SAMATE Logo NIST Logo The SAMATE Project Department of Homeland Security
Downloads:  Download this Test Case #1653

Back to the previous page... Back to the previous page

Test Case IDCandidate1653
Bad / Good / MixedBadBad test case
AuthorFortify Software
Associations
Good pair: 1654  
Test suite: 6  17  27  
Added byJeff Meister
LanguageJava
Type of test caseSource Code
Input string<script language=javascript>alert(\"gotcha\")</script>
Expected Output
Instructions
Submission date2006-06-22
DescriptionTainted output allows cross-site scripting attack.
File(s)
Flaw

There are no comments
Have any comments on this test case? Please, .

File Contains:
CWE-079: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') on line(s): 45