html5security - HTML5 Security Cheatsheet

Project Information

Project feeds
Code license
GNU Lesser GPL
Content license
Creative Commons 3.0 BY
Labels
html5, security, cheat, sheet, xss, javascript, markup, e4x, dom

Members

Mario.He...@gmail.com

gazhe...@gmail.com

sirdarckcat

thornma...@gmail.com

9 committers

Featured

Wiki pages

Links

Welcome to the HTML5 Security Cheatsheet Project

This project is an attempt to create a well maintained, informative and categorized cheat sheet to highlight HTML5 as well as other client side and related security issues and ways to avoid them.

The project is meant to target web developers as well as security researchers and especially browser vendors since many of the problems we found are based on faulty or quirky implementations. Focus is on completeness, comprehensibility and timeliness as well as continuity - benefits many other related cheat sheets don't exactly provide.

The core will be a frequently updated JSON file which you can download, mirror, host, fork, modify for own special purposes.

Have a look at the eye-friendly HTML5 version (http://html5sec.org/) of the cheat sheet showing the vectors and the detailed descriptions as well as click-to-see examples and more.

<form id="test"></form><button form="test" formaction="javascript:alert(1)">X

...will be stored in JSON like this:

{ /* ID 1 - XSS via formaction - requiring user interaction */
    'id'         : 1, 
    'category'   : 'html5', 
    'name'       : {
        'en' : 'XSS via formaction - requiring user interaction'
    },
    'data'       : '<form id="test" /><button form="test" formaction="%js_uri_alert%">X',
    'description': {
        'en' : 'A vector displaying the HTML5 for ...side the actual form.'
    },
    'tickets'    : [],
    'howtofix'   : {
        'en' : 'Don\'t allow users to submit markup ... forms as well as submit buttons.'
    },
    'browsers'   : {
        'opera': ['10.5']
    },
    'tags'       : ['xss', 'html5', 'ff', 'gc'],
    'reporter'   : '.mario'
}

...and finally be displayed nicely on a HTML5 page we will release soon using the JSON data. Or be used in your scanner. Or by any other tool you can think of.

Have a look at the repository trunk for more: http://code.google.com/p/html5security/source/browse/#svn/trunk

The main goal of the project is to be as open as possible. You have a new vector or issue to add? Just post a ticket and we will take care of it. You want to contribute to the JSON or other parts of the code base? Drop us a line and we will most probably add you as a committer.