dubey/WebGoat
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Modified DOMInjection per Bruce's comments

Browse Source 
git-svn-id: http://webgoat.googlecode.com/svn/trunk@54 4033779f-a91e-0410-96ef-6bf7bf53c507
This commit is contained in:
sherif.fathy 2006-12-29 16:43:59 +00:00
parent 0429f917bc
commit ba38b57a44
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
webgoat/main/project/JavaSource/org/owasp/webgoat/lessons/DOMInjection.java
View File

@ -130,7 +130,7 @@ public class DOMInjection extends LessonAdapter {
List<String> hints = new ArrayList<String>(); List<String> hints = new ArrayList<String>();
hints.add( "This page is using XMLHTTP to comunicate with the server." ); hints.add( "This page is using XMLHTTP to comunicate with the server." );
hints.add( "Try to find a way to inject the DOM to enable the Activate button." ); hints.add( "Try to find a way to inject the DOM to enable the Activate button." );
hints.add( "Intercept the reply and add document.forms[0].SUBMIT.disabled = false;" ); hints.add( "Intercept the reply and replace the body withx document.forms[0].SUBMIT.disabled = false;" );
return hints; return hints;
} }