firefox/devtools/client/webconsole/test/browser/test-csp-violation-form-action.html

<html>
      <head>
          <title>CSP Base-URI Violation Test </title>
          <base href="https://evil.com/">
      </head>
      <body>
          <form action="evil.com" >
              <input type="text" value="test" name="test" />
              <button type="submit">Submit Button</button>
          </form>
      </body>
      <script>
        "use strict";
        document.querySelector("form").submit();
      </script>
    </html>