| Tests that accessing the innerHTML property of a text node encodes harmful entities which can result in cross site scripting. |
| |
| On success, you will see a series of "PASS" messages, followed by "TEST COMPLETE". |
| |
| |
| PASS innerHTML("script") is "/*"'&<> "'&<> \"'&<> */" |
| PASS innerHTML("style") is "/*"'&<> "'&<> \"'&<> */" |
| PASS innerHTML("textarea") is "/*\"'&<> \"'&<> \"'&<> */" |
| PASS innerHTML("xmp") is "/*"'&<> "'&<> \"'&<> */" |
| PASS outerHTML("script") is "<script id=\"script\">/*"'&<> "'&<> \"'&<> */</script>" |
| PASS outerHTML("style") is "<style id=\"style\">/*"'&<> "'&<> \"'&<> */</style>" |
| PASS outerHTML("textarea") is "<textarea id=\"textarea\">/*\"'&<> \"'&<> \"'&<> */</textarea>" |
| PASS outerHTML("xmp") is "<xmp id=\"xmp\">/*"'&<> "'&<> \"'&<> */</xmp>" |
| PASS successfullyParsed is true |
| |
| TEST COMPLETE |
| |
