summaryrefslogtreecommitdiff
path: root/src/xss/InjectionChecker.js
Commit message (Collapse)AuthorAgeFilesLines
* [XSS] Fixed false positives and timeouts (thanks riaggren for report).hackademix2020-04-191-4/+4
|
* [XSS] Updated HTML5 events.hackademix2020-04-161-1/+1
|
* [XSS] More accurate base64 checks on hash.hackademix2020-02-291-7/+7
|
* Refactored XSS filter into an asynchronous worker to better handle DOS attempts.hackademix2020-02-291-3/+3
|
* [XSS] Updated recognized HTML events.hackademix2020-01-301-1/+1
|
* [XSS] Updated HTML 5 events inventory.hackademix2019-11-151-1/+1
|
* Fixed false positive (property assignment).hackademix2019-10-251-1/+2
|
* [XSS] Updated HTML5 events.hackademix2019-09-261-1/+1
|
* [XSS] Fix false positives due to overzealous HTML attribute checking.hackademix2019-08-021-2/+2
|
* [XSS] Enable InjectionChecker logging when debugging mode is on.hackademix2019-08-021-4/+3
|
* [XSS] Fixed false positives with parameters named "src".hackademix2019-06-241-1/+1
|
* Further JSON reduction optimizations.hackademix2019-05-281-4/+3
|
* Fixed JSON parsing preamble regression.hackademix2019-05-281-1/+2
|
* XSS Filter made further asynchronous, prevents freezes on complex JSON payloads.hackademix2019-05-271-113/+114
|
* Updated InjectionChecker's HTML5 events.hackademix2019-05-221-1/+1
|
* Merge branch 'chromium' into merge/chromiumhackademix2019-03-271-5/+4
|\
| * Remove usage of non-standard Array methods.hackademix2019-02-011-5/+4
| |
* | Updated event names handled by InjectionChecker.hackademix2019-03-141-1/+1
|/
* [XSS] Updated known HTML events lists.hackademix2018-12-261-1/+1
|
* [XSS] Updated HTML5 events matching.hackademix2018-09-261-1/+1
|
* [XSS] Updated known HTML5 events.hackademix2018-09-141-1/+1
|
* [XSS] Updated HTML events matching generation to use both latest Mozilla ↵hackademix2018-08-181-2/+2
| | | | source code and archived data since Firefox ESR 52.
* Removed all references to RequestUtil.js and dependancies.hackademix2018-08-181-1/+1
|
* [XSS] Updated HTML event attributes matching.hackademix2018-07-261-1/+1
|
* [XSS] Updated HTML events matching.hackademix2018-07-241-1/+1
|
* [XSS] Fixed anti-HPP coalescing wrongly applied to POST requests causing ↵hackademix2018-07-121-2/+2
| | | | JSON reduction optimization to choke on big payloads.
* XSS filter autoupdated to latest HTML events supported by the browserhackademix2018-07-031-1/+1
|
* Initial commit starting at version 10.1.8.3rc4.hackademix2018-07-011-0/+1199