#Angular Sandbox Escapes Cheatsheet
Source: XSS without HTML: Client-Side Template Injection with AngularJS
1.0.1 - 1.1.5 Mario Heiderich (Cure53)
{{constructor.constructor('alert(1)')()}}
1.2.0 - 1.2.1
Jeremy Buis jeremybuis
jeremybuis
/ angular.sandbox.escapes.md
Created
January 27, 2016 15:31
Angular Sandbox Escape Cheatsheet
jeremybuis
/ gist:c487e5f13abd3ffd3964
Created
February 25, 2015 13:34
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ### Keybase proof | |
| I hereby claim: | |
| * I am jeremybuis on github. | |
| * I am jeremybuis (https://keybase.io/jeremybuis) on keybase. | |
| * I have a public key whose fingerprint is 21C8 761C 3FCE 1C4F CBC9 70A9 D15D B207 8DFE 16B1 | |
| To claim this, I am signing this object: |
jeremybuis
/ zero-init-array.js
Created
April 16, 2014 15:04
A snippet of js that generates a 0 filled array
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // http://stackoverflow.com/questions/1295584/most-efficient-way-to-create-a-zero-filled-javascript-array?lq=1 | |
| Array.apply(null, new Array(5)).map(Number.prototype.valueOf, 0); |
jeremybuis
/ extend.js
Created
April 10, 2014 15:25
An implementation of the extend function for object mixin
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // Taken from | |
| // http://raganwald.com/2014/04/10/mixins-forwarding-delegation.html | |
| (function(window) { | |
| var __slice = [].slice; | |
| function extend () { | |
| var consumer = arguments[0], | |
| providers = __slice.call(arguments, 1), | |
| key, |
jeremybuis
/ README.md
Created
November 20, 2013 20:26
— forked from mbostock/.block
Using d3.geo.tile to display raster image tiles underneath some TopoJSON vectors, and d3.behavior.zoom for pan & zoom. This version reprojects the geometry on interaction; compare to updating the transform.
This done with svg http://bl.ocks.org/mbostock/6242308 using this technique http://bl.ocks.org/mbostock/2374239
jeremybuis
/ Readme.md
Created
August 16, 2013 18:22
— forked from WillTurman/Readme.md
The series hover interactivity uses the technique from lgrammel seen here: http://bl.ocks.org/1963983
It isn't necessarily a tooltip, but data is displayed by inverting the x-axis value into a date, and mapping the date to the corresponding data value for the series.
jeremybuis
/ README.md
Last active
December 17, 2015 17:09
— forked from dwtkns/README.md
Building on this - experimenting with fake 3d svg arcs using two nested orthographic projections and cardinal line interpolation.
jeremybuis
/ index.html
Created
April 22, 2013 19:45
— forked from zmaril/index.html
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <!doctype html> | |
| <head> | |
| <style> | |
| body { | |
| font: 10px sans-serif; | |
| } | |
| #main { | |
| left: 25%; | |
| position: absolute; | |
| } |
jeremybuis
/ README.md
Last active
December 16, 2015 08:39
An updated spinny map to work with the new api's
NewerOlder