info/big-list-of-naughty-strings
1
0
Fork 0
mirror of https://github.com/minimaxir/big-list-of-naughty-strings.git synced 2025-09-03 02:42:36 +02:00
Code Issues Releases Wiki Activity

Adds constructor

Browse Source 
`constructor` is the only lowercase identifier that is `in` all JavaScript objects, and can be involved in obscure XSS so can be used to abuse code that uses JavaScript objects as lookup tables.

```js
var empty = {};
if ('constuctor' in empty && empty['constructor']) {
  // runs
}
empty['constructor']['constructor']('alert(1)')();  // Parses and runs 
```
This commit is contained in:
Mike Samuel
2019-02-22 13:29:07 -05:00
committed by GitHub
parent f56ff6ea82
commit 71a3013953
1 changed files with 1 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
blns.txt
View File

@@ -18,6 +18,7 @@ FALSE
None
hasOwnProperty
then
constructor
\
\\