Additional negative test

2017-02-28 09:47:27 -08:00
parent 382c8ca928
commit 9abb780da7
1 changed files with 18 additions and 0 deletions
--- a/pmd-visualforce/src/test/resources/net/sourceforge/pmd/lang/vf/rule/security/xml/VfUnescapeEl.xml
+++ b/pmd-visualforce/src/test/resources/net/sourceforge/pmd/lang/vf/rule/security/xml/VfUnescapeEl.xml
@ -240,6 +240,24 @@ XSS via item value
    </apex:form>
 </apex:page>
    
+]]></code>
+		<source-type>vf</source-type>
+	</test-code>
+
+	<test-code>
+		<description><![CDATA[
+XSS via item value
+     ]]></description>
+		<expected-problems>0</expected-problems>
+		<code><![CDATA[
+<apex:page>
+    <apex:form>
+        <apex:selectList value="{!string}" size="1">
+            <apex:selectOption itemValue='{!HTMLENCODE(XSS)}' itemLabel="Red" itemEscaped="false"/>
+        </apex:selectList> 
+    </apex:form>
+</apex:page>
+    
 ]]></code>
 		<source-type>vf</source-type>
 	</test-code>