summaryrefslogtreecommitdiffstats
path: root/devtools/client/webconsole/test/browser/test-csp-violation-base-uri.html
diff options
context:
space:
mode:
Diffstat (limited to 'devtools/client/webconsole/test/browser/test-csp-violation-base-uri.html')
-rw-r--r--devtools/client/webconsole/test/browser/test-csp-violation-base-uri.html18
1 files changed, 18 insertions, 0 deletions
diff --git a/devtools/client/webconsole/test/browser/test-csp-violation-base-uri.html b/devtools/client/webconsole/test/browser/test-csp-violation-base-uri.html
new file mode 100644
index 0000000000..9f6e975903
--- /dev/null
+++ b/devtools/client/webconsole/test/browser/test-csp-violation-base-uri.html
@@ -0,0 +1,18 @@
+<html>
+ <head>
+ <title>CSP Base-URI Violation Test </title>
+ <base href="https://evil.com/">
+ </head>
+ <body>
+ <h1> Crashing the Base Element</h1>
+ </body>
+ <script>
+ "use strict";
+ window.violate = ()=>{
+ document.head.innerHTML = "";
+ const b = document.createElement("base");
+ b.href = "https://evil.com";
+ document.head.append(b);
+ };
+ </script>
+ </html>
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-17 23:48:21 +0000