Commit ddad95d

committed

include points inline in solutions.md

1 parent 527178e commit ddad95dCopy full SHA for ddad95d

File tree

3 files changed

+39

-42

lines changed

exercises/10
- problem.md
src
- SOLUTIONS.md
- SURVEY.md

3 files changed

+39

-42

lines changed

`‎exercises/10/problem.md‎`

Lines changed: 16 additions & 6 deletions

Original file line number	Diff line number	Diff line change
`@@ -4,19 +4,29 @@ Fortunately, your competitor just deployed a new version of their site that incl`
`4`	`4`
`5`	`5`	`The feature is called "Competitor Comparison" and it includes links to competitor search engines so that users can compare search results and decide which search engine is best. Clearly, they feel pretty confident that their results are the best.`
`6`	`6`
`7`		-They appear to be using the foolproof `htmlElementEscape()` function written for them by the Stanford CS 253 student to generate the HTML for these links so you think they're guaranteed to be safe.
	`7`	+They appear to be using the foolproof `htmlElementEscape()` function written for them by the Stanford CS 253 student to generate the HTML for these links so you think they're guaranteed to be safe:
`8`	`8`
`9`		`-But upon closer inspection, it appears that they're not using the function correctly. Time to teach them another lesson!`
	`9`	+```js
	`10`	`+router.get('/search', async (req, res) => {`
	`11`	`+ let q = req.query.q`
	`12`	`+ if (q == null) q = ''`
	`13`	`+`
	`14`	`+ q = htmlElementEscape(q)`
`10`	`15`
`11`		`-## Goals`
	`16`	`+ const results = await getResults(q)`
	`17`	`+ res.render('caloogle-search-page', { q, results })`
	`18`	`+})`
	`19`	+```
	`20`	`+`
	`21`	`+But upon closer inspection, it appears that they're not using the function correctly. Time to teach them another lesson!`
`12`	`22`
`13`		-1. Find the XSS vulnerability in the search input field. You can use any HTML you want to run the `success()` function.
	`23`	`+## Goal`
`14`	`24`
`15`		`-1. Write out the code that you believe the server must be executing to process the input.`
	`25`	+Find the XSS vulnerability in the search input field. You can use any HTML you want to run the `success()` function.
`16`	`26`
`17`	`27`	`## Tip`
`18`	`28`
`19`		-Try submitting various inputs and then look at the HTML source of the `<iframe>` to figure out what their sanitization code must be doing.
	`29`	+Try submitting various inputs and then look at the HTML source of the `<iframe>` to figure out how the "sanitized" user input interacts with the context of the HTML source.
`20`	`30`
`21`	`31`	`<iframe src='http://caloogle.xyz:4100'></iframe>`
`22`	`32`

`‎src/SOLUTIONS.md‎`

Lines changed: 19 additions & 32 deletions

Original file line number	Diff line number	Diff line change
`@@ -2,49 +2,49 @@`
`2`	`2`
`3`	`3`	`N/A`
`4`	`4`
`5`		`-# 1. A Truly Disruptive Startup`
	`5`	`+# 1. A Truly Disruptive Startup (3 points)`
`6`	`6`
`7`	`7`	```
`8`	`8`	`TODO: Replace this with your attack input.`
`9`	`9`	```
`10`	`10`
`11`		`-# 2. No Script Allowed`
	`11`	`+# 2. No Script Allowed (3 points)`
`12`	`12`
`13`	`13`	```
`14`	`14`	`TODO: Replace this with your attack input.`
`15`	`15`	```
`16`	`16`
`17`		`-# 3. One More Time, Like You Mean It`
	`17`	`+# 3. One More Time, Like You Mean It (3 points)`
`18`	`18`
`19`	`19`	```
`20`	`20`	`TODO: Replace this with your attack input.`
`21`	`21`	```
`22`	`22`
`23`		`-# 4. An Open-and-Shut Case`
	`23`	`+# 4. An Open-and-Shut Case (3 points)`
`24`	`24`
`25`	`25`	```
`26`	`26`	`TODO: Replace this with your attack input.`
`27`	`27`	```
`28`	`28`
`29`		`-# 5. Time to Mix Things Up`
	`29`	`+# 5. Time to Mix Things Up (3 points)`
`30`	`30`
`31`	`31`	```
`32`	`32`	`TODO: Replace this with your attack input.`
`33`	`33`	```
`34`	`34`
`35`		`-# 6. A Picture is Worth a Thousand Words`
	`35`	`+# 6. A Picture is Worth a Thousand Words (3 points)`
`36`	`36`
`37`	`37`	```
`38`	`38`	`TODO: Replace this with your attack input.`
`39`	`39`	```
`40`	`40`
`41`		`-# 7. Between a Rock And a Hard Place`
	`41`	`+# 7. Between a Rock And a Hard Place (3 points)`
`42`	`42`
`43`	`43`	```
`44`	`44`	`TODO: Replace this with your attack input.`
`45`	`45`	```
`46`	`46`
`47`		`-# 8. Angle of Death`
	`47`	`+# 8. Angle of Death (6 points)`
`48`	`48`
`49`	`49`	`Attack input:`
`50`	`50`
`@@ -71,30 +71,13 @@ router.get('/search', async (req, res) => {`
`71`	`71`
`72`	`72`	`N/A`
`73`	`73`
`74`		`-# 10. In the Wrong Place at the Wrong Time`
`75`		`-`
`76`		`-Attack input:`
	`74`	`+# 10. In the Wrong Place at the Wrong Time (3 points)`
`77`	`75`
`78`	`76`	```
`79`	`77`	`TODO: Replace this with your attack input.`
`80`	`78`	```
`81`	`79`
`82`		`-Server code:`
`83`		`-`
`84`		-```js
`85`		`-router.get('/search', async (req, res) => {`
`86`		`- let q = req.query.q`
`87`		`- if (q == null) q = ''`
`88`		`-`
`89`		`- // TODO: Replace this with your solution.`
`90`		`- // q = ???`
`91`		`-`
`92`		`- const results = await getResults(q)`
`93`		`- res.render('caloogle-search-page', { q, results })`
`94`		`-})`
`95`		-```
`96`		`-`
`97`		`-# 11. You Can't Win 'em All`
	`80`	`+# 11. You Can't Win 'em All (6 points)`
`98`	`81`
`99`	`82`	`Attack input:`
`100`	`83`
`@@ -117,7 +100,7 @@ router.get('/search', async (req, res) => {`
`117`	`100`	`})`
`118`	`101`	```
`119`	`102`
`120`		`-# 12. When All is Said and Done`
	`103`	`+# 12. When All is Said and Done (6 points)`
`121`	`104`
`122`	`105`	`Attack input:`
`123`	`106`
`@@ -144,27 +127,27 @@ router.get('/search', async (req, res) => {`
`144`	`127`
`145`	`128`	`N/A`
`146`	`129`
`147`		`-# 14. Here Today and Gone Tomorrow`
	`130`	`+# 14. Here Today and Gone Tomorrow (3 points)`
`148`	`131`
`149`	`132`	`Attack URL:`
`150`	`133`
`151`	`134`	```
`152`	`135`	`TODO: Replace this with your solution. This should be a URL!`
`153`	`136`	```
`154`	`137`
`155`		`-# 15. The Early Bird Catches the Worm`
	`138`	`+# 15. The Early Bird Catches the Worm (3 points)`
`156`	`139`
`157`	`140`	```
`158`	`141`	`TODO: Replace this with your attack input.`
`159`	`142`	```
`160`	`143`
`161`		`-# 16. Tying Up Loose Ends`
	`144`	`+# 16. Tying Up Loose Ends (3 points)`
`162`	`145`
`163`	`146`	```
`164`	`147`	`TODO: Replace this with your attack input.`
`165`	`148`	```
`166`	`149`
`167`		`-# 17. Take a Page Out of Their Book`
	`150`	`+# 17. Take a Page Out of Their Book (6 points)`
`168`	`151`
`169`	`152`	`Attack code:`
`170`	`153`
`@@ -175,3 +158,7 @@ Attack code:`
`175`	`158`	`# 18. Congrats`
`176`	`159`
`177`	`160`	`N/A`
	`161`	`+`
	`162`	`+# Survey responses (3 points)`
	`163`	`+`
	`164`	`+Write your survey responses in SURVEY.md!`

`‎src/SURVEY.md‎`

Lines changed: 4 additions & 4 deletions

Original file line number	Diff line number	Diff line change
`@@ -1,14 +1,14 @@`
`1`		`-# Assignment 1 Survey Questions`
	`1`	`+# Assignment 1 Survey Questions (3 points)`
`2`	`2`
`3`		`-## Roughly how long did you spend on this assignment? (required)`
	`3`	`+## Roughly how long did you spend on this assignment?`
`4`	`4`
`5`	`5`	`TODO: Replace this with your response`
`6`	`6`
`7`		`-## What was your favorite part of this assignment? (required)`
	`7`	`+## What was your favorite part of this assignment?`
`8`	`8`
`9`	`9`	`TODO: Replace this with your response`
`10`	`10`
`11`		`-## What was your least favorite part of this assignment? (required)`
	`11`	`+## What was your least favorite part of this assignment?`
`12`	`12`
`13`	`13`	`TODO: Replace this with your response`
`14`	`14`

0 commit comments

Comments

(0)

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit ddad95d

File tree

3 files changed

3 files changed

`‎exercises/10/problem.md‎`

`‎src/SOLUTIONS.md‎`

`‎src/SURVEY.md‎`

0 commit comments