]> Something Witty Goes Here

codedread

XHTML Piñata

Ok, it’s time to get out your baseball bats and try to break open this piñata. This is a little testing ground to see if you can generate a YSOD by breaking the XHTML well-formedness of my hacked WordPress install.

Leave a comment to try and break the site. I’ll periodically remove comments here, so try as often as you want with as many dirty tricks as you can (nothing malicious please, just demonstrative). I have a feeling this is opening a can of, well, you know…

The scores so far:

17 Responses to “XHTML Piñata”

  1. 1. Sam Ruby Says:

    Comment: <!– foo -- bar –>

    2008-04-08 @ 5:29 AM

  2. 2. Jeff Schiller Says:

    Sam, that should now work, see WP trac above.

    2008-04-08 @ 1:30 PM

  3. 3. John A. Bilicki III Says:

    Here is my test, just being goofy here…
    >$%^#%!@#$@$&*&%(%&!#$>a///\\\\\/////\\\\\

    2008-04-09 @ 6:10 AM

  4. 4. James Says:

    < nbsp; & &amp //

    <script >
    document.writeln(’hello world!<br/<\n’);
    </script >

    Human testing the test page! blah :)

    2008-04-23 @ 10:36 PM

  5. 5. James Says:

    document.writeln(’hello world!\n’);

    2008-04-23 @ 10:37 PM

  6. 6. Jacques Distler Says:

    fubar

    2008-04-24 @ 1:15 AM

  7. 7. Jacques Distler Says:

    bar

    2008-04-24 @ 1:17 AM

  8. 8. Test Guy Says:

    <a 7a=”foo”>bar</a>
    and
    <7a>foo</7a>

    both are prevented from breaking the page, unless you are logged in, that is. (In case this is what Jacques tried here: http://blog.codedread.com/xhtml-pinata/#comment-12531

    2008-04-28 @ 12:46 PM

  9. 9. Tester Guy Says:

    How about this: <a invalid;name=”foo”>bar</a>

    bar

    2008-04-28 @ 12:48 PM

  10. 10. Testing Guy Says:

    How about this: <a invalid#name=”foo”>bar</a>

    bar

    2008-04-28 @ 12:49 PM

  11. 11. Testing Guy Says:

    Another invalid comment: <!– test —>

    2008-04-28 @ 1:01 PM

  12. 12. Testing Guy Says:

    <? foo ?>

    2008-04-28 @ 1:02 PM

  13. 13. Testing Guy Says:

    <a href=”foo”>Open link…

    Open link…

    2008-04-28 @ 1:03 PM

  14. 14. Haruka Says:

    document.writeln(’hello world!<br/<\n’);

    document.writeln(’hello world!<br/<\n’);

    <a><strong>
    &lt;p>paragraph
    <!—<<–>

    Waves

    2008-05-02 @ 3:28 AM

  15. 15. Jeff Schiller Says:

    Nice one, Haruka! I’ll do some investigation on this - I’m pretty sure it’s an open WP bug (they should be closing your <a> and <strong> tags before inserting the closing </p> tag).

    2008-05-02 @ 8:36 AM

  16. 16. Haruka Says:

    Well, not going to break anything this time :) About this comment escaping and all… wouldn’t it be easier to validate comments against some simple schema (say RelaxNG) and if something is wrong just use htmlspecialchars() or similar on the whole string? That’s all or nothing though… (preview helps with this).

    2008-05-02 @ 12:12 PM

  17. 17. Stephen Says:

    <a href=”

    Unless otherwise stated, all contents of this website are Copyright (c) of Jeff Schiller, 2008

    codedread codedread