зеркало из https://github.com/mozilla/gecko-dev.git
12 строки
324 B
HTML
12 строки
324 B
HTML
<!DOCTYPE HTML>
|
|
<html>
|
|
<head>
|
|
<meta charset="utf-8">
|
|
<title>Bug 1073952 - CSP should restrict scripts in srcdoc iframe even if sandboxed</title>
|
|
</head>
|
|
<body>
|
|
<iframe srcdoc="<img src=x onerror='parent.postMessage({result: `unexpected-csp-violation`}, `*`);'>"
|
|
sandbox="allow-scripts"></iframe>
|
|
</body>
|
|
</html>
|