Does string contain Ajax?
Question
I am writing a tutorial page for JavaScript and to prevent xss I want to check if the user's input contains any ajax and if it does return an error string. Also any other elements that could be used for xss in the input should make it error. What would the code for this be?
1 answers
solution1
2 ACCPTED 2015-10-04 12:09:11
Try defining a RegExp including methods, strings which should not pass validation , utilize RegExp.prototype.test() with string as argument
var re = /XMLHttpRequest|.\\.ajax|.\\.get|.\\.post|.\\.getScript|script/; var str = "$.post"; var res = re.test(str) ? new Error("error") : str; console.log(res)
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.
Related Question
if array does not contain string
Ajax error does not contain a response
Matching a string that does not contain a fragment - using regexp
Check if string does not contain URL segment and match it
JavaScript Regex: Finding a String that does not contain </p>
Does an element contain a specified string (pure JS)?
RegEx : Match line of string that does not contain [ character
How do I filter elements which contain a string with an AJAX request?
Why Does My AJAX Response Contain HTML Source?
Is there a regex that will match a string that does not contain a (non) fixed width string?
Related Tags