css and xss updates
This commit is contained in:
Jason White
parent
fc05a68ef7
commit
8186bd4766
@ -1,11 +0,0 @@
|
|||||||
body.page {color: #000000;font-family: Verdana, Tahoma, sans-serif;font-size: 8pt;}
|
|
||||||
td {font-family: Verdana, Tahoma, sans-serif;font-size: 8pt; }
|
|
||||||
tr {font-family: Verdana, Tahoma, sans-serif;}
|
|
||||||
span {font-family: Verdana, Tahoma, sans-serif;}
|
|
||||||
.f8-0 {font-size: 8pt;font-family: Verdana, Tahoma, sans-serif;}
|
|
||||||
.f8-1 {font-size: 8pt;font-family: Verdana, Tahoma, sans-serif;}
|
|
||||||
.div_tree {padding-left:10px;overflow:visible;}
|
|
||||||
.report_tree_link {width:100%;font-size: 8pt;font-family: Verdana, Tahoma, sans-serif;margin-left:2px;padding-right:2px;margin-top:2px;border-spacing:0px;}
|
|
||||||
.form_link {font-size: 8pt;font-family: Verdana, Tahoma, sans-serif;font-weight: bold;}
|
|
||||||
.report_title {font-size: 8pt;font-family: Verdana, Tahoma, sans-serif;border: 1px solid #afafaf;background-color: #cfcfef;margin-top:3px;margin-bottom:3px;margin-left:1px;padding:3px;font-weight: bold;}
|
|
||||||
.middle {vertical-align:middle;}
|
|
||||||
33
webgoat-container/src/main/resources/static/css/lessons.css
Normal file
33
webgoat-container/src/main/resources/static/css/lessons.css
Normal file
@ -0,0 +1,33 @@
|
|||||||
|
/* css for lessons */
|
||||||
|
/* not efficient loading, but at least easier to maintain */
|
||||||
|
|
||||||
|
.hidden-menu-item {
|
||||||
|
display:none;
|
||||||
|
visibility:hidden;
|
||||||
|
}
|
||||||
|
|
||||||
|
#ac-menu li {
|
||||||
|
list-style-type: none;
|
||||||
|
background-color: #aaa;
|
||||||
|
width: auto;
|
||||||
|
max-width: 20%;
|
||||||
|
}
|
||||||
|
|
||||||
|
#ac-menu li:hover {
|
||||||
|
color: white;
|
||||||
|
background-color: #333;
|
||||||
|
}
|
||||||
|
|
||||||
|
#ac-menu div {
|
||||||
|
margin-bottom: -60px;
|
||||||
|
margin-top: -10px;
|
||||||
|
}
|
||||||
|
|
||||||
|
#ac-menu h3 {
|
||||||
|
color:white;
|
||||||
|
background-color:#666;
|
||||||
|
}
|
||||||
|
|
||||||
|
#ac-menu-wrapper {
|
||||||
|
border-bottom: 2px solid #444;
|
||||||
|
}
|
||||||
@ -17,11 +17,13 @@
|
|||||||
|
|
||||||
<!-- CSS -->
|
<!-- CSS -->
|
||||||
<link rel="shortcut icon" th:href="@{/images/favicon.ico}" type="image/x-icon"/>
|
<link rel="shortcut icon" th:href="@{/images/favicon.ico}" type="image/x-icon"/>
|
||||||
|
|
||||||
<link rel="stylesheet" type="text/css" th:href="@{/css/main.css}"/>
|
<link rel="stylesheet" type="text/css" th:href="@{/css/main.css}"/>
|
||||||
<link rel="stylesheet" type="text/css" th:href="@{/plugins/bootstrap/css/bootstrap.min.css}"/>
|
<link rel="stylesheet" type="text/css" th:href="@{/plugins/bootstrap/css/bootstrap.min.css}"/>
|
||||||
<link rel="stylesheet" type="text/css" th:href="@{/css/font-awesome.min.css}"/>
|
<link rel="stylesheet" type="text/css" th:href="@{/css/font-awesome.min.css}"/>
|
||||||
<link rel="stylesheet" type="text/css" th:href="@{/css/animate.css}"/>
|
<link rel="stylesheet" type="text/css" th:href="@{/css/animate.css}"/>
|
||||||
<link rel="stylesheet" type="text/css" th:href="@{/css/coderay.css}"/>
|
<link rel="stylesheet" type="text/css" th:href="@{/css/coderay.css}"/>
|
||||||
|
<link rel="stylesheet" type="text/css" th:href="@{/css/lessons.css}"/>
|
||||||
<!-- end of CSS -->
|
<!-- end of CSS -->
|
||||||
|
|
||||||
<!-- JS -->
|
<!-- JS -->
|
||||||
|
|||||||
@ -49,7 +49,9 @@ import org.owasp.encoder.*;
|
|||||||
|
|
||||||
import static org.springframework.http.MediaType.ALL_VALUE;
|
import static org.springframework.http.MediaType.ALL_VALUE;
|
||||||
import java.io.IOException;
|
import java.io.IOException;
|
||||||
|
import java.util.ArrayList;
|
||||||
import java.util.Collection;
|
import java.util.Collection;
|
||||||
|
import java.util.List;
|
||||||
import java.util.Map;
|
import java.util.Map;
|
||||||
|
|
||||||
import static org.springframework.web.bind.annotation.RequestMethod.GET;
|
import static org.springframework.web.bind.annotation.RequestMethod.GET;
|
||||||
@ -65,6 +67,7 @@ public class StoredXssComments extends AssignmentEndpoint {
|
|||||||
private static final EvictingQueue<Comment> comments = EvictingQueue.create(100);
|
private static final EvictingQueue<Comment> comments = EvictingQueue.create(100);
|
||||||
private static final String phoneHomeString = "<script>webgoat.customjs.phoneHome()</script>";
|
private static final String phoneHomeString = "<script>webgoat.customjs.phoneHome()</script>";
|
||||||
|
|
||||||
|
|
||||||
static {
|
static {
|
||||||
comments.add(new Comment("secUriTy", DateTime.now().toString(fmt), "<script>console.warn('unit test me')</script>Comment for Unit Testing"));
|
comments.add(new Comment("secUriTy", DateTime.now().toString(fmt), "<script>console.warn('unit test me')</script>Comment for Unit Testing"));
|
||||||
comments.add(new Comment("webgoat", DateTime.now().toString(fmt), "This comment is safe"));
|
comments.add(new Comment("webgoat", DateTime.now().toString(fmt), "This comment is safe"));
|
||||||
@ -76,7 +79,11 @@ public class StoredXssComments extends AssignmentEndpoint {
|
|||||||
@ResponseBody
|
@ResponseBody
|
||||||
public Collection<Comment> retrieveComments() {
|
public Collection<Comment> retrieveComments() {
|
||||||
Collection<Comment> allComments = Lists.newArrayList();
|
Collection<Comment> allComments = Lists.newArrayList();
|
||||||
// no filtering applied here at render
|
Collection<Comment> newComments = userComments.get(webSession.getUserName());
|
||||||
|
if (newComments != null) {
|
||||||
|
allComments.addAll(newComments);
|
||||||
|
}
|
||||||
|
|
||||||
allComments.addAll(comments);
|
allComments.addAll(comments);
|
||||||
|
|
||||||
return allComments;
|
return allComments;
|
||||||
@ -89,10 +96,10 @@ public class StoredXssComments extends AssignmentEndpoint {
|
|||||||
Comment comment = parseJson(commentStr);
|
Comment comment = parseJson(commentStr);
|
||||||
|
|
||||||
EvictingQueue<Comment> comments = userComments.getOrDefault(webSession.getUserName(), EvictingQueue.create(100));
|
EvictingQueue<Comment> comments = userComments.getOrDefault(webSession.getUserName(), EvictingQueue.create(100));
|
||||||
comments.add(comment);
|
|
||||||
comment.setDateTime(DateTime.now().toString(fmt));
|
comment.setDateTime(DateTime.now().toString(fmt));
|
||||||
comment.setUser(webSession.getUserName());
|
comment.setUser(webSession.getUserName());
|
||||||
|
|
||||||
|
comments.add(comment);
|
||||||
userComments.put(webSession.getUserName(), comments);
|
userComments.put(webSession.getUserName(), comments);
|
||||||
|
|
||||||
if (comment.getText().contains(phoneHomeString)) {
|
if (comment.getText().contains(phoneHomeString)) {
|
||||||
|
|||||||
@ -29,5 +29,6 @@ javascript:alert(document.cookie);
|
|||||||
----
|
----
|
||||||
|
|
||||||
== Try It! Using Chrome or Firefox
|
== Try It! Using Chrome or Firefox
|
||||||
Type in `javascript:alert(document.cookie);` in the URL bar. *NOTE:* If you /cut/paste you'll need to add the `javascript:` back in.
|
|
||||||
Try it on a different tab (with WebGoat open in that tab).
|
* Open a second tab and use the same url as this page you are currently on (or any url within this instance of WebGoat)
|
||||||
|
* Then, in the address bar on each tab, type `javascript:alert(document.cookie);` *NOTE:* If you /cut/paste you'll need to add the `javascript:` back in.
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user