big-list-of-naughty-strings icon indicating copy to clipboard operation
big-list-of-naughty-strings copied to clipboard

Published 20 hours ago verified publisher icon minimaxir

AngularJS curly brackets

Open korotin opened this issue 7 years ago • 2 comments

Hello.

I assume double curly brackets used in AngularJS for data binding are worth adding to that list. If not escaped properly string like {{ blablabla }} may crash AngularJS app.

More on AngularJS syntax: https://docs.angularjs.org/guide/introduction

korotin avatar Nov 02 '16 09:11 korotin

and maybe something like that : {{x = {'y':''.constructor.prototype}; x['y'].charAt=[].join;$eval('x=alert(1)');}}

cf : https://finnwea.com/blog/stealing-passwords-from-mcdonalds-users

xavhan avatar Jan 16 '17 09:01 xavhan

https://gist.github.com/mccabe615/cc92daaf368c9f5e15eda371728083a3

Plazmaz avatar Feb 15 '18 22:02 Plazmaz