blob: d6afa240e2f7eae44daa77c4ee50a2a112cdce63 [file] [log] [blame]
<!DOCTYPE html>
<html>
<head>
<script>
if (window.testRunner) {
testRunner.dumpAsText();
testRunner.setXSSAuditorEnabled(true);
}
</script>
</head>
<body>
This test passes because the injected iframe has an empty src and is harmless.<br/>
<iframe src="http://127.0.0.1:8000/security/xssAuditor/resources/echo-intertag.pl?test=/security/xssAuditor/iframe-injection-allowed-3.html&q=<iframe%20src=''></iframe>">
</iframe>
</body>
</html>