p></o:p></span></
 normal'><span style='font-family:"Arial","sans-serif"'><o:p>&nbsp;</o:p></span></i></b></p>

 <p class=MsoNormal><span style='font-family:"Arial","sans-serif"'>Reload the
-page by clicking on the menu item <EFBFBD>How to bypass Client-Side Javascript
-Validation<EFBFBD> and intercept the response in WebScarab.<o:p></o:p></span></p>
+page by clicking on the menu item "How to bypass Client-Side Javascript
+Validation" and intercept the response in WebScarab.<o:p></o:p></span></p>

 <p class=MsoNormal><span style='font-family:"Arial","sans-serif"'><o:p>&nbsp;</o:p></span></p>

@ -685,7 +685,7 @@ src="/WebGoat/lesson_solutions/JavaScriptValidation_files/image011.jpg" v:shapes
 field-begin'></span><span style='mso-spacerun:yes'><3E></span>SEQ Figure \* ARABIC
 <span style='mso-element:field-separator'></span><![endif]--><span
 style='mso-no-proof:yes'>5</span><!--[if supportFields]><span style='mso-element:
-field-end'></span><![endif]--> Enable <EFBFBD>Intercept responses<EFBFBD><span
+field-end'></span><![endif]--> Enable "Intercept responses"<span
 style='font-family:"Arial","sans-serif"'><o:p></o:p></span></p>

 <p class=MsoNormal><span style='font-family:"Arial","sans-serif"'><o:p>&nbsp;</o:p></span></p>
@ -708,7 +708,7 @@ field-end'></span><![endif]--> Intercepted response<span style='font-family:
 <p class=MsoNormal><span style='font-family:"Arial","sans-serif"'><o:p>&nbsp;</o:p></span></p>

 <p class=MsoNormal><span style='font-family:"Arial","sans-serif"'>If you remove
-the onclick=<EFBFBD>validate();<EFBFBD> the <EFBFBD>Submit<EFBFBD> button will not work anymore.<o:p></o:p></span></p>
+the onclick="validate();" the "Submit" button will not work anymore.<o:p></o:p></span></p>

 <p class=MsoNormal><span style='font-family:"Arial","sans-serif"'>Locate the
 validate() Javascript function in the HTML page.<o:p></o:p></span></p>
@ -753,8 +753,8 @@ style='font-family:"Arial","sans-serif"'><o:p></o:p></span></p>

 <p class=MsoNormal><span style='font-family:"Arial","sans-serif"'><o:p>&nbsp;</o:p></span></p>

-<p class=MsoNormal><span style='font-family:"Arial","sans-serif"'>Click <EFBFBD>Accept
-changes<EFBFBD>. This returns a HTML page like before but without any regular
+<p class=MsoNormal><span style='font-family:"Arial","sans-serif"'>Click "Accept
+changes". This returns a HTML page like before but without any regular
 expression checks.<o:p></o:p></span></p>

 <p class=MsoNormal><span style='font-family:"Arial","sans-serif"'><o:p>&nbsp;</o:p></span></p>
@ -776,7 +776,7 @@ field-end'></span><![endif]--> It looks the same<span style='font-family:"Arial"
 <p class=MsoNormal><span style='font-family:"Arial","sans-serif"'><o:p>&nbsp;</o:p></span></p>

 <p class=MsoNormal><span style='font-family:"Arial","sans-serif"'>Change the
-fields in the HTML page to contain symbols like @#@@# and click <EFBFBD>Submit<EFBFBD>. <o:p></o:p></span></p>
+fields in the HTML page to contain symbols like @#@@# and click "Submit". <o:p></o:p></span></p>

 <p class=MsoNormal><span style='font-family:"Arial","sans-serif"'><o:p>&nbsp;</o:p></span></p>