Tested with Chrome, Firefox and Safari.
The following code will not trigger an alert.
target.innerHTML = "<script> alert('XSS Attack'); </script>";
The following code will trigger an alert.
target.innerHTML = "";
Tomáš Dvořák Tomas2D
hu553in
/ install-old-chrome.sh
Last active
October 7, 2025 23:58
How to download and install an old Chrome version (the Debian package)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # required Chrome version can be found here: | |
| # https://www.ubuntuupdates.org/package/google_chrome/stable/main/base/google-chrome-stable | |
| CHROME_VERSION="" | |
| wget --no-check-certificate \ | |
| https://dl.google.com/linux/chrome/deb/pool/main/g/google-chrome-stable/google-chrome-stable_${CHROME_VERSION}-1_amd64.deb |
thomascube
/ vtimezone.php
Last active
February 15, 2023 21:15
VTIMEZONE component for a Olson timezone identifier with daylight transitions.Solution to this StackOverflow question: https://stackoverflow.com/questions/6682304/generating-an-icalender-vtimezone-component-from-phps-timezone-value/25971680
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?php | |
| use \Sabre\VObject; | |
| // use composer autoloader | |
| require_once 'vendor/autoload.php'; | |
| /** | |
| * Returns a VTIMEZONE component for a Olson timezone identifier | |
| * with daylight transitions covering the given date range. |
janus57
/ install_php_sury.sh
Last active
April 9, 2025 23:20
Install "deb.sury.org" repository for PHP
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # For up-to-date version see : https://packages.sury.org/php/README.txt | |
| wget https://packages.sury.org/php/apt.gpg -O /usr/share/keyrings/deb.sury.org-php.gpg | |
| echo "deb [signed-by=/usr/share/keyrings/deb.sury.org-php.gpg] https://packages.sury.org/php/ $(lsb_release -sc) main" > /etc/apt/sources.list.d/php-sury.list | |
| apt update |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <IfModule mod_rewrite.c> | |
| RewriteEngine On | |
| RewriteBase / | |
| RewriteRule ^index\.html$ - [L] | |
| RewriteCond %{REQUEST_FILENAME} !-f | |
| RewriteCond %{REQUEST_FILENAME} !-d | |
| RewriteCond %{REQUEST_FILENAME} !-l | |
| RewriteRule . /index.html [L] |
lahmatiy
/ prevent-input.js
Last active
May 22, 2023 17:19
Snippet for node.js to prevent any user input while script is working, but process ctrl+c to exit
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // doesn't work w/o this interface creation | |
| require('readline').createInterface({ | |
| input: process.stdin, | |
| output: process.stdout | |
| }); | |
| // stop process input | |
| process.stdin.pause(); | |
| // read from stdin 10 times per second to check if ctrl+c pressed |
ghalusa
/ youtube_id_regex.php
Created
June 20, 2015 23:14
Extract the YouTube Video ID from a URL in PHP
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?php | |
| // Here is a sample of the URLs this regex matches: (there can be more content after the given URL that will be ignored) | |
| // http://youtu.be/dQw4w9WgXcQ | |
| // http://www.youtube.com/embed/dQw4w9WgXcQ | |
| // http://www.youtube.com/watch?v=dQw4w9WgXcQ | |
| // http://www.youtube.com/?v=dQw4w9WgXcQ | |
| // http://www.youtube.com/v/dQw4w9WgXcQ | |
| // http://www.youtube.com/e/dQw4w9WgXcQ | |
| // http://www.youtube.com/user/username#p/u/11/dQw4w9WgXcQ |
yckart
/ README.md
Last active
October 22, 2021 20:15
Get Viewport dimensions in all browsers. http://stackoverflow.com/a/18136089/1250044
LeCoupa
/ xpath-cheatsheet.js
Last active
October 25, 2025 20:09
XPath Cheatsheet --> https://github.com/LeCoupa/awesome-cheatsheets
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // XPath CheatSheet | |
| // To test XPath in your Chrome Debugger: $x('/html/body') | |
| // http://www.jittuu.com/2012/2/14/Testing-XPath-In-Chrome/ | |
| // 0. XPath Examples. | |
| // More: http://xpath.alephzarro.com/content/cheatsheet.html | |
| '//hr[@class="edge" and position()=1]' // every first hr of 'edge' class |