National Institute of Standards and Technology
Package illustrating a test case

Test case 2156

Description

This servlet implements a Cross-Site Scripting vulnerability (XSS) with a loop complexity : the data provided by the client in the field "data" is written as is, without any filtering, to the output document.

Flaws

Test Suites

Have any comments on this test case? Please, send us an email.