Difference between revisions of "Phishing fix favlet"

From Level Access Web Labs
Jump to navigation Jump to search
Line 1: Line 1:
 
<html>
 
<html>
<a href="javascript:(function()
+
<a href="javascript:(
{ document.querySelectorAll('.callout-trigger').forEach(function (n) { n.setAttribute('tabindex','0'); n.setAttribute('role','button');})})();void(0);"> Phishing Fix Favlet </a>
+
 
 +
function traverseFrames(doc,_SRObj) {
 +
 
 +
// check for sr-only class in current document and then check it's frames
 +
 
 +
document.querySelectorAll('.callout-trigger').forEach(function (n) { n.setAttribute('tabindex','0'); n.setAttribute('role','button');})
 +
 
 +
// go through for each frame's document if there are any frames
 +
var frametypes= ['frame','iframe'];
 +
for (var i=0;i<frametypes.length;i++) {
 +
var myframes=doc.getElementsByTagName(frametypes[i]);
 +
for (var z=0;z<myframes.length;z++) {
 +
try {
 +
    traverseFrames(myframes[z].contentWindow.document,_SRObj);
 +
  } catch(e) {
 +
  //errors are stored in _SRObj too
 +
_SRObj.extFrameSrcList = _SRObj.extFrameSrcList + '\n' + myframes[z].src;
 +
_SRObj.frameErrorCount=_SRObj.frameErrorCount + 1;
 +
}
 +
}
 +
}
 +
return _SRObj;
 +
})();void(0);"> Phishing Fix Favlet </a>
 
<p class="callout-trigger"> test </p>
 
<p class="callout-trigger"> test </p>
 
</html>
 
</html>

Revision as of 19:57, 22 November 2019