michael@0: // vectors by the html5security project (https://code.google.com/p/html5security/ & Creative Commons 3.0 BY), see CC-BY-LICENSE for the full license
michael@0:
michael@0: var vectors = [
michael@0: {
michael@0: "data": "",
michael@0: "sanitized": ""
michael@0: },
michael@0: {
michael@0: "data": "&ADz&AGn&AG0&AEf&ACA&AHM&AHI&AGO&AD0&AGn&ACA&AG8Abg&AGUAcgByAG8AcgA9AGEAbABlAHIAdAAoADEAKQ&ACAAPABi",
michael@0: "sanitized": "&ADz&AGn&AG0&AEf&ACA&AHM&AHI&AGO&AD0&AGn&ACA&AG8Abg&AGUAcgByAG8AcgA9AGEAbABlAHIAdAAoADEAKQ&ACAAPABi"
michael@0: },
michael@0: {
michael@0: "data": "&alert&A7&(1)&R&UA;&&<&A9&11/script&X&>",
michael@0: "sanitized": "&alert&A7&(1)&R&UA;&&<&A9&11/script&X&>"
michael@0: },
michael@0: {
michael@0: "data": "0? :postMessage(importScripts('data:;base64,cG9zdE1lc3NhZ2UoJ2FsZXJ0KDEpJyk'))",
michael@0: "sanitized": "0? :postMessage(importScripts('data:;base64,cG9zdE1lc3NhZ2UoJ2FsZXJ0KDEpJyk'))"
michael@0: },
michael@0: {
michael@0: "data": "",
michael@0: "sanitized": ""
michael@0: },
michael@0: {
michael@0: "data": "",
michael@0: "sanitized": ""
michael@0: },
michael@0: {
michael@0: "data": "",
michael@0: "sanitized": ""
michael@0: },
michael@0: {
michael@0: "data": "",
michael@0: "sanitized": ""
michael@0: },
michael@0: {
michael@0: "data": "X",
michael@0: "sanitized": "X"
michael@0: },
michael@0: {
michael@0: "data": "",
michael@0: "sanitized": ""
michael@0: },
michael@0: {
michael@0: "data": "",
michael@0: "sanitized": ""
michael@0: },
michael@0: {
michael@0: "data": "
...
",
michael@0: "sanitized": "
...
"
michael@0: },
michael@0: {
michael@0: "data": "01",
michael@0: "sanitized": "01"
michael@0: },
michael@0: {
michael@0: "data": "",
michael@0: "sanitized": ""
michael@0: },
michael@0: {
michael@0: "data": "",
michael@0: "sanitized": ""
michael@0: },
michael@0: {
michael@0: "data": "X",
michael@0: "sanitized": "X"
michael@0: },
michael@0: {
michael@0: "data": "",
michael@0: "sanitized": ""
michael@0: },
michael@0: {
michael@0: "data": "",
michael@0: "sanitized": ""
michael@0: },
michael@0: {
michael@0: "data": "�script �alert(1)//�/script �",
michael@0: "sanitized": "�script �alert(1)//�/script �"
michael@0: },
michael@0: {
michael@0: "data": "",
michael@0: "sanitized": ""
michael@0: },
michael@0: {
michael@0: "data": "",
michael@0: "sanitized": ""
michael@0: },
michael@0: {
michael@0: "data": "",
michael@0: "sanitized": ""
michael@0: },
michael@0: {
michael@0: "data": "",
michael@0: "sanitized": ""
michael@0: },
michael@0: {
michael@0: "data": "1",
michael@0: "sanitized": "1"
michael@0: },
michael@0: {
michael@0: "data": ";1",
michael@0: "sanitized": ";1"
michael@0: },
michael@0: {
michael@0: "data": "+ADw-html+AD4APA-body+AD4APA-div+AD4-top secret+ADw-/div+AD4APA-/body+AD4APA-/html+AD4-.toXMLString().match(/.*/m),alert(RegExp.input);",
michael@0: "sanitized": "+ADw-html+AD4APA-body+AD4APA-div+AD4-top secret+ADw-/div+AD4APA-/body+AD4APA-/html+AD4-.toXMLString().match(/.*/m),alert(RegExp.input);"
michael@0: },
michael@0: {
michael@0: "data": "",
michael@0: "sanitized": ""
michael@0: },
michael@0: {
michael@0: "data": "1",
michael@0: "sanitized": "1"
michael@0: },
michael@0: {
michael@0: "data": ""
michael@0: },
michael@0: {
michael@0: "data": "",
michael@0: "sanitized": ""
michael@0: },
michael@0: {
michael@0: "data": "