activation button tested
This commit is contained in:
		
				
					committed by
					
						 Nanne Baars
						Nanne Baars
					
				
			
			
				
	
			
			
			
						parent
						
							bce4c775bf
						
					
				
				
					commit
					60c7fdd0db
				
			| @ -118,7 +118,7 @@ public class SimpleXXE extends AssignmentEndpoint { | |||||||
| 		if (applySecurity == null) { | 		if (applySecurity == null) { | ||||||
| 			request.getSession().setAttribute("applySecurity", "true"); | 			request.getSession().setAttribute("applySecurity", "true"); | ||||||
| 		} | 		} | ||||||
| 		return "xxe security will be applied"; | 		return "xxe security patch is now applied, you can try the previous challenges and see the effect!"; | ||||||
|     } |     } | ||||||
|  |  | ||||||
| } | } | ||||||
|  | |||||||
| @ -1,6 +1,8 @@ | |||||||
| <html xmlns:th="http://www.thymeleaf.org"> | <html xmlns:th="http://www.thymeleaf.org"> | ||||||
|  | <header> | ||||||
| <script th:src="@{/lesson_js/xxe.js}" language="JavaScript"></script> | <script th:src="@{/lesson_js/xxe.js}"></script> | ||||||
|  | </header> | ||||||
|  | <body> | ||||||
|  |  | ||||||
| <div class="lesson-page-wrapper"> | <div class="lesson-page-wrapper"> | ||||||
|     <div class="adoc-content" th:replace="doc:XXE_plan.adoc"></div> |     <div class="adoc-content" th:replace="doc:XXE_plan.adoc"></div> | ||||||
| @ -218,8 +220,9 @@ | |||||||
|  |  | ||||||
| <div class="lesson-page-wrapper"> | <div class="lesson-page-wrapper"> | ||||||
|     <div class="adoc-content" th:replace="doc:XXE_static_code_analysis.adoc"></div> |     <div class="adoc-content" th:replace="doc:XXE_static_code_analysis.adoc"></div> | ||||||
|     <a href="/WebGoat/xxe/applysecurity" onclick="javascript:return false;">Apply XXE security patch</a> |     <br/> | ||||||
|  |     <a id="submitlink" class="btn btn-primary" href="" onclick="javascript:$('#patchbutton').load('/WebGoat/xxe/applysecurity');return false;"><span id="patchbutton">Apply XXE security patch</span></a> | ||||||
| </div> | </div> | ||||||
|  |  | ||||||
|  | </body> | ||||||
| </html> | </html> | ||||||
| @ -14,7 +14,7 @@ SonarQube also shows you what you could do to fix this. | |||||||
|  |  | ||||||
| image::images/xxe-suggested-fix.png[XXE suggested fix] | image::images/xxe-suggested-fix.png[XXE suggested fix] | ||||||
|  |  | ||||||
| If you click on the link below, you can try to do the XXE challenges again and you will notice that the vulnerabilities are mitigated. | If you click on the button below, you can try to do the XXE challenges again and you will notice that the vulnerabilities are mitigated. | ||||||
|  |  | ||||||
|  |  | ||||||
|  |  | ||||||
|  | |||||||
		Reference in New Issue
	
	Block a user