README
¶
Webseclab
Webseclab contains a sample set of web security test cases and a toolkit to construct new ones. It can be used for testing security scanners, to replicate or reconstruct issues, or to help with investigations or discussions of particular types of web security bugs.
Install
If you don't have Go installed yet, grab the latest stable version from https://golang.org/dl/ and install following instructions on https://golang.org/doc/install.
Set GOPATH environment variable as described in http://golang.org/doc/code.html#GOPATH - for example export GOPATH=$HOME/go. (You may wish to add $GOPATH/go/bin to your PATH.) Then run:
$ go get github.com/yahoo/webseclab/...
Run
$GOPATH/bin/webseclab [-http=:8080]
or simply webseclab if $GOPATH/bin is in your PATH.
Run webseclab -help to view the options.
Webseclab Tests
In all tests, excepts where specially mentioned, the attack input is assumed to be placed in the "in" CGI variable: <url>?in=<attack_string>. See the index page for PoEs (proof of exploits).
Reflected XSS
-
xss/reflect/raw1 - echoes "raw" tags = literal '<' and '>' sent by the browser (IE-related). Can be tested with curl (Firefox/Chrome/Safari escape tag characters when sending to the server)
-
xss/reflect/basic - echo of unfiltered input in a "normal" HTML context (not between tags, etc.). The example shows the minimal Webseclab template consisting of just {{.In}} placeholder. PoE: /xss/reflect/basic?in=<script>alert(/HACKED/)</script> or /xss/reflect/basic?in=<img src=foo onerror=alert(12345)>
-
xss/reflect/basic_in_tag - echo of unfiltered input inside of a "regular" HTML tag (<B>) PoE: /xss/reflect/basic_in_tag?in=<script>alert(/HACKED/)</script> or /xss/reflect/basic_in_tag?in=<img src=foo onerror=alert(12345)>
-
xss/reflect/full1 - Javascript injection with closed quotes and a script tag echoed
-
xss/reflect/post1 - same as above with injection via POST "in" form field (only POST method is allowed). xss/reflect/post1_splash can be used as a starting page with the action URL of xss/reflect/post1.
-
xss/reflect/doubq1 - injection of double-escaped tags such as: xss/reflect/doubq1?in=%253Cscript%253Ealert%28%252FXSS%252F%29%253C%252Fscript%253E
-
xss/reflect/rs1 - Response-Splitting attack, injection of %0D%0A%0D%0A which echoed unescaped in the header turning it into the response body. PoE: /xss/reflect/rs1?in=xyz%0D%0A%0D%0A
-
xss/reflect/onmouseover* - XSS due to attribute injections in tags (such as onmouseover handler)
-
xss/reflect/oneclick1 - JS injection into JS executable context (unquoted input) - so-called "oneclick XSS".
-
xss/reflect/refer - the Referer header echoed. You can set up a page pointing to <WEBSECLAB_URL>/misc/webseclab_refer.html?%3Cscript%3Ealert%28789%29%3C/script%3E as a starting point to set the referer.
-
xss/reflect/js* - different cases of injection into Javascript blocks, see the index page for more details
-
xss/reflect/enc2 - double quotes escaped with a backslash but backslash itself is not. Exploitable injection into Javascript strings.
-
xss/reflect/backslash1?in=xyz - Unicode escape sequences like \u0022 unescaped by the server to became the corresponding (dangerous) character (double quotes).
DOM XSS
-
xss/dom/domwrite?in=foo - passing the unescaped document.location value to document.write(), PoE (Firefox): /xss/dom/domwrite?in=%3Cimg%20src=foo%20onerror=alert%28123%29%3E
-
xss/dom/domwrite_hash?#whatever - passing the unescaped document.hash value to document.write(). PoE (Firefox): /xss/dom/domwrite_hash?#in=%3Cimg%20src=foo%20onerror=alert%281246%29%3E
-
xss/dom/domwrite_hash_urlstyle#/foo/bar?in=whatever - passing the unescaped document.hash URL-style value to document.write(). PoE (Firefox): /xss/dom/domwrite_hash_urlstyle#/foo/bar?in=%3Cimg%20src=foo%20onerror=alert%281246%29%3E
-
xss/dom/yuinode_hash?#in=xyz - passing the hash value to YUI's setHTML function. PoE (Chrome/Firefox): /xss/dom/yuinode_hash?#in=xyz">/xss/dom/yuinode_hash?#in=xyz - DOM XSS using YUI (location.hash)
-
xss/dom/yuinode_hash_urlstyle/#/foo/bar?in=xyz - passing the URL-style hash value to YUI's setHTML function. PoE (Chrome/Firefox): /xss/dom/yuinode_hash_urlstyle/#/foo/bar?in=xyz">/xss/dom/yuinode_hash_urlstyle/#/foo/bar?in=xyz - DOM XSS using YUI (location.hash, URL-style value)
-
xss/dom/yuinode_hash_unencoded?#in=xyz - passing the unencoded hash value to YUI's setHTML function. PoE (Firefox / Chrome): /xss/dom/yuinode_hash?#in=xyz">/xss/dom/yuinode_hash?#in=xyz - DOM XSS using YUI (decoded location.hash)
Modifying Tests
When modifying, adding or deleting any tests, you need to rerun go generate.
For most of the tests, you need to add a template that contains the "moustache" with {{.In}}.
To add a new test where input is echoed unfiltered, just drop an html template under templates directory (for example templates/xss/newfile) with the template containing the {{.In}} placeholder.
To add a new "filter-based" case, add a template as above and add
a mapping of the corresponding entrypoint (such as /xss/newfile )
to the map in the filterMap function in custom.go. For example:
mp["/xss/reflect/newtest"] = []filter{TagsOff, SingleQuotesOff, GreaterThanOff}
for a test with the corresponding input filtering. See filters.go for the list of the available filters.
To add a new fully custom testcase, add a template (if needed),
add a mapping of the entrypoint to the handling function to CustomMap in custom.go and implement the custom function with the signature: func(http.ResponseWriter, *http.Request). For example, for a test case with XSS injection through the Morse code, you could add:
mp["/xss/reflect/morse"] = XssUnsafeMorse. See entrypoints and implementing functions in CustomMap in custom.go.
Documentation
¶
Overview ¶
Package webseclab contains a sample set of tests for web security scanners and a tooolkit to create such tests.
To install webseclab: go get github.com/yahoo/webseclab/...
To run the webseclab, execute the binary:
$ webseclab
By default, it will start the web server on port 8080, add -http=:<port> parameter to change it.
Run 'webseclab -help' for the usage help.
The convention is that the "in" cgi parameter (as in: ?in=foo) is used to passed unsafe input (unless there are special functions that pickup the input form other places like POST or headers - see custom.go)
See sample.html for an example of a template that can be used.
To add a new test where input is echoed unfiltered, just drop an html template into somewhere under templates directory (for example templates/xss/newfile) with the template containing the "moustache" with: {{.In}}
To add a new "filter-based" case, add a template as above and add a mapping of the corresponding entrypoint (such as /xss/newfile ) to the map in the filterMap function.
To add a new fully custom testcase, add a template (if needed), add the mapping of entrypoint to the handling function to CustomMap and implement the custom function ( func(http.ResponseWriter, *http.Request) )
Index ¶
- Constants
- Variables
- func AddHTMLTemplate(name string, htmpl *ht.Template)
- func AddTextTemplate(name string, ttmpl *tt.Template)
- func CustomMap() (mp map[string]func(http.ResponseWriter, *http.Request) *LabResp)
- func DoTemplate(w http.ResponseWriter, path string, input *InData) (err error)
- func GetIPURL(host string, link *url.URL) (*url.URL, error)
- func IsIP(s string) bool
- func IsIPURL(u *url.URL) bool
- func IsSafeHost(s string) bool
- func KillPredecessor(port string)
- func LookupHTMLTemplate(name string) (htmpl *ht.Template, ok bool)
- func LookupTextTemplate(name string) (ttmpl *tt.Template, ok bool)
- func MakeExitFunc(ln net.Listener) func(http.ResponseWriter, *http.Request)
- func MakeIndexFunc(page string) func(http.ResponseWriter, *http.Request)
- func ParseRawQuery(m map[string][]string, query string)
- func RemoveTags(src string) string
- func RemoveTagsExceptTextareaClose(src string) (out string)
- func RemoveTagsUntilTextareaClose(src string) (out string)
- func ReplaceTextareaSafe(src string) (out string)
- func Ruok(w http.ResponseWriter, r *http.Request)
- func Transform(s string, f ...filter) string
- func UnescapeUnicode(s string) string
- type InData
- type LabHandler
- type LabResp
- func DoLabTestStandard(w http.ResponseWriter, r *http.Request) *LabResp
- func HandleFilterBased(w http.ResponseWriter, r *http.Request, filters []filter) *LabResp
- func XSSBackslash(w http.ResponseWriter, r *http.Request) *LabResp
- func XSSDoubq(w http.ResponseWriter, r *http.Request) *LabResp
- func XSSEnc(w http.ResponseWriter, r *http.Request) *LabResp
- func XSSEncFp(w http.ResponseWriter, r *http.Request) *LabResp
- func XSSFullCookies(w http.ResponseWriter, r *http.Request) *LabResp
- func XSSFullHeaders(w http.ResponseWriter, r *http.Request) *LabResp
- func XSSFullUseragent(w http.ResponseWriter, r *http.Request) *LabResp
- func XSSInRedirectFp(w http.ResponseWriter, r *http.Request) *LabResp
- func XSSPost(w http.ResponseWriter, r *http.Request) *LabResp
- func XSSReferer(w http.ResponseWriter, r *http.Request) *LabResp
- func XSSRs(w http.ResponseWriter, r *http.Request) *LabResp
- type RegexpMatchEraser
- type ReplaceFunction
- type StringsReplacer
- type TemplateData
- type Transformer
Constants ¶
View Source
const ( Invalid filter = iota BackslashEscape // escape \ with a \ BackslashEscapeDoubleQuotesAndBackslash DoubleQuotesBackslashEscape DoubleQuotesCook DoubleQuotesOff GreaterThanCook GreaterThanOff LessThanCook LessThanOff NoOp ParensOff QuotesCook QuotesOff SingleQuotesCook SingleQuotesOff SpacesCook SpacesOff ScriptOff TagCharsOff TagsCook TagsOff TagsOffExceptTextareaClose TagsOffUntilTextareaClose TextareaCloseOff TextareaSafe )
constants for the most common filters
View Source
const WebseclabVersion = "0.9.0"
WebseclabVersion is used for command-line display, etc.
Variables ¶
View Source
var Templates = map[string]string{
"index.html": `<!doctype html>
<html>
<head>
<body>
<H1>Web Application Security Lab</H1>
{{if .In}}IP link: <A href="http://{{.In}}">http://{{.In}}</A>{{end}}
<h2>Available tests:</h2>
<UL>
<li>
<B>Reflected Javascript</B> (injected Javascript echo):
<ul>
<li>
<A href="xss/reflect/full1?in=change_me">xss/reflect/full1?in=change_me</A> - Javascript echoed (Full Javascript hack). PoE: /xss/reflect/full1?in=<script>alert(/XSS/)</script>
<li>
<A href="xss/reflect/basic?in=2change">xss/reflect/basic?in=2change</A> - similar to the above, no quotes needed in the injection. Echo of unfiltered input in a "normal" HTML context (not between tags, etc.). The example shows the minimal Webseclab template consisting of just {{.In}} "moustache" placeholder. PoE: /xss/reflect/basic?in=<script>alert(/HACKED/)</script> or /xss/reflect/basic?in=<img src=foo onerror=alert(12345)>
<li>
<A href="xss/reflect/basic_in_tag?in=2change">xss/reflect/basic_in_tag?in=2change</A> - similar to the above but inside of an HTML tag (still no quotes needed in the injection). Echo of unfiltered input inside of a bold tag. PoE: /xss/reflect/basic_in_tag?in=<script>alert(/HACKED/)</script> or /xss/reflect/basic_in_tag?in=<img src=foo onerror=alert(12345)>
<li>
<A href="xss/reflect/post1">xss/reflect/post1</A> - Javascript echoed from the POST parameters. (Splash page: <A href="xss/reflect/post1_splash">xss/reflect/post1_splash</A>)
<li>
<A href="xss/reflect/textarea1?in=foo1">xss/reflect/textarea1?in=foo1</A> - Javascript echoed in the textarea element (textarea closing tag required to trigger).
<li>
<A href="xss/reflect/textarea2?in=foo2">xss/reflect/textarea2?in=foo2</A> - Javascript echoed in the textarea element (textarea closing tag required to trigger, all tags prior to the closing textarea are filtered).
<li>
<A href="xss/reflect/textarea1_fp?in=fp1">xss/reflect/textarea1_fp?in=fp1</A> - False Positive issue on injecting into the textarea block.
<li>
<A href="xss/reflect/textarea2_fp?in=fp2">xss/reflect/textarea2_fp?in=fp2</A> - False Positive issue on injecting into the textarea block.
<li>
<A href="xss/reflect/doubq1?in=change_me2">xss/reflect/doubq1?in=changeme2</A> - Double-quoted injection echoed unescaped. PoE: /xss/reflect/doubq1?in=%253Cscript%253Ealert%28%252FXSS%252F%29%253C%252Fscript%253E
<li>
<A href="xss/reflect/rs1?in=change_me3">xss/reflect/rs1?in=change_me3</A> - Response-Splitting (injection of \r\n\r\n into HTTP Headers making part of the headers become the body). PoE: /xss/reflect/rs1?in=xyz%0d%0a%0d%0a%3Cscript%3Ealert(/BAD_NEWS/)%3C/script%3E
<li>
<A href="xss/reflect/inredirect1_fp">xss/reflect/inredirect1_fp</A> - Injection into a 302 redirect (FP check - no alert expected)
<li>
<A href="xss/reflect/onmouseover?in=changeme4">xss/reflect/onmouseover?in=changeme4</A> - XSS due to attribute injections in tags ("onmouseover").
<li>
<A href="xss/reflect/onmouseover_unquoted?in=changeme5">xss/reflect/onmouseover_unquoted?in=changeme5</A> - XSS due to unquoted attribute injections in tags ("onmouseover").
<li>
<A href="xss/reflect/onmouseover_unquoted_fp?in=val5fp">xss/reflect/onmouseover_unquoted_fp?in=val5fp</A> - FP of XSS due to unquoted attribute injections in tags ("onmouseover").
<li>
<A href="xss/reflect/onmouseover_div_unquoted?in=changeme6">xss/reflect/onmouseover_div_unquoted?in=changeme6</A> - XSS due to unquoted attribute injections in a div class ("onmouseover").
<li>
<A href="xss/reflect/onmouseover_div_unquoted_fp?in=val6fp">xss/reflect/onmouseover_div_unquoted_fp?in=val6fp</A> - FP of XSS due to unquoted attribute injections in tags ("onmouseover").
<li>
<A href="xss/reflect/oneclick1?in=xyz">xss/reflect/oneclick1?in=xyz</A> - JS injection into href source / "oneclick" XSS.
<li>
<A href="xss/reflect/refer1">xss/reflect/refer1</A> - the Referer header echoed. You can set up a page pointing to <WEBSECLAB_URL>/misc/webseclab_refer.html?%3Cscript%3Ealert%28789%29%3C/script%3E as a starting point to set the referer.
<li>
<A href="xss/reflect/js3?in=js3">xss/reflect/js3?in=js3</A> - exploitable injection into JS executable context (unquoted input). Proof of Exploit: /xss/reflect/js3?in=1,x:alert(12345)
<li>
<A href="xss/reflect/js6_sq?in=js6">xss/reflect/js6_sq?in=js6</A> - exploitable Javascript and single quotes injection into a script block. Proof of Exploit: /xss/reflect/js6_sq?in=js6%27,x:alert(12345),y:%27
<li>
<A href="xss/reflect/js6_sq_combo1?in=js6">xss/reflect/js6_sq_combo1?in=js6</A> - exploitable Javascript and single quotes injection into a script block. Proof of Exploit: /xss/reflect/js6_sq?in=js6%27,x:alert(12345),y:%27 Additional scanner challenge: preceeded by a non-exploitable injection into a form's input field.
<li>
<A href="xss/reflect/js4_dq?in=js4_dq">xss/reflect/js4_dq?in=js4</A> - exploitable Javascript and double quotes injection into a script block. Proof of Exploit: /xss/reflect/js4_dq?in=js4%22,x:alert(12345),y:%22
.
<li>
<A href="xss/reflect/js_script_close?in=foo">xss/reflect/js_script_close?in=foo</A> - injection of </script> tag into a quoted Javascript string. (Exploitable since browser parses script opening and closing tags first!)</A>
<li>
<A href="xss/reflect/js3_fp?in=js3fp">xss/reflect/js3_fp?in=js3_fp</A> - potential False Positive: non-exploitable injection into JavaScript fully quoted string.
<li>
<A href="xss/reflect/js3_notags?in=js3_notags">xss/reflect/js3_notags?in=js3notags</A> - exploitable injection into JS executable context, with HTML tags filtered out.
<li>
<A href="xss/reflect/js3_notags_fp?in=js3notagsfp">xss/reflect/js3_notags_fp?in=js3_fp</A> - potential False Positive: non-exploitable injection into JavaScript fully quoted string, with HTML tags filtered out.
<li>
<A href="xss/reflect/js3_search_fp?in=js3">xss/reflect/js3_search_fp?in=js3</A> - potential False Positive: non-exploitable injection into JavaScript quoted string.
<li>
<A href="xss/reflect/js4_dq_fp?in=js4_dq_fp">xss/reflect/js4_dq_fp?in=js4</A> - potential false positive: double-quotes and backslash characters are backslash-escaped resulting in valid Javascript.
<li>
<A href="xss/reflect/js6_sq_fp?in=js6fp">xss/reflect/js6_sq_fp?in=js6fp</A> - non-exploitable injection into a double-quoted property of the input tag. Check URL: /xss/reflect/js6_sq_fp?in=js6%27,x:alert(12345),y:%27
<li>
<A href="xss/reflect/enc2?in=enc2">xss/reflect/enc2?in=enc2</A> - double quotes escaped with a backslash but backslash itself is not - exploitable injection into Javascript strings.
<li>
<A href="xss/reflect/enc2_fp?in=enc2_fp">xss/reflect/enc2_fp?in=enc2_fp</A> - double quotes and backslashes are escaped with a backslash - not exploitable (but still \u0022 is a better and safer way to escape double quotes).
<li>
<A href="xss/reflect/backslash1?in=xyz">xss/reflect/backslash1?in=xyz</A> - Unicode escape sequences like \u0022 unescaped by the server.
</ul>
<p>
<li>
<B>Raw HTML tags issues</B>
<ul><li>
<A href="xss/reflect/raw1?in=real">xss/reflect/raw1?in=xyz</A> - raw HTML tags echoed in HTML text context (IE-related). Check URL: <A href="/xss/reflect/raw1?in=<xss>">/xss/reflect/raw1?in=<xss></A>
<li>
<A href="xss/reflect/raw1_fp?in=fp">xss/reflect/raw1_fp?in=xyz</A> - raw HTML tags echoed inside of a Javascript quoted string, with quotes stripped (false positive)
</ul>
<p>
<A name="domxss">
<li><B>DOM XSS</B>
<ul><li><A href="/xss/dom/domwrite?in=abc">/xss/dom/domwrite?in=abc</A> - DOM XSS due to document.write of location.href
<li><A href="/xss/dom/domwrite_hash?#in=xyz">/xss/dom/domwrite_hash?#in=xyz</A> - DOM XSS due to document.write of location.hash
<li><A href="/xss/dom/domwrite_hash_urlstyle#/foo/bar?in=xyz">/xss/dom/domwrite_hash_urlstyle#/foo/bar?in=xyz</A> - DOM XSS due to document.write of location.hash (URL-style value)
<li><A href="/xss/dom/yuinode_hash?#in=xyz">/xss/dom/yuinode_hash?#in=xyz</A> - DOM XSS using YUI (location.hash)
<li><A href="/xss/dom/yuinode_hash_urlstyle#/foo/bar?in=xyz">/xss/dom/yuinode_hash_urlstyle#/foo/bar?in=xyz</A> - DOM XSS using YUI (location.hash - URL-style value)
<li><A href="/xss/dom/yuinode_hash_unencoded?#in=xyz">/xss/dom/yuinode_hash_unencoded?#in=xyz</A> - DOM XSS using YUI (unescaped location.hash)
</ul>
<p>
<li><B>Miscellaneous scanner tests</B>
<ul>
<li><A href="/xss/reflect/full_cookies1?in=xyz">/xss/reflect/full_cookies1?in=xyz</A> - requires "awesome" in the Cookie header to access the vulnerable page, returns 400 Forbidden otherwise
<li><A href="/xss/reflect/full_headers1?in=xyz">/xss/reflect/full_headers1?in=xyz</A> - requires HTTP Header "X-Letmein: 1" to access the vulnerable page, returns 400 Forbidden otherwise
<li><A href="/xss/reflect/full_useragent1?in=xyz">/xss/reflect/full_useragent1?in=xyz</A> - requires User-Agent with "Mobile"" to access vulnerable page, returns 400 Forbidden otherwise
</ul>
</ul>
<p/>
<p/>
</body>
</html>
`,
"misc/escapeexample": `{{ define "title" }}Escape example{{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
Hello!<BR>
<div class={{.In}}>123</div>
This examples inject unfiltered user input into the class attribute of a div.
</body></html>
`,
"misc/escapeexample_nogt": `{{ define "title" }}Escape example{{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
Hello!<BR>
<div class={{.In}}>123</div>
This examples inject user input into the class attribute of a div, only the > character is escaped
</body></html>
`,
"misc/escapeexample_nogt_noquotes": `{{ define "title" }}Escape example{{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
Hello!<BR>
<div class={{.In}}>123</div>
This examples inject user input into the class attribute of a div, only the > character is escaped
</body></html>
`,
"sample.html": `{{/* This is a comment for the human readers. It does not affect the template */}}
{{ define "title" }}Sample template title (will be used between title tags on the page){{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
This is a sample file demonstrating an injection by using .In inside of "moustache":
{{.In}}.
<div>Any HTML can go into this template.</div>
</body></html>
`,
"xss/dom/domwrite": `{{ define "title" }}Webseclab - DOM XSS, document.write (domwrite){{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
<script>
function doDecode(s) {
return decodeURIComponent(s)
}
</script>
DOMXSS due to passing the unescaped document.location value to document.write(). <p>
Hello!<BR>The value of "lin" parameter as part of the location.href is:
<script>document.write(doDecode(document.location.href));</script> <p>
</body></html>
`,
"xss/dom/domwrite_hash": `{{ define "title" }}Webseclab - DOM XSS, document.write (domwrite_hash){{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
DOMXSS due to passing the unescaped document.hash value to document.write(). <p>
Exploit (Firefox): /xss/dom/domwrite_hash#in=xyz<img src=foo onerror=alert(1246)> (need to reload page). <p>
Hello!<BR>The value of in parameter in location.hash is:
<script>document.write(document.location.hash);</script>
</body></html>
`,
"xss/dom/domwrite_hash_urlstyle": `{{ define "title" }}Webseclab - DOM XSS domwrite_hash_urlstyle{{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
DOMXSS due to passing the unescaped document.hash value to document.write(). <p>
Exploit (Firefox): /xss/dom/domwrite_hash_urlstyle#/foo/bar?in=xyz<img src=foo onerror=alert(1247)> (need to reload page). <p>
Hello!<BR>The value of in parameter in location.hash (URL-style value) is:
<script>document.write(document.location.hash);</script>
</body></html>
`,
"xss/dom/jason1": `<script>
document.write("<li></li><li> " + location.href.substring(64) + " is not a valid tab selection.</li>");
</script>
`,
"xss/dom/jason2": `<script src="https://ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js"></script>
<H1>Hello world</H1>
Beware of DOM XSS...
<script>
var query = window.location.search.substring(1);
var vars = query.split("&");
for (var i=0;i<vars.length;i++) {
var pair = vars[i].split("=");
if(pair[0] == 'searchString') {
$('#title').html(decodeURIComponent(vars[i].substring(13)));
}
}
</script>
`,
"xss/dom/yuinode": `{{ define "title" }}Webseclab - DOM XSS, YUI Node'ssetHTML(yuinode){{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
Potential XSS due to document.location.search used in YUI Node's setHTML(). The attack does not work in Firefox and Webkit browsers due to the browser's internal escaping of the search portion. (TODO: verify if works in IE) <p>
<script src="http://yui.yahooapis.com/3.8.1/build/yui/yui.js"></script>Hello!<BR>
The value of "in" cgi parameter is:
<div id='inparam'>in placeholder</div>
<script>YUI({filter: "raw", combine: false}).use("console", "node", function(Y) {
var inparam = Y.one("#inparam");
var input = document.location.search;
inparam.setHTML(input);
});
</script>
</body></html>
`,
"xss/dom/yuinode_hash": `{{ define "title" }}Webseclab - DOM XSS, YUI Node's setHTML using location.hash(yuinode_hash){{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
XSS due to the document.location.hash used in YUI Node's setHTML(). The attack works in Chrome and Firefox.<p>
Exploit: /xss/dom/yuinode_hash?#in=<img src=foo onerror=alert(148)> (remember to reload the page!)<p>
<script src="http://yui.yahooapis.com/3.8.1/build/yui/yui.js"></script>
Hello!<BR>The value of "in" hash parameter is: <div id="inparam">in placeholder</div>
<script>
YUI().use("console", "node", function(Y) {
var inparam = Y.one("#inparam");
var input = document.location.hash;
inparam.setHTML(input);
});
</script>
</body></html>
`,
"xss/dom/yuinode_hash_unencoded": `{{ define "title" }}Webseclab - DOM XSS, YUI Node's setHTML using location.hash(yuinode_hash){{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
XSS due to the unencoded document.location.hash used in YUI Node's setHTML(). The attack works in Firefox and in the webkit browsers.<p>
Exploit: /xss/dom/yuinode_hash_unencoded?#in=<img src=foo onerror=alert(148)> (remember to reload the page!)<p>
<script src="http://yui.yahooapis.com/3.8.1/build/yui/yui.js"></script>
Hello!<BR>The value of "in" hash parameter is: <div id="inparam">in placeholder</div>
<script>
YUI().use("console", "node", function(Y) {
var inparam = Y.one("#inparam");
var input = decodeURIComponent(document.location.hash);
inparam.setHTML(input);
});
</script>
</body></html>
`,
"xss/dom/yuinode_hash_urlstyle": `{{ define "title" }}Webseclab - DOM XSS, YUI Node's setHTML using location.hash(yuinode_hash){{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
XSS due to the document.location.hash used in YUI Node's setHTML(). The attack works in Chrome and Firefox.<p>
Exploit: /xss/dom/yuinode_hash_urlstyle#/foo/bar?in=<img src=foo onerror=alert(149)> (remember to reload the page!)<p>
<script src="http://yui.yahooapis.com/3.8.1/build/yui/yui.js"></script>
Hello!<BR>The value of "in" hash parameter is: <div id="inparam">in placeholder</div>
<script>
YUI().use("console", "node", function(Y) {
var inparam = Y.one("#inparam");
var input = document.location.hash;
inparam.setHTML(input);
});
</script>
</body></html>
`,
"xss/reflect/backslash1": `{{ define "title" }}XSS due to unescape of unicode escape sequences (backslash.1){{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
Hello!<BR>
The value of cgi parameter "in" is: {{.In}}
</body></html>
`,
"xss/reflect/basic": `{{.In}}
`,
"xss/reflect/basic_in_tag": `<!-- same as basic but inside of an html tag -->
<B>{{.In}}</B>
`,
"xss/reflect/doubq1": `{{define "title" }}Double-Encoded tags injection (doubq.1){{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
Hello!<BR>
The value of the cgi parameter "in" is: {{.In}}
<p>
This test echos unencoded version of double-encoded tags.
</body></html>
`,
"xss/reflect/enc2": `{{ define "title" }}Injection in Javascript with double quotes but not backslash escaped with backslash - exploitable (enc.2){{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
<script language="javascript">
var f = "{{.In}}";
</script>
Hello!<BR>
This test demonstrates injection in JS with double quotes but not backslash escaped with backslash.
</body></html>
`,
"xss/reflect/enc2_fp": `{{ define "title" }}Injection in Javascript with both double quotes and backslash escaped with backslash - not exploitable (enc.2){{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
<script language="javascript">
var f = "{{.In}}";
</script>
Hello!<BR>
Injection in Javascript with both double quotes and backslash escaped with backslash - not exploitable .
</body></html>
`,
"xss/reflect/full1": `{{ define "title" }}Full Javascript Injection (full.1){{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
Hello!<BR>
The value of cgi parameter "in" is: {{.In}}
</body></html>
`,
"xss/reflect/full_cookies1": `{{ define "title" }}Full Javascript Injection with Cookies (full.1){{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
Hello!<BR>
The value of cgi parameter "in" is: {{.In}}
</body></html>
`,
"xss/reflect/full_headers1": `{{ define "title" }}Full Javascript Injection (full.1){{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
Hello!<BR>
The value of cgi parameter "in" is: {{.In}}
</body></html>
`,
"xss/reflect/inredirect1_fp": `{{ define "title" }}Full Javascript Injection in a 302 redirect page{{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
Hello!<BR>
This is a page the user should never see (and therefore not exploitable) as it is part of a 302 Redirect response! <p>
The value of cgi parameter "in" is: {{.In}}
</body></html>
`,
"xss/reflect/js3": `{{ define "title" }}JavaScript injection in JS executable context - exploitable (js.3){{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
<script language="javascript">
var f = {
date: '',
week: '1',
bad: {{.In}},
phase: '2',
};
</script>
Hello!<BR>
This test demonstrates exploitable Injection into JS executable context.
</body></html>
`,
"xss/reflect/js3_bug7208690": `<!doctype html>
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/schema/" xmlns:fb="http://www.facebook.com/2008/fbml" xml:lang="en" lang="en" id="Stencil">
<head>
<meta property="og:description" content="Yahoo首頁 'qwe'};alert(142);(' search results"/>
<meta property="og:image" content="https://s.yimg.com/pj/contact/201410242217/resource/img/og-help-logo.png "/>
<meta name="robots" content="noindex" />
<!-- NEW CSS & JS -->
<!-- CSS -->
<link rel="stylesheet" type="text/css" href="https://s.yimg.com/zz/combo?yui:3.10.1/cssgrids/cssgrids-min.css&yui:3.10.1/cssgrids-responsive/cssgrids-responsive-min.css&yui:3.10.1/cssreset/cssreset-min.css&yui:3.10.1/cssfonts/cssfonts-min.css&yui:3.10.1/cssbutton/cssbutton-min.css&yui:3.10.1/cssgrids-base/cssgrids-base-min.css&yui:3.10.1/cssgrids-units/cssgrids-units-min.css&yui:3.10.1/cssreset-context/cssreset-context-min.css">
<!--[if gte IE 9]>
<style type="text/css">
.gradient { filter: none; }
</style>
<![endif]-->
<link rel="stylesheet" type="text/css" href="https://s.yimg.com/pj/contact/201410242217/resource/css/styles.css"/>
<!--[if IE]>
<link rel="stylesheet" type="text/css" href="https://s.yimg.com/pj/contact/201410242217/resource/css/yhlp_ie.css" />
<![endif]-->
<!--[if IE 6]>
<link rel="stylesheet" type="text/css" href="https://s.yimg.com/pj/contact/201410242217/resource/css/yhlp_ie6.css" />
<![endif]-->
<script src="https://s.yimg.com/pj/contact/201410242217/resource/js/inq_min.js" type="text/javascript"></script>
<script src="https://s.yimg.com/pj/contact/201410242217/resource/js/jquery-ui.min.js" type="text/javascript"></script>
<script type="text/javascript" src="https://s.yimg.com/zz/combo?yui:2.7.0/build/yahoo-dom-event/yahoo-dom-event.js&yui:2.7.0/build/connection/connection-min.js&yui:2.7.0/build/datasource/datasource-min.js&yui:2.7.0/build/autocomplete/autocomplete-min.js&yui:2.7.0/build/container/container-min.js&yui:2.7.0/build/menu/menu-min.js&yui:2.7.0/build/get/get-min.js"></script>
<script type="text/javascript">
if (top.location!= self.location) {
top.location = self.location.href;
}
</script>
<!-- fix to defect 4598149 - YWA: Case Response/Closure Pages Report Instrumentation-->
<title>Yahoo首頁 說明 搜尋結果</title>
<script language="javascript" type="text/javascript">
if((navigator.userAgent.match(/iPhone/i)) || (navigator.userAgent.match(/iPod/i)) || (navigator.userAgent.match(/iPad/i))) {
document.write('<link rel=\"stylesheet\" href=\"https://s.yimg.com/pj/contact/201410242217/resource/css/iphone-sprite.css\" />');
}
</script>
</head>
<body id="doc">
<script type="text/javascript" src="https://s.yimg.com/mi/ywa.js"></script>
<div id="hd">
<link type='text/css' rel='stylesheet' href='https://s.yimg.com/zz/combo?kx/yucs/uh_common/meta/3/css/meta-min.css&kx/yucs/uh3s/uh/270/css/uh-center-aligned-min.css' /><style type="text/css">@font-face{font-family:Yglyphs-common;src:url(https://s.yimg.com/os/mit/ape/font/c023217/fonts/Yglyphs-common.eot);font-weight:400;font-style:normal}@font-face{font-family:Yglyphs-common;src:url(https://s.yimg.com/os/mit/ape/font/c023217/fonts/Yglyphs-common.eot);src:url(https://s.yimg.com/os/mit/ape/font/c023217/fonts/Yglyphs-common.eot?#iefix) format('embedded-opentype'),url(https://s.yimg.com/os/mit/ape/font/c023217/fonts/Yglyphs-common.woff) format('woff'),url(https://s.yimg.com/os/fontserver/0.1.8/Yglyphs-common.ttf) format('truetype'),url(https://s.yimg.com/os/mit/ape/font/c023217/fonts/Yglyphs-common.svg?#Yglyphs-common) format('svg');font-weight:400;font-style:normal}.Ycon{font-family:Yglyphs-common}.YconArrowDown{*zoom:expression( this.runtimeStyle['zoom'] = '1', this.innerHTML = '⋁')}.YconArrowDown:before{content:'\22c1'}.YconArrowEnd{*zoom:expression( this.runtimeStyle['zoom'] = '1', this.innerHTML = '>')}.YconArrowEnd:before{content:'\3e'}.YconArrowOpenEnd{*zoom:expression( this.runtimeStyle['zoom'] = '1', this.innerHTML = '⟩')}.YconArrowOpenEnd:before{content:'\27e9'}.YconArrowOpenStart{*zoom:expression( this.runtimeStyle['zoom'] = '1', this.innerHTML = '⟨')}.YconArrowOpenStart:before{content:'\27e8'}.YconArrowStart{*zoom:expression( this.runtimeStyle['zoom'] = '1', this.innerHTML = '<')}.YconArrowStart:before{content:'\3c'}.YconArrowUp{*zoom:expression( this.runtimeStyle['zoom'] = '1', this.innerHTML = '⋀')}.YconArrowUp:before{content:'\22c0'}.YconCircleSolid{*zoom:expression( this.runtimeStyle['zoom'] = '1', this.innerHTML = '●')}.YconCircleSolid:before{content:'\25cf'}.YconEllipsis{*zoom:expression( this.runtimeStyle['zoom'] = '1', this.innerHTML = '…')}.YconEllipsis:before{content:'\2026'}.YconHome{*zoom:expression( this.runtimeStyle['zoom'] = '1', this.innerHTML = '⌂')}.YconHome:before{content:'\2302'}.YconLogoYahoo{*zoom:expression( this.runtimeStyle['zoom'] = '1', this.innerHTML = 'Y')}.YconLogoYahoo:before{content:'\59'}.YconMail{*zoom:expression( this.runtimeStyle['zoom'] = '1', this.innerHTML = '✉')}.YconMail:before{content:'\2709'}.YconMenu{*zoom:expression( this.runtimeStyle['zoom'] = '1', this.innerHTML = '≡')}.YconMenu:before{content:'\2261'}.YconProfile{*zoom:expression( this.runtimeStyle['zoom'] = '1', this.innerHTML = '👤')}.YconProfile:before{content:'\1f464'}.YconSearch{*zoom:expression( this.runtimeStyle['zoom'] = '1', this.innerHTML = '🔍')}.YconSearch:before{content:'\1f50d'}.YconSettings{*zoom:expression( this.runtimeStyle['zoom'] = '1', this.innerHTML = '⚙')}.YconSettings:before{content:'\2699'}</style><link type="text/css" rel="stylesheet" href="https://s.yimg.com/os/stencil/3.0.1/desktop/styles-ltr.css" /><!-- meta --><div id="yucs-meta" data-authstate="signedin" data-cobrand="standard" data-crumb="ng44xSC03R8" data-mc-crumb="1JKCnxvQs5g" data-gta="hQ/qBOPmYSd" data-device="desktop" data-experience="uh304" data-firstname="Dmitri" data-flight="1416825058" data-forcecobrand="standard" data-guid="QZ5YYJ6AQMXCAACESMI33HWAHY" data-host="help.yahoo.com" data-https="1" data-languagetag="zh-tw" data-property="help" data-protocol="https" data-shortfirstname="Dmitri" data-shortuserid="dsavints_laptop" data-status="active" data-spaceid="1182477571" data-test_id="" data-userid="dsavints_laptop" data-stickyheader="true" data-headercollapse='' ></div><!-- /meta --><div id="UH" class="Row yucs yucs-cb-standard StencilRoot yucs-zh-tw yucs-help " role="banner" data-protocol='https' data-property="help" data-spaceid="1182477571" data-stencil="true"><style>#yucs-profile {padding-left: 0!important;}
.yucs-trigger .Icon,
.yucs-trigger b {
line-height: 22px !important;
height: 22px !important;
}
.yucs-trigger .Icon {
font-size: 22px !important;
}
.yucs-trigger .AlertBadge,
.yucs-trigger .MailBadge {
line-height: 13px !important;
height: 13px !important;
}
.yucs-mail_link_att.yucs-property-frontpage #yucs-mail_link_id i.Icon {
text-indent: -9999em;
}
/* mail badge */
.AlertBadge,
.MailBadge {
padding: 3px 6px 2px 6px;
min-width: 6px;
max-width: 16px;
margin-left: -13px;
}
/* search box */
#UHSearchBox {
border: 1px solid #ceced6 !important;
border-radius: 2px;
height: 34px;
*height: 18px;
}
#UHSearchBox:focus {
border: 1px solid #7590f5 !important;
box-shadow: none !important;
}
/* buttons */
#UHSearchWeb, #UHSearchProperty {
height: 32px !important;
line-height: 34px !important;
-webkit-appearance: none;
}
#Stencil #UHSearchWeb,
#Stencil #UHSearchProperty {
height: 30px;
box-sizing: content-box;
min-width: 92px;
padding-left: 14px;
padding-right: 14px;
*width: 100%;
}
.DarkTheme .yucs-trigger .Ycon {
color: #fff;
}</style><div id="yucs-disclaimer" class="yucs-disclaimer yucs-activate yucs-hide yucs-property-help yucs-fcb- " data-dsstext="Want a better search experience? {dssLink}Set your Search to Yahoo{linkEnd}" data-dsstext-mobile="Search Less, Find More" data-dsstext-mobile-ok="OK" data-dsstext-mobile-set-search="Set Search to Yahoo" data-ylt-link="https://search.yahoo.com/searchset;_ylt=As4OX90RZ7Km4DbAShs3FCoDLXtG?pn=" data-ylt-dssbarclose="/;_ylt=Aor91p7DMLcAFG2dLHQod4YDLXtG" data-ylt-dssbaropen="/;_ylt=AkvmNXm2oZGzDCoZL8ao6YsDLXtG" data-linktarget="_top" data-lang="zh-tw" data-property="help" data-device="Desktop" data-close-txt="關閉此視窗" data-maybelater-txt = "Maybe Later" data-killswitch = "0" data-host="help.yahoo.com" data-spaceid="1182477571" data-pn="TwSIZs0J/Dv" data-pn-en-ca-mobile="GCBDseCIXO2" data-pn-de-de-mobile="4aotfa78uHE" data-pn-es-es-mobile="WPfkt.P/TO9" data-pn-fr-fr-mobile="kVAkDBrkctx" data-pn-en-in-mobile="ZD0s45a/IB." data-pn-it-it-mobile="okEK3KDjU4n" data-pn-en-us-mobile="TwSIZs0J/Dv" data-pn-en-sg-mobile="WOQYS4UvhMc" data-pn-en-gb-mobile="X/7NYJwiSZt" data-pn-en-us-tablet="MJQXiAEJpBH" data-news-search-yahoo-com="UjcDe4gGpKm" data-answers-search-yahoo-com="ce.X5g0kWZs" data-finance-search-yahoo-com="/fojH5HAbP7" data-images-search-yahoo-com="5JDhD8JASyl" data-video-search-yahoo-com="yMQ2BT.SIuo" data-sports-search-yahoo-com="4orVDWNT4ce" data-shopping-search-yahoo-com="HZLO0WdIZtK" data-shopping-yahoo-com="HZLO0WdIZtK" data-us-qa-trunk-news-search-yahoo-com ="UjcDe4gGpKm" data-dss=""></div> <div id="masterNav" class='yucs-ps' data-ylk="rspns:nav;act:click;t1:a1;t2:uh-d;t3:tb;t5:pty;slk:pty;elm:itm;elmt:pty;itc:0;"><ul id="Eyebrow" class="Mb-12 Lh-17 NavLinks Reset" role="navigation"><li id="yucs-top-home" class="Grid-U Mend-18 Pstart-10"><a href="https://tw.yahoo.com/" data-ylk="t5:home;slk:home;"><i id="my-home" class="Fl-start Mend-6 Ycon YconHome Fz-s Mt-neg-1"></i><b class="Mstart-neg-1">首頁</b></a></li><li id="yucs-top-mail" class="Grid-U Mend-18 Pstart-14"><a href="https://tw.mail.yahoo.com/" data-ylk="t5:mail;slk:mail;">信箱</a></li><li id="yucs-top-news" class="Grid-U Mend-18 Pstart-14"><a href="http://tw.news.yahoo.com/" data-ylk="t5:news;slk:news;">新聞</a></li><li id="yucs-top-finance" class="Grid-U Mend-18 Pstart-14"><a href="http://tw.finance.yahoo.com/" data-ylk="t5:finance;slk:finance;">股市</a></li><li id="yucs-top-weather" class="Grid-U Mend-18 Pstart-14"><a href="http://tw.weather.yahoo.com/" data-ylk="t5:weather;slk:weather;">氣象</a></li><li id="yucs-top-sports" class="Grid-U Mend-18 Pstart-14"><a href="http://tw.sports.yahoo.com/" data-ylk="t5:sports;slk:sports;">運動</a></li><li id="yucs-top-screen" class="Grid-U Mend-18 Pstart-14"><a href="https://tw.screen.yahoo.com/" data-ylk="t5:screen;slk:screen;">影音</a></li><li id="yucs-top-celebrity" class="Grid-U Mend-18 Pstart-14"><a href="https://tw.celebrity.yahoo.com" data-ylk="t5:celebrity;slk:celebrity;">名人娛樂</a></li><li id="yucs-top-flickr" class="Grid-U Mend-18 Pstart-14"><a href="https://www.flickr.com/" data-ylk="t5:flickr;slk:flickr;">Flickr</a></li><li id="yucs-top-buy" class="Grid-U Mend-18 Pstart-14"><a href="http://tw.buy.yahoo.com/" data-ylk="t5:buy;slk:buy;">購物中心</a></li><li id="yucs-top-mall" class="Grid-U Mend-18 Pstart-14"><a href="http://tw.mall.yahoo.com/" data-ylk="t5:mall;slk:mall;">商城</a></li><li id="yucs-top-bid" class="Grid-U Mend-18 Pstart-14"><a href="http://tw.bid.yahoo.com/" data-ylk="t5:bid;slk:bid;">拍賣</a></li><li id='yucs-more' class='Grid-U Pstart-10 Pend-6 Pos-r Z-1 MoreDropDown yucs-menu yucs-more-activate' data-ylt=""><a href="http://tw.everything.yahoo.com/" role="button" id='yucs-more-link' class='Pos-r Z-1 yucs-leavable rapidnofollow MouseOver Fl-start' data-plugin="toggle" data-toggle='[{"target":"#yucs-top-menu .MoreDropDown-Box","click":{"toggle":{"classnames":"D-n"}}}, {"target-ancestor":".MoreDropDown","click":{"toggle":{"classnames":"MoreDropDown-on"}}}]' data-ylk="rspns:op;t5:more;slk:more;elmt:mu;itc:1;" style="padding:0;"><b class="Fl-start Lh-17 MouseOver-TextDecoration">更多</b><i class="Fz-m Va-m Lh-1 Mstart-2 Ycon YconArrowDown Ta-c NoTextDecoration Fl-end Mt-4"></i></a><div id='yucs-top-menu'><div class="Pos-a Start-0 T-100 MoreDropDown-Box D-n yui3-menu-content"><iframe frameborder="0" class="Pos-a Start-0 W-100 H-100 Bd-0" src="https://s.yimg.com/os/mit/media/m/base/images/transparent-95031.png"></iframe><ul class="yucs-leavable Pos-r Px-10"><li id='yucs-top-answers'><a class="D-b" href="https://tw.knowledge.yahoo.com/" data-ylk="t5:answers;slk:answers;t4:pty-mu;">知識+</a></li><li id='yucs-top-autos'><a class="D-b" href="http://tw.autos.yahoo.com/" data-ylk="t5:autos;slk:autos;t4:pty-mu;">汽車機車</a></li><li id='yucs-top-movies'><a class="D-b" href="http://tw.movies.yahoo.com/" data-ylk="t5:movies;slk:movies;t4:pty-mu;">電影</a></li><li id='yucs-top-dictionary'><a class="D-b" href="http://tw.dictionary.yahoo.com/" data-ylk="t5:dictionary;slk:dictionary;t4:pty-mu;">字典</a></li><li id='yucs-top-games'><a class="D-b" href="http://tw.games.yahoo.com/" data-ylk="t5:games;slk:games;t4:pty-mu;">遊戲</a></li><li id='yucs-top-travel'><a class="D-b" href="http://tw.travel.yahoo.com/" data-ylk="t5:travel;slk:travel;t4:pty-mu;">旅遊</a></li><li id='yucs-top-money'><a class="D-b" href="http://tw.money.yahoo.com/" data-ylk="t5:money;slk:money;t4:pty-mu;">理財</a></li><li id='yucs-top-homes'><a class="D-b" href="http://tw.house.yahoo.com/" data-ylk="t5:homes;slk:homes;t4:pty-mu;">房地產</a></li><li id='yucs-top-fashion'><a class="D-b" href="https://tw.fashion.yahoo.com/" data-ylk="t5:fashion;slk:fashion;t4:pty-mu;">時尚美妝</a></li><li id='yucs-top-discount'><a class="D-b" href="http://tw.discount.yahoo.net/" data-ylk="t5:discount;slk:discount;t4:pty-mu;">折扣+</a></li></ul></div></div></li></ul></div> <div id="uhWrapper" class="Ma Z-2 Pos-r" data-ylk="rspns:nav;act:click;t1:a1;t2:uh-d;itc:0;"> <table class="Ma My-0 W-100" role="presentation"> <tr role="presentation"> <td style="width:190px" role="presentation"><style>/** * IE7+ and non-retina display */.YLogoMY { background-repeat: no-repeat; background-image: url(https://s.yimg.com/rz/d/yahoo_help_zh-Hant-TW_s_f_pw_351x40_help.png); _background-image: url(https://s.yimg.com/rz/d/yahoo_help_zh-Hant-TW_s_f_pw_351x40_help.gif); /* IE6 */ width: 162px; }.DarkTheme .YLogoMY { background-position: -351px 0px !important;}/** * For 'retina' display */@media only screen and (-webkit-min-device-pixel-ratio: 2), only screen and ( min--moz-device-pixel-ratio: 2), only screen and ( -o-min-device-pixel-ratio: 2/1), only screen and ( min-device-pixel-ratio: 2), only screen and ( min-resolution: 192dpi), only screen and ( min-resolution: 2dppx) { .YLogoMY { background-image: url(https://s.yimg.com/rz/d/yahoo_help_zh-Hant-TW_s_f_pw_351x40_help_2x.png) !important; background-size: 702px 40px !important; }}</style><a class="YLogoMY Mx-a " data-ylk="slk:logo;t3:logo;t5:logo;elm:img;elmt:logo;" href="https://tw.help.yahoo.com/kb/helpcentral" target="_top" >服務中心</a></td> <td role="presentation"><form id="UHSearch" target="_top" autocomplete="off" data-vfr="uh3_help_vert_gs"data-webaction="https://tw.search.yahoo.com/search" action="https://help.yahoo.com/l/us/yahoo/helpcentral/vsp.html" data-webaction-tar="" data-verticalaction-tar="" method="get"class="Reset UHSearch-Init"><table class="W-100 Reset H-100"> <tbody> <tr> <td class='W-100 Px-0'><input id="UHSearchBox" type="text" class="W-100 Fz-l Fw-200 M-0 P-4 Bdrs-0 Bxsh-n" style="border-color:#7590f5;" name="p" aria-describedby="UHSearchBox" data-ylk="slk:srchinpt-hddn;itc:1;" data-yltvsearch="https://help.yahoo.com/l/us/yahoo/helpcentral/vsp.html" data-yltvsearchsugg="/" data-satype="" data-gosurl="" data-pubid="" data-maxresults="10" data-resize=""> <div id="yucs-satray" class="sa-tray D-n Fz-s FancyBox Bdtrrs-0 Bdtlrs-0 Lh-15 NoLinkColor NoTextDecoration" data-wstext="Search Web for: " data-wsearch="https://tw.search.yahoo.com/search" data-vfr="uh3_help_vert_gs" data-vsearch="https://help.yahoo.com/l/us/yahoo/helpcentral/vsp.html" data-vstext= "Search News for: " > </div></td> <!-- ".Grid' is used here to kill white-space --> <td class="Grid W-10 Whs-nw Pstart-4 Pend-0 Bdcl-s"><style type="text/css">#UHSearchWeb, #UHSearchProperty{ height: 30px; min-width: 120px;} .ua-ie8 #UHSearchWeb, .ua-ie8 #UHSearchProperty, .ua-ie9 #UHSearchWeb, .ua-ie9 #UHSearchProperty{ height: 32px; min-width: 120px;}#UHSearchProperty, .Themable .ThemeReset #UHSearchProperty { background: #400090 !important; border: 0 !important; box-shadow: 0 2px #190130 !important;}</style><input id="UHSearchProperty" class="Grid-U Btn M-0" type="submit" data-vfr="uh3_help_vert_gs"data-vsearch="https://us.lrd.yahoo.com/_ylt=Auiae9i0i8ueCZo2Q_i3M7MDLXtG/SIG=12a1g2oq0/EXP=1418034658/**https%3A//help.yahoo.com/l/us/yahoo/helpcentral/vsp.html"value="搜尋說明" data-ylk="t3:srch;t5:srchvert;slk:srchvert;elm:btn;elmt:srch;tar:;"></td> <td class="Grid W-10 Whs-nw Pstart-4 Pend-0 Bdcl-s"><input id="UHSearchWeb" class="Grid-U Btn M-0 uh-ignore-rapid" type="submit" value="網頁搜尋" data-ylk="t3:srch;t5:srchweb;slk:srchweb;elm:btn;elmt:srch;tar:;"></td> <style type="text/css"> #UHSearchWeb, #UHSearchProperty{ height: 30px; } .ua-ie8 #UHSearchWeb, .ua-ie8 #UHSearchProperty, .ua-ie9 #UHSearchWeb, .ua-ie9 #UHSearchProperty{ height: 32px; } #UHSearchWeb, .Themable .ThemeReset #UHSearchWeb { background: #3775dd; border: 0; box-shadow: 0 2px #21487f; } </style> </tr> </tbody> </table> <input type="hidden" name="type" value="2button" data-ylk="slk:yhstype-hddn;itc:1;"/> <input type="hidden" id="fr" name="fr" data-ylk="slk:frcode-hddn;itc:1;" value="uh3_help_web_gs" /> </form><!-- /#uhSearchForm --></td> <td class="W-1" role="presentation" id="uhNavWrapper"> <ul class="Fl-end Mend-10 Grid Whs-nw My-6"> <li class="Grid-U Pos-r Pstart-4 Mend-20" id="yucs-profile" data-yltmenushown="/;_ylt=AmF.lUU1xaHLxSWo.vrBI8YDLXtG"> <a class="D-ib MouseOver NoTextDecoration yucs-trigger Lh-1"data-plugin='tooltip' data-trigger='mouseenter mouseleave click' data-tooltip='{"target-child":".Ycon","click":{"toggle":{"position":"bl","id":"yucs-profile-panel"}},"mouseenter":{"show":{"mouseover":true,"position":"bl","id":"yucs-profile-panel"}},"mouseleave":{"hide":{"id":"yucs-profile-panel"}}}'href="http://profile.yahoo.com/" target="_top" rel="nofollow" aria-label="社交名片" aria-haspopup="true" role="button" id="yui_3_10_3_1_1375219693637_127" data-ylk="t3:tl-lst;t5:usersigninst;slk:usersigninst;elm:tl;elmt:usr;"> <i class="Va-m W-a yucs-avatar yucs-av-activate yucs-menu_anchor Ycon YconProfile Fz-2xl Lh-1 C-p-blue" style="width: 22px; visibility: hidden;" data-user="Dmitri" data-property="help" data-bucket="1" data-prof="Avatar" data-crumb="ng44xSC03R8" data-guid="QZ5YYJ6AQMXCAACESMI33HWAHY"></i> <b class="Va-m MouseOver-TextDecoration Ell D-ib Lh-17" style="max-width: 86px;" title="您好, Dmitri">Dmitri</b></a><noscript class="yucs-noscript"><span class="Va-m MouseOver-TextDecoration">http://login.yahoo.com/config/login?logout=1&.direct=2&.src=yhelp&.intl=tw&.lang=zh-TW&.done=https://tw.yahoo.com/</span></noscript> <div id="yucs-profile-panel" class="FancyBox Arrow NorthWest Px-10 Mt-10 Pos-a Lh-14 Start-0 Mstart-neg-20 Whs-nw D-n" aria-hidden="true"> <ul class="Pos-r Bleed Mb-0"> <li class="Py-8 Px-16 Bd-b"> <span class="Grid-U Ov-h W-100"> <b class="Dimmed D-b">用的登入身份是:</b><b class="Fw-b D-b Ell C-n">dsavints_laptop</b> </span> </li> </ul> <ul class="Pos-r Bleed My-0 NoLinkColor"> <li class="Py-8 Px-16 Bd-b"> <a class="D-b" href="http://profile.yahoo.com/" target="_top" data-ylk="t3:tl-lst;t4:usr-mu;t5:prfl;slk:prfl;elm:itm;elmt:prfl;">社交名片</a> </li> <li class="Py-8 Px-16"> <a id= "yucs-signout" class="D-b" target="_top" rel="nofollow" href="http://login.yahoo.com/config/login?logout=1&.direct=2&.src=yhelp&.intl=tw&.lang=zh-TW&.done=https://tw.yahoo.com/" data-ylk="t3:tl-lst;t4:usr-mu;t5:usersigno;slk:usersigno;elm:itm;elmt:lgo;">登出</a> </li> </ul></div> </li> <li class="Grid-U Mend-20 Pos-r yucs-mail_link yucs-mailpreview-ancestor" id="yucs-mail"> <a id="yucs-mail_link_id" class="D-ib sp yltasis yucs-fc Pos-r MouseOver NoTextDecoration yucs-menu-link yucs-trigger Lh-1" href="https://tw.mail.yahoo.com/?.intl=tw&.lang=zh-TW" data-plugin='tooltip' data-trigger='mouseenter mouseleave' data-tooltip='{"target-child":".Ycon","mouseenter":{"show":{"mouseover":true,"position":"br","id":"yucs-mail-panel"}},"mouseleave":{"hide":{"id":"yucs-mail-panel"}}}' data-ylk="t3:tl-lst;t5:mailsigninst;slk:mailsigninst;elm:tl;elmt:mail;"> <b class="MailBadge yucs-activate yucs-mail-count D-n" data-uri-scheme="https" data-uri-path="mg.mail.yahoo.com/mailservices/v1/newmailcount" data-authstate="signedin" data-crumb="ng44xSC03R8" data-mc-crumb="1JKCnxvQs5g"></b> <i class="Va-m W-a Mend-2 Ycon YconMail C-p-blue Lh-1 Fz-2xl"></i> <b class="Va-m MouseOver-TextDecoration" title="Mail">信箱</b> </a> <div id="yucs-mail-panel" class="FancyBox Arrow NorthEast Mt-10 Pos-a Lh-14 End-0 Whs-nw D-n" aria-hidden="true" data-mail-txt="信箱" data-uri-scheme="https" data-uri-path="ucs.query.yahoo.com/v1/console/yql" data-mail-view="檢視所有 Yahoo 信件" data-mail-help-txt="服務說明" data-mail-help-url="http://help.cc.tw.yahoo.com/help_cp.html?product=29" data-mail-loading-txt="載入中..." data-languagetag="zh-tw" data-authstate="signedin" data-middleauth-signin-text="點選這裡檢視您的信件" data-popup-login-url="https://login.yahoo.com/config/login_verify2?.pd=c%3DOIVaOGq62e5hAP8Tv..nr5E3&.src=sc" data-middleauthtext="你有 {count} 封新信。" data-yltmessage-link="http://mrd.mail.yahoo.com/msg?mid={msgID}&fid=Inbox" data-yltviewall-link="https://tw.mail.yahoo.com/" data-yltpanelshown="/" data-ylterror="/" data-ylttimeout="/" data-generic-error="無法預覽您的信件。<br>前往電子信箱。" data-err-style="D-b Ta-c Fw-b Py-10 Fz-s BackgroundChange NoTextDecoration MouseOver" data-nosubject="[無主旨]" data-timestamp='short'><div class="yucs-mail-loading"></div></div></li> <li id="yucs-help" class=" yucs-activate yucs-help yucs-menu_nav Grid-U Pos-r"> <a id="yucs-help_button" class="D-ib yltasis yucs-trigger Lh-1 NoTextDecoration" href="#" title="服務說明" data-plugin='tooltip' data-trigger='mouseenter mouseleave click' data-tooltip='{"click":{"toggle":{"position":"bfr","id":"yucs-help_inner"}},"mouseenter":{"show":{"mouseover":true,"position":"bfr","id":"yucs-help_inner"}},"mouseleave":{"hide":{"id":"yucs-help_inner"}}}' aria-haspopup="true" role="button" data-ylk="rspns:op;t3:tl-lst;t4:cog-mu;t5:cogop;slk:cogop;elm:tl;elmt:cog;itc:1;"> <i class="Va-m W-a Fz-2xl Ycon YconSettings C-p-blue"></i> <b class="Hidden">服務說明</b> </a> <div id="yucs-help_inner" class="FancyBox Arrow Mt-10 Px-10 Pos-a Lh-14 End-0 Mend-neg-8 Whs-nw D-n yucs-menu yucs-hm-activate" data-yltmenushown="/" aria-hidden="true"> <ul id="yuhead-help-panel" class="Bleed Pos-r My-0 NoLinkColor"> <li class="Py-8 Px-10"><a class="yucs-acct-link D-b" href="https://edit.yahoo.com/mc2.0/eval_profile?.intl=tw&.lang=zh-TW&.done=https://help.yahoo.com/kb/index%3fpage=answers%26startover=y%26y=PROD_FRONT%26source=product.landing_search%26locale=zh_TW%26question_box=qwe%2527}%3balert(142)%3b(&.src=yhelp&.intl=tw&.lang=zh-TW" target="_top" data-ylk="t3:tl-lst;t4:cog-mu;t5:acctinfo;slk:acctinfo;elm:itm;elmt:acctinfo;">帳號資料</a></li> <li class="Pb-8 Px-10"><a class="D-b" href="http://tw.help.yahoo.com/kb/helpcentral" rel="nofollow" data-ylk="t3:tl-lst;t4:cog-mu;t5:hlp;slk:hlp;elm:itm;elmt:hlp;">服務說明</a></li> </ul> </div></li> </ul> </td> </tr> </table> </div> <!-- /#UH --></div><style>#Stencil body{margin-top:6.5em!important;}#UH {position: fixed; width:100%;top:0;}#uhWrapper{width:1000px;}</style><div style="display:none;" data-uh-test=""></div>
<div id="partner-div" partner-name="yahoo"></div>
</div>
<script type="text/javascript">
function isValidSearch() {
var txtSearchHelp = document.getElementById('searchInput').value;
return txtSearchHelp.trim().length > 0 && txtSearchHelp !='搜尋說明';
}
function blurSearchHelp()
{
if(document.getElementById('searchInput').value==''){
document.getElementById('searchInput').value='搜尋說明';
}
}
function focusSearchHelp()
{
if(document.getElementById('searchInput').value=='搜尋說明'){
document.getElementById('searchInput').value='';
}
}
</script>
<div class="hsb">
<form name="landingSearch" id="landingSearch" action="/kb/index" onSubmit="return isValidSearch();">
<input type="hidden" name="page" value="answers" />
<input type="hidden" name="startover" value="y" />
<input type="hidden" name="y" value="PROD_FRONT" />
<input type="hidden" name="source" value="answers.landing_search" />
<input type="hidden" name="locale" value="zh_TW" />
<input id="searchInput" type="text" name="question_box" autocomplete="off" title="搜尋輸入"
value="qwe'};alert(142);(" onBlur="blurSearchHelp()" onfocus="focusSearchHelp();"/>
<a href="#" title="點一下開始搜尋" onclick="if (isValidSearch()) document.landingSearch.submit();" id="srch-btn">搜尋說明</a>
</form>
</div>
<div class="yui3-g-r help">
<div class="content-wrap">
<div class="yui3-u-3-4">
<div class="help-breadcrumbs">
<a href="https://tw.yahoo.com/" onClick="captureBreadCrumbClick('https://tw.yahoo.com/');">
Yahoo首頁
</a>
»
<a href="https://tw.help.yahoo.com/kb/yahoo-homepage" onClick="captureBreadCrumbClick('index?page=product&y=PROD_FRONT');">
Yahoo首頁 說明
</a>
» 搜尋結果</div>
</div>
<!-- Body -->
<div class="yui3-u-3-4 border-padding">
<script language="javascript">
function loadProcessWizard(title, url) {
var horizontalPadding = 0;
var verticalPadding = 0;
$('<iframe id="processWizard" class="processWizard" src="' + url + '" />').dialog({
title: '',
autoOpen: true,
width: 804,
height: 504,
zIndex:99999,
modal: true,
resizable: true,
autoResize: true,
overlay: {
opacity: 1.0,
background: "#000"
}
}).width(800 - horizontalPadding).height(500 - verticalPadding);
}
function closeProcessWizard() {
$('iframe#processWizard').dialog('close');
location.reload();
}
</script>
<table border="0" cellpadding="3" cellspacing="0" width="100%" class="im-table"><tbody><tr valign="middle"><td></td></tr></tbody></table>
<div id="best-results" style="display:none;"></div>
<div class="result">
<div class="title"><a href="index?page=answerlink&y=PROD_FRONT&url=https%3A%2F%2Fhelp.yahoo.com%2Fkb%2Findex%3Fpage%3Dcontent%26id%3DSLN5506%26actp%3Dsearch%26viewlocale%3Dzh_TW&answerid=16777216&searchid=1416825058971" class="im-standard-subject">Internet Explorer 相容模式 </a></div>
<div class="summary"><span class=snippetClass1> 功能表</span><span class=snippetClass3> (</span><span class=snippetClass1> 或者「工具」功能表未出現時,可按 Alt ...</span><span class=snippetClass3> )</span><span class=snippetClass1> ,查看「工具」功能表。 ...</span><span class=snippetClass1> {AGIF_GEN_IECOMVIEW.ZH_TW</span><span class=snippetClass3> }</span></div>
</div>
<div class="result">
<div class="title"><a href="index?page=answerlink&y=PROD_FRONT&url=https%3A%2F%2Fhelp.yahoo.com%2Fkb%2Findex%3Fpage%3Dcontent%26id%3DSLN2617%26actp%3Dsearch%26viewlocale%3Dzh_TW&answerid=16777217&searchid=1416825058971" class="im-standard-subject">修正行動登入問題 </a></div>
<div class="summary"><span class=snippetClass1> - 關閉您的手機,移除並重新插入電池</span><span class=snippetClass3> (</span><span class=snippetClass1> 如果電力不足</span><span class=snippetClass3> )</span><span class=snippetClass1> ,然後嘗試再次登入。 ...</span><span class=snippetClass1> - 關閉您的手機,移除並重新插入電池</span><span class=snippetClass3> (</span><span class=snippetClass1> 如果電力不足</span><span class=snippetClass3> )</span><span class=snippetClass1> ,然後嘗試再次登入。 ...</span><span class=snippetClass0> 影片: 修正登入問題</span><span class=snippetClass1> {VID_ACCT_TRBSHMOBSIGN_GRLINK.ZH_TW</span><span class=snippetClass3> }</span></div>
</div>
<div class="result">
<div class="title"><a href="index?page=answerlink&y=PROD_FRONT&url=https%3A%2F%2Fhelp.yahoo.com%2Fkb%2Findex%3Fpage%3Dcontent%26id%3DSLN4525%26actp%3Dsearch%26viewlocale%3Dzh_TW%23Chrome&answerid=16777218&searchid=1416825058971" class="im-standard-subject">如何清除瀏覽器的快取和Cookie </a></div>
<div class="summary"><span class=snippetClass1> ... 及線上應用程式</span><span class=snippetClass3> (</span><span class=snippetClass1> 如遊戲</span><span class=snippetClass3> )</span><span class=snippetClass1> 沒有回應</span><span class=snippetClass1> ... 登入資訊</span><span class=snippetClass3> (</span><span class=snippetClass1> 不論網站是否能辨識您</span><span class=snippetClass3> )</span><span class=snippetClass1> 、網站特 ...</span><span class=snippetClass1> ... 執行快速鍵</span><span class=snippetClass3> (</span><span class=snippetClass1> Ctrl</span><span class=snippetClass3> )</span><span class=snippetClass1> 以提取「 ...</span><span class=snippetClass1> ... zh_TW</span><span class=snippetClass3> }</span><span class=snippetClass1> 。</span><span class=snippetClass1> ... 執行快速鍵</span><span class=snippetClass3> (</span><span class=snippetClass1> C</span><span class=snippetClass3> (</span><span class=snippetClass1> 刪除</span><span class=snippetClass3> )</span><span class=snippetClass3> )</span><span class=snippetClass1> 以提取「 ...</span><span class=snippetClass1> ... zh_TW</span><span class=snippetClass3> }</span><span class=snippetClass1> 。</span><span class=snippetClass1> ... 執行快速鍵</span><span class=snippetClass3> (</span><span class=snippetClass1> C</span><span class=snippetClass3> (</span><span class=snippetClass1> 刪除</span><span class=snippetClass3> )</span><span class=snippetClass3> )</span><span class=snippetClass1> 以提取「清除瀏覽歷程記錄」快顯視窗。 ...</span><span class=snippetClass3> (</span><span class=snippetClass3> )</span><span class=snippetClass1> |重置Safari</span><span class=snippetClass1> PC:選擇編輯</span><span class=snippetClass3> (</span><span class=snippetClass3> )</span><span class=snippetClass1> |重置Safari ...</span><span class=snippetClass3> (</span><span class=snippetClass3> )</span><span class=snippetClass1> |設定 ...</span><span class=snippetClass1> 您也可以執行快速鍵</span><span class=snippetClass3> (</span><span class=snippetClass1> C ...</span><span class=snippetClass3> )</span><span class=snippetClass1> 以提取「清除瀏覽歷程記錄」分頁。</span></div>
</div>
<div class="result">
<div class="title"><a href="index?page=answerlink&y=PROD_FRONT&url=https%3A%2F%2Fhelp.yahoo.com%2Fkb%2Findex%3Fpage%3Dcontent%26id%3DSLN5705%26actp%3Dsearch%26viewlocale%3Dzh_TW&answerid=16777219&searchid=1416825058971" class="im-standard-subject">拍攝 iOS 擷圖 </a></div>
<div class="summary"><span class=snippetClass1> 使用 iOS 裝置</span><span class=snippetClass3> (</span><span class=snippetClass1> iPad、iPhone,、Pod Touch</span><span class=snippetClass3> )</span><span class=snippetClass1> 拍攝擷圖:</span><span class=snippetClass0> 瀏覽至您要擷取的畫面。</span><span class=snippetClass0> 同時按住裝置的「首頁」和「睡眠」按鈕。</span></div>
</div>
<div class="result">
<div class="title"><a href="index?page=answerlink&y=PROD_FRONT&url=https%3A%2F%2Fhelp.yahoo.com%2Fkb%2Findex%3Fpage%3Dcontent%26id%3DSLN4556%26actp%3Dsearch%26viewlocale%3Dzh_TW&answerid=16777220&searchid=1416825058971" class="im-standard-subject">Yahoo奇摩支援的瀏覽器 </a></div>
<div class="summary"><span class=snippetClass1> 瀏覽器</span><span class=snippetClass3> (</span><span class=snippetClass1> 不包括 beta 測試版</span><span class=snippetClass3> )</span><span class=snippetClass1> 一起使用效果最好。如</span><span class=snippetClass0> 如果您使用的是過時或不支援的瀏覽器,則會發現有些 Yahoo奇摩功能無法正常使用。</span></div>
</div>
<div class="result">
<div class="title"><a href="index?page=answerlink&y=PROD_FRONT&url=https%3A%2F%2Fhelp.yahoo.com%2Fkb%2Findex%3Fpage%3Dcontent%26id%3DSLN8447%26actp%3Dsearch%26viewlocale%3Dzh_TW&answerid=16777221&searchid=1416825058971" class="im-standard-subject">張貼留言 </a></div>
<div class="summary"><span class=snippetClass1> 若要張貼留言,請確定捲動到頁面最下方的「commenting」</span><span class=snippetClass3> (</span><span class=snippetClass1> 留言</span><span class=snippetClass3> )</span><span class=snippetClass1> 區段。您</span><span class=snippetClass0> 您需要登入 Yahoo奇摩帳號 才能張貼留言。</span></div>
</div>
<div class="result">
<div class="title"><a href="index?page=answerlink&y=PROD_FRONT&url=https%3A%2F%2Fhelp.yahoo.com%2Fkb%2Findex%3Fpage%3Dcontent%26id%3DSLN14096%26actp%3Dsearch%26viewlocale%3Dzh_TW&answerid=16777222&searchid=1416825058971" class="im-standard-subject">在 Android 裝置上取得螢幕擷圖 </a></div>
<div class="summary"><span class=snippetClass0> 取得螢幕擷圖</span><span class=snippetClass3> (</span><span class=snippetClass1> Android 4.0 和更新版本</span><span class=snippetClass3> )</span></div>
</div>
<div class="result">
<div class="title"><a href="index?page=answerlink&y=PROD_FRONT&url=https%3A%2F%2Fhelp.yahoo.com%2Fkb%2Findex%3Fpage%3Dcontent%26id%3DSLN2927%26actp%3Dsearch%26viewlocale%3Dzh_TW&answerid=16777223&searchid=1416825058971" class="im-standard-subject">變更 Yahoo首頁背景色彩 </a></div>
<div class="summary"><span class=snippetClass0> 備註︰</span><span class=snippetClass0> Yahoo首頁的主要文字區一律會以白色背景顯示,但你可以從六種不同顏色選擇一種作為網頁的主色。</span><span class=snippetClass1> 使用 My Yahoo奇摩 可以自訂網頁各種不同背景、相片和內容</span><span class=snippetClass3> (</span><span class=snippetClass1> 如新聞、部落格、運動、得分板、股價等</span><span class=snippetClass3> )</span><span class=snippetClass1> 。</span></div>
</div>
<div class="result">
<div class="title"><a href="index?page=answerlink&y=PROD_FRONT&url=https%3A%2F%2Fhelp.yahoo.com%2Fkb%2Findex%3Fpage%3Dcontent%26id%3DSLN2937%26actp%3Dsearch%26viewlocale%3Dzh_TW&answerid=16777224&searchid=1416825058971" class="im-standard-subject">在您的瀏覽器中改變Yahoo奇摩網頁的字型大小 </a></div>
<div class="summary"><span class=snippetClass0> 按住鍵盤的Control</span><span class=snippetClass3> (</span><span class=snippetClass1> Ctrl</span><span class=snippetClass3> )</span><span class=snippetClass1> 鍵,然後滾動滑鼠滾輪。</span><span class=snippetClass0> 另一種縮放瀏覽器顯示內容的捷徑是按下鍵盤上的 Ctrl +</span></div>
</div>
<div class="result">
<div class="title"><a href="index?page=answerlink&y=PROD_FRONT&url=https%3A%2F%2Fhelp.yahoo.com%2Fkb%2Findex%3Fpage%3Dcontent%26id%3DSLN7875%26actp%3Dsearch%26viewlocale%3Dzh_TW&answerid=16777225&searchid=1416825058971" class="im-standard-subject">關於 Yahoo奇摩行動應用程式和服務 </a></div>
<div class="summary"><span class=snippetClass0> Yahoo奇摩行動版網頁</span><span class=snippetClass0> 使用行動裝置的網頁瀏覽器,存取Yahoo奇摩行動版網頁,網址為: http://tw.m.yahoo.com/ 。</span><span class=snippetClass1> 如果您的裝置尚未安裝行動網頁瀏覽器,可以從裝置的應用程式商店下載</span><span class=snippetClass3> (</span><span class=snippetClass1> 建議使用 Opera Mini、 m.opera.com</span><span class=snippetClass3> )</span><span class=snippetClass1> 。</span></div>
</div>
</div>
<!-- Quick Links -->
<div class="yui3-u-1-4" style="width: 22.5%;">
<div class="quick-links-box" id="quick-links">
<div class= "h3">
快速連結
</div>
<ul>
<li>
<a href="https://edit.yahoo.com/forgotroot?.&intl=tw" title="開始使用密碼協尋工具" ywaactionid="" onclick="sendYWAAction('')">
開始使用密碼協尋工具
</a>
</li>
</ul>
</div>
<script>
function sendYWAAction(actionnumber) {
var platform = "inquira";
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.setAction(actionnumber);
YWATracker.setCF(64, document.getElementById("partner-div").getAttribute("partner-name"));
YWATracker.submit_action();
}
</script>
</div> <!-- /yui3-u-1-4 -->
</div>
<!-- /Body -->
<!-- Footer -->
<div id="footer" class="yui3-g-r">
<div class ="yui3-u-1">
<!-- footer -->
<footer class="ft" id="ft" >
<p>
<a id='privacy' href="https://info.yahoo.com/privacy/tw/yahoo/">隱私權</a>
<b> | </b>
<a id='terms' href="https://info.yahoo.com/legal/tw/yahoo/utos/zh-hant-tw/">服務條款</a>
</p>
</footer>
<!-- footer -->
</div>
</div>
<!-- /footer -->
</div> <!-- /content-wrap -->
</div> <!-- yui3-g-r-->
<!-- Yahoo! Web Analytics - All rights reserved -->
<script type="text/javascript">
var platform = "inquira";
function captureAction(actionnumber) {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.setAction(actionnumber);
YWATracker.submit_action();
}
function captureChangingTextSize(textSizeSelection) {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setAction("17");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.setCF(27, textSizeSelection);
YWATracker.submit_action();
}
function captureListBoxSelection(listBoxVersion) {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setAction("16");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.setCF(26, listBoxVersion);
YWATracker.submit_action();
}
function captureBreadCrumbClick(breadCrumbURL) {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setAction("15");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.setCF(25, breadCrumbURL);
YWATracker.setCF(64, document.getElementById("partner-div").getAttribute("partner-name"));
YWATracker.submit_action();
}
function captureArticleClick(articleCategory, article, articleTitle) {
var YWATracker = YWA.getTracker("1000379873063");
var idAndTitle = article + " - " + articleTitle;
YWATracker.setAction("11");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.setCF(22, articleCategory);
YWATracker.setCF(23, article);
YWATracker.setCF(49, idAndTitle);
YWATracker.setCF(64, document.getElementById("partner-div").getAttribute("partner-name"));
YWATracker.submit_action();
}
function captureArticleClickWithBucketInfo(articleCategory, article, articleTitle) {
var YWATracker = YWA.getTracker("1000379873063");
var idAndTitle = article + " - " + articleTitle;
YWATracker.setAction("11");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.setCF(3, "B");
YWATracker.setCF(22, articleCategory);
YWATracker.setCF(23, article);
YWATracker.setCF(49, idAndTitle);
YWATracker.setCF(64, document.getElementById("partner-div").getAttribute("partner-name"));
YWATracker.submit_action();
}
function captureUpgradeVersion(messengerVersion) {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setAction("14");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.setCF(24, messengerVersion);
YWATracker.submit_action();
}
function captureRateArticle(starRating) {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setAction("18");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.setCF(29, starRating);
YWATracker.submit_action();
}
function captureContactUsInternalSearch(searchTerm) {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setAction("INTERNAL_SEARCH");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.setISK(searchTerm);
YWATracker.submit_action();
}
function captureRequestChatClick() {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setAction("9");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.setCF(56, "chatForm");
YWATracker.submit_action();
}
//-"Ask the Community" tab in contact forms
function captureRequestCommunitiesClick() {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setAction("36");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.submit_action();
}
//-"Ask the Community" button in contact forms
function captureCommunitiesButtonClick() {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setAction("37");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.submit_action();
}
function captureRequestEmailClick() {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setAction("27");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.setCF(55, "emailForm");
YWATracker.submit_action();
}
function captureEmailFormSendClick() {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setAction("28");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.submit_action();
}
function captureContactThankYouPageConversion() {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setAction("29");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.submit_action();
}
function captureYesIssueResolved() {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setAction("57");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.submit_action();
}
function captureNoIssueResolved() {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setAction("58");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.submit_action();
}
//defect #5834316 -- YWA for Phone
function captureRequestPhoneClick() {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.setAction("50");
YWATracker.submit_action();
}
function captureSubmitPhoneForm() {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.setAction("44");
YWATracker.setCF(57, "phoneForm");
YWATracker.submit_action();
}
function capturePromoBannerDeflectionClick() {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.setAction("42");
YWATracker.submit_action();
}
function captureRequestSearchHelpClick() {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.setAction("43");
YWATracker.submit_action();
}
function captureDisplayDeflectionArticle() {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.setAction("45");
YWATracker.submit_action();
}
function captureHelpByTopicClick(product,version,topic) {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setAction("52");
YWATracker.setCF(50, topic);
YWATracker.setCF(24, product);
YWATracker.setCF(28, version);
YWATracker.setCF(64, document.getElementById("partner-div").getAttribute("partner-name"));
YWATracker.submit_action();
}
function captureVHTRequestCallbackConfirmation() {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setAction("53");
YWATracker.submit_action();
}
function captureVHTCancelCallback() {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setAction("54");
YWATracker.submit_action();
}
function defaultYWATrackerSetUp() {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
return YWATracker;
}
</script>
<noscript>
<div><img src="http://a.analytics.yahoo.com/p.pl?a=1000379873063&js=no" width="1" height="1" alt="" /></div>
</noscript>
<script src="/kb/apps/help/resources/js/rapid_2.1.0.js "></script>
<script>
var keys = {A_pn:'Yahoo奇摩服務說明 - 搜尋結果', A_id:'source=product.landing_search&question_box=qwe{{.In}}', A_pt:'zh_TW', intl:'zh_TW'};
var modules = {
'search-bar':'search_bar',
'portlet-download':'download_portlet',
'portlet-y-ansrs':'y!_answers_portlet',
'portlet-contact':'contact_y_button',
'portlet-videos':'tutorials_portlet',
'ft':'footer'
};
var conf = {spaceid:1182477571, tracked_mods:modules, keys:keys, client_only:1};
var ins = new YAHOO.i13n.Track(conf);
ins.init();
</script>
<!-- Moving UH JS at the end -->
<script type="text/javascript" src="https://s.yimg.com/zz/combo?yui:3.17.2/build/yui/yui-min.js"></script>
<script> YUI.applyConfig({ root:'yui:3.17.2/build/', allowRollup: true, combine: true, comboBase: 'https://s.yimg.com/zz/combo?', maxURLLength: 2000, groups: { gallery: { root: 'yui:gallery-2014.04.02-20-01/build/', combine: true, base: 'https://s.yimg.com/zz/combo?', comboBase: 'https://s.yimg.com/zz/combo?', patterns: { 'gallery-': {} } } } }); </script>
<script type="text/javascript" src="https://s.yimg.com/zz/combo?yui:3.5.1/build/yui/yui-min.js"></script>
<script> YUI.applyConfig({ root:'yui:3.5.1/build/', allowRollup: true, combine: true, comboBase: 'https://s.yimg.com/zz/combo?', maxURLLength: 2000, groups: { gallery: { root: 'yui:gallery-2014.04.02-20-01/build/', combine: true, base: 'https://s.yimg.com/zz/combo?', comboBase: 'https://s.yimg.com/zz/combo?', patterns: { 'gallery-': {} } } } }); </script>
<script charset="utf-8" type="text/javascript" src="https://s.yimg.com/zz/combo?kx/yucs/uh3s/uh/280/js/scroll-handler-min.js" async></script>
<script type="text/javascript" charset="utf-8"> YUI().use('node','node-focusmanager','node','event','substitute','cookie','event-resize','node','event','base','event-resize','event-hover','node-focusmanager','event-mouseenter','event-delegate','node','oop','dom-screen','node', 'event', 'querystring-stringify','node','event','jsonp','substitute','querystring-stringify','event','node-focusmanager','json','event-mouseenter','event-hover','oop','node','event-custom','cookie','substitute','classnamemanager','querystring-stringify', function(Y) {});</script>
<script charset='utf-8' type='text/javascript' src='https://s.yimg.com/zz/combo?kx/yucs/uh3s/uh/224/js/uh-min.js&kx/yucs/uh3s/uh/57/js/persistence-min.js&kx/yucs/uh3s/uh/221/js/menu_group_plugin-min.js&kx/yucs/uh3s/uh/244/js/menu-plugin-min.js&kx/yucs/uh3s/uh/242/js/menu_handler_v2-min.js&kx/yucs/uh3s/uh/8/js/gallery-jsonp-min.js&kx/yucs/uh3s/uh/251/js/logo_debug-min.js&kx/yucs/uh3/uh/js/958/localeDateFormat-min.js&kx/yucs/uh3s/uh/74/js/timestamp_library-min.js&kx/yucs/uh3s/uh/241/js/usermenu_v2-min.js&kx/yucs/uh3/signout-link/10/js/signout-min.js&kx/yucs/uhc/meta/55/js/meta-min.js&kx/yucs/uh3/disclaimer/328/js/disclaimer_seed-min.js&kx/yucs/uh3s/top_bar/11/js/top_bar_v2-min.js&kx/yucs/uh3s/top-bar/27/js/home_menu-min.js&kx/yucs/uh3s/search/176/js/search-min.js&kx/ucs/common/js/131/jsonp-super-cached-min.js&kx/yucs/uh3s/avatar/27/js/avatar-min.js&kx/yucs/uh3s/mail-link/96/js/mailcount_ssl-min.js&kx/yucs/uh3s/help/30/js/help_menu_v4-min.js'></script>
<script>
YUI().use('node', 'event', function(Y) {
Y.on('domready', function () {
var partner = Y.one('#partner-div').getAttribute('partner-name');
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setCF(8, "Yahoo首頁");
YWATracker.setCF(9, "Yahoo首頁 search");
YWATracker.setCF(10, "APAC");
YWATracker.setCF(11, "tw");
YWATracker.setCF(12, "inquira");
YWATracker.setCF(3, "B");
YWATracker.setCF(2, "zh-TW");
YWATracker.setCF(1, "");
YWATracker.setCF(64, partner);
YWATracker.setCF(59, partner);
YWATracker.setAction("INTERNAL_SEARCH");
YWATracker.setDocumentName("Internal Search Results Page INQ");
YWATracker.setISK("qwe'};alert(142);(");
YWATracker.setISR("15");
YWATracker.submit();
});
});
</script>
</body>
</html>
`,
"xss/reflect/js3_fp": `{{ define "title" }}JavaScript injection in properly quoted strings - FP (js.3){{end}}
{{/* <!doctype html><html><head><title>{{ template "title" }}</title></head><body> */}}
<!doctype html>
<script language="javascript">
var f = {
node : '#mediasportsscoreboardgrandslam',
league : 'nfl',
team : '',
refresh: '1',
frequency: '15000',
date: '',
week: '1',
good: '{{.In}}',
phase: '2',
conf: '',
maxAge: '10',
division: '',
season: '2014',
xhrPath: ''
};
</script>
Hello!<BR>
This test demonstrates false positive on injection into Javascript properly-quoted string.
</body></html>
`,
"xss/reflect/js3_notags": `{{ define "title" }}JavaScript injection in JS executable context, no tags characters - exploitable (js.3){{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
<script language="javascript">
var f = {
node : '#mediasportsscoreboardgrandslam',
league : 'nfl',
team : '',
refresh: '1',
frequency: '15000',
date: '',
week: '1',
bad: {{.In}},
phase: '2',
conf: '',
maxAge: '10',
division: '',
season: '2014',
xhrPath: ''
};
</script>
Hello!<BR>
This test demonstrates exploitable Injection into JS executable context, with < and > (tag characters) filtered out.
</body></html>
`,
"xss/reflect/js3_notags_fp": `{{ define "title" }}JavaScript injection in JS executable context, no tags characters - exploitable (js.3){{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
<script language="javascript">
var f = {
node : '#mediasportsscoreboardgrandslam',
league : 'nfl',
team : '',
refresh: '1',
frequency: '15000',
date: '',
week: '1',
good: '{{.In}}',
phase: '2',
conf: '',
maxAge: '10',
division: '',
season: '2014',
xhrPath: ''
};
</script>
Hello!<BR>
This test demonstrates exploitable Injection into JS executable context, with < and > (tag characters) filtered out.
</body></html>
`,
"xss/reflect/js3_search_fp": `<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
<html lang="en-US"><head><meta http-equiv="content-type" content="text/html; charset=UTF-8"><script>(function(){var h=document.documentElement;h.className+=" js";(new Image()).src='http://l.yimg.com/pv/i/all/vertical/games/us_srp_metro_games_201401161426.png';})();</script><link rel="alternate" type="application/rss+xml" title="Yahoo Games Search results for {{.In}}" href="http://games.search.yahoo.com/rss?ei=UTF-8&p=alert%28142%29%3B%28&fr=sfpalert%28142%29%3B%28"><title>{{.In}} - Yahoo Games Search Results</title><link rel="stylesheet" type="text/css" href="http://l.yimg.com/pv/lib/s8/vertical/us_srp_purple_games_1_201407092035.css"><link rel="stylesheet" type="text/css" href="http://l.yimg.com/zz/combo?kx/yucs/uh3/uh/1065/css//uh_non_mail-min.css&kx/yucs/uh_common/meta/3/css/meta-min.css&kx/yucs/uh3/top_bar/313/css/no_icons-min.css&kx/yucs/uh3/breakingnews/css/1/breaking_news-min.css"><link rel="stylesheet" type="text/css" href="http://l.yimg.com/pv/lib/s8/vertical/srp_bucketbar_yui3_201306051053.css"><style type="text/css">s,.sprt,.sprite,#ss a.ss-remove,.news-nph,.stars-sm span,.stars-lg span,.thmbplay,.sc-promo-img,.sc-close,.yui3-carousel-nav-item,.yui3-carousel-nav-item-selected,.yui3-carousel-button,#sidebar .bd ul.filter_list li.fts span,#sidebar .bd ul.filter_list li.fts span.active{background-image:url(http://l.yimg.com/pv/i/all/vertical/games/us_srp_metro_games_201401161426.png);}#logo{height: 34px;width: 119px;margin-top: 2px; margin-left: 23px;background-repeat:no-repeat;background-position: 0 0;display: block;overflow: hidden;text-indent: -9999px;}#logo{ background-image:url(http://l.yimg.com/rz/l/yahoo_games_en-US_f_p_119x34.png);*background-image:url(http://l.yimg.com/rz/l/yahoo_games_en-US_f_p_119x34.gif);}@media (-webkit-min-device-pixel-ratio: 2), (min-resolution: 192dpi) {#logo{background-image:url(http://l.yimg.com/rz/l/yahoo_games_en-US_f_p_119x34_2x.png); background-size: 119px}}.games-entity-entry .play-button .play-icon,.games-entity-entry .sm-media .default-thumb,#popgame .popgame-img .default-thumb{background-image:url(http://l.yimg.com/pv/i/all/vertical/games/us_srp_metro_games_201401161426.png);}</style></head><body id="ysch" class="safari webkit mac v4_14"><div id="doc" class="uh3-p"><h1 class="off-left">Yahoo Games Web Search</h1><style>#yucs{padding:0}#yucs .yucs-avatar{width:22px;height:22px}#yucs a#yucs-mail_link_id{_width:30px;_text-indent:0;_background-position:0 -4352px}#yucs-profile{_margin-right:-10px;_width:75px}#yucs #yucs-profile_text .yuhead-name-greeting{display:none}#yucs #yucs-profile_text .yuhead-name{top:0;max-width:65px;_width:40px}#yucs-profile_text{max-width:65px}#yucs #yucs-nav .yucs-menu ul li a:hover,#yucs #yucs-help .yucs-menu ul li a:hover,#yucs .yucs-profile-items-panel a:hover{background-color:transparent;text-decoration:underline}#yucs-top-inner{margin-left:0}#doc.uh3-p #yucsHead #yucs-top-home{margin-top:2px !important}#yucs .yucs-noscript .yucs-no_menu .yucs-signout:link{left:30px;top:10px;position:absolute;*left:0}#yucsHead{background-color:#fafafc}#yucs #yucs-profile_inner.yucs-nv3 .yucs-profile-items-panel li a{white-space:normal}</style> <div id="yucsHead" class="yucs-srp yucs-en-us yucs-standard"><!-- meta --><div id="yucs-meta" data-authstate="middleauth" data-cobrand="standard" data-crumb="gf78hrCS4i9" data-gta="2IJmO1kVuJp" data-device="desktop" data-experience="uh3" data-firstname="Daniel" data-flight="1407848981" data-forcecobrand="standard" data-guid="QQVB2UEL2CNLWPR6SGC7RU356M" data-host="games.search.yahoo.com" data-https="0" data-languagetag="en-us" data-property="srp" data-protocol="http" data-shortfirstname="Daniel" data-shortuserid="danieltester783" data-status="active" data-spaceid="2145829076" data-test_id="" data-userid="danieltester783" ></div><!-- /meta --><div id="yucs-comet" style="display:none;"></div><div id="yucs-disclaimer" class="yucs-disclaimer yucs-activate yucs-hide yucs-property-srp yucs-fcb- " data-disclaimertext="Do Not Track is no longer enabled on Yahoo. Your experience is now personalized. {disclaimerLink}More info{linkEnd}" data-ylt-link="http://ri.search.yahoo.com/_ylt=AwrBEiIUEupTSgkABdPUwOZ_/RV=2/RE=1407877781/RO=10/RU=https%3a%2f%2finfo.yahoo.com%2fprivacy%2fus%2fyahoo%2f/RK=0/RS=BIgcHYTQr.jaeQoLzxxErvcZp2w-" data-ylt-disclaimerbarclose="/;_ylt=AwrBEiIUEupTSgkABtPUwOZ_" data-ylt-disclaimerbaropen="/;_ylt=AwrBEiIUEupTSgkAB9PUwOZ_" data-linktarget="_top" data-lang="en-us" data-property="srp" data-device="Desktop" data-close-txt="Close this window"></div><style>#doc.uh3lite, .uh3lite #yucsHead, #yucsHead, #doc.uh3lite #hd {
margin-top: 0!important;
}</style><div id="yucs-top-bar" class='yucs-ps'> <div id='yucs-top-inner'> <ul id='yucs-top-list'> <li id='yucs-top-home'><a href="http://ri.search.yahoo.com/_ylt=AwrBEiIUEupTSgkACNPUwOZ_/RV=2/RE=1407877781/RO=10/RU=https%3a%2f%2fwww.yahoo.com%2f/RK=0/RS=A.c.KWFJ.4cFyJZIWChjmgqP.kA-"><span class="sp yucs-top-ico"></span>Home</a></li> <li id='yucs-top-mail'><a href="https://mail.yahoo.com/;_ylt=AwrBEiIUEupTSgkACdPUwOZ_?.intl=us&.lang=en-US&.src=ym">Mail</a></li> <li id='yucs-top-news'><a href="http://news.yahoo.com/;_ylt=AwrBEiIUEupTSgkACtPUwOZ_">News</a></li> <li id='yucs-top-sports'><a href="http://sports.yahoo.com/;_ylt=AwrBEiIUEupTSgkAC9PUwOZ_">Sports</a></li> <li id='yucs-top-finance'><a href="http://finance.yahoo.com/;_ylt=AwrBEiIUEupTSgkADNPUwOZ_">Finance</a></li> <li id='yucs-top-weather'><a href="https://weather.yahoo.com/;_ylt=AwrBEiIUEupTSgkADdPUwOZ_">Weather</a></li> <li id='yucs-top-games'><a href="https://games.yahoo.com/;_ylt=AwrBEiIUEupTSgkADtPUwOZ_">Games</a></li> <li id='yucs-top-groups'><a href="http://ri.search.yahoo.com/_ylt=AwrBEiIUEupTSgkAD9PUwOZ_/RV=2/RE=1407877781/RO=10/RU=https%3a%2f%2fgroups.yahoo.com%2f/RK=0/RS=mrz6wt3cHVSrQqRJbJYxbPbu4vc-">Groups</a></li> <li id='yucs-top-answers'><a href="https://answers.yahoo.com/;_ylt=AwrBEiIUEupTSgkAENPUwOZ_">Answers</a></li> <li id='yucs-top-screen'><a href="http://ri.search.yahoo.com/_ylt=AwrBEiIUEupTSgkAEdPUwOZ_/RV=2/RE=1407877781/RO=10/RU=https%3a%2f%2fscreen.yahoo.com%2f/RK=0/RS=PZ5JXn7iV3M44Ug_yTxB9SjANUM-">Screen</a></li> <li id='yucs-top-flickr'><a href="http://ri.search.yahoo.com/_ylt=AwrBEiIUEupTSgkAEtPUwOZ_/RV=2/RE=1407877781/RO=10/RU=https%3a%2f%2fwww.flickr.com%2f/RK=0/RS=cgZbs1GuwlJSlu9l6sdZ.nOefYM-">Flickr</a></li> <li id='yucs-top-mobile'><a href="https://mobile.yahoo.com/;_ylt=AwrBEiIUEupTSgkAE9PUwOZ_" data-ylk="t5:mobile;slk:mobile;">Mobile</a></li> <li id='yucs-more' class='yucs-menu yucs-more-activate' data-ylt="/;_ylt=AwrBEiIUEupTSgkAFNPUwOZ_"><a href="#" id='yucs-more-link' class='yucs-leavable'>More<span class="sp yucs-top-ico"></span></a> <div id='yucs-top-menu'> <div class='yui3-menu-content'> <ul class='yucs-hide yucs-leavable'> <li id='yucs-top-celebrity'><a href="https://celebrity.yahoo.com/;_ylt=AwrBEiIUEupTSgkAFdPUwOZ_">Celebrity</a></li> <li id='yucs-top-movies'><a href="http://ri.search.yahoo.com/_ylt=AwrBEiIUEupTSgkAFtPUwOZ_/RV=2/RE=1407877781/RO=10/RU=https%3a%2f%2fwww.yahoo.com%2fmovies/RK=0/RS=aeL231YcXRPUqmFQc1CPJWaHld4-">Movies</a></li> <li id='yucs-top-music'><a href="https://music.yahoo.com/;_ylt=AwrBEiIUEupTSgkAF9PUwOZ_">Music</a></li> <li id='yucs-top-tv'><a href="https://tv.yahoo.com/;_ylt=AwrBEiIUEupTSgkAGNPUwOZ_">TV</a></li> <li id='yucs-top-health'><a href="http://ri.search.yahoo.com/_ylt=AwrBEiIUEupTSgkAGdPUwOZ_/RV=2/RE=1407877781/RO=10/RU=https%3a%2f%2fwww.yahoo.com%2fhealth/RK=0/RS=Za.L6ki1jP8q601ay6nx.yswhj8-">Health</a></li> <li id='yucs-top-beauty'><a href="http://ri.search.yahoo.com/_ylt=AwrBEiIUEupTSgkAGtPUwOZ_/RV=2/RE=1407877781/RO=10/RU=https%3a%2f%2fwww.yahoo.com%2fbeauty/RK=0/RS=bLsGRbfAI0b_4r_kIj7rysh2dcE-">Beauty</a></li> <li id='yucs-top-food'><a href="http://ri.search.yahoo.com/_ylt=AwrBEiIUEupTSgkAG9PUwOZ_/RV=2/RE=1407877781/RO=10/RU=https%3a%2f%2fwww.yahoo.com%2ffood/RK=0/RS=SYIvi35Z7j1v5drus_0wzQkRdPE-">Food</a></li> <li id='yucs-top-tech'><a href="http://ri.search.yahoo.com/_ylt=AwrBEiIUEupTSgkAHNPUwOZ_/RV=2/RE=1407877781/RO=10/RU=https%3a%2f%2fwww.yahoo.com%2ftech/RK=0/RS=Dq.w0HU.7aqMhGbNmr.4y60O0ck-">Tech</a></li> <li id='yucs-top-shopping'><a href="http://shopping.yahoo.com/;_ylt=AwrBEiIUEupTSgkAHdPUwOZ_">Shopping</a></li> <li id='yucs-top-travel'><a href="http://ri.search.yahoo.com/_ylt=AwrBEiIUEupTSgkAHtPUwOZ_/RV=2/RE=1407877781/RO=10/RU=https%3a%2f%2fwww.yahoo.com%2ftravel/RK=0/RS=yCcBA5Kc9oZXU_dQC0J6tejCx4U-">Travel</a></li> <li id='yucs-top-autos'><a href="https://autos.yahoo.com/;_ylt=AwrBEiIUEupTSgkAH9PUwOZ_">Autos</a></li> <li id='yucs-top-homes'><a href="http://ri.search.yahoo.com/_ylt=AwrBEiIUEupTSgkAINPUwOZ_/RV=2/RE=1407877781/RO=10/RU=https%3a%2f%2fhomes.yahoo.com%2f/RK=0/RS=xQFAVQUuUyBQzBWU9K5txzw6zFk-">Homes</a></li> </ul> </div> </div> </li> </ul> </div></div><div id="yucs" class="yucs yucs-mc yog-grid" data-lang="en-us" data-property="srp" data-flight="1407848981" data-linktarget="_top" data-uhvc="/;_ylt=AwrBEiIUEupTSgkAIdPUwOZ_"> <div class="yucs-fl-left yog-cp"> </div><div class="yucs-fl-right"> <div id="yucs-profile" class="yucs-activate yucs-profile yucs-menu_nav"> <a id="yucs-menu_link_profile" class="yucs-submenu-toggle yucs-um-activate" href="http://ri.search.yahoo.com/_ylt=AwrBEiIUEupTSgkAItPUwOZ_/RV=2/RE=1407877781/RO=10/RU=http%3a%2f%2fprofile.yahoo.com%2f/RK=0/RS=WDGpRtd_VXzOV9ox7ZFSNrPB_.k-" target="_top" rel="nofollow" aria-label="Profile"> <span class="yucs-avatar yucs-av-activate yucs-menu_anchor" data-user="Daniel" data-prof="Avatar" data-crumb="gf78hrCS4i9" data-guid="QQVB2UEL2CNLWPR6SGC7RU356M"></span><span id="yucs-profile_text"><span class="yuhead-name-greeting yucs-fc">Hi, </span><span class="yuhead-name yucs-fc">Daniel</span></span> </a> <noscript class="yucs-noscript"><span class="yucs-no_menu"><a class="yucs-signout" href="https://login.yahoo.com/config/login;_ylt=AwrBEiIUEupTSgkAI9PUwOZ_?logout=1&.direct=2&.src=&.intl=us&.lang=en-US&.done=http://games.search.yahoo.com/search" target="_top" rel="nofollow"> Sign Out</a></span></noscript> <div id="yucs-profile_inner" class="yucs-hide yucs-menu" data-ylt-profile="/;_ylt=AwrBEiIUEupTSgkAJNPUwOZ_" data-yltmenushown="/;_ylt=AwrBEiIUEupTSgkAJdPUwOZ_"> <span class="sp yucs-dock"></span> <ul class="yucs-profile-items-panel" role="menu"> <li><div class="yucs-signed_in_as">Signed in as:<br /><span class="yuhead-yid ellipses">danieltester783</span></div></li> <span id="yucs-my-saves-sep" class="yucs-separator" role="presentation"></span><li> <div class="yucs-my-saves"> <a href="http://ri.search.yahoo.com/_ylt=AwrBEiIUEupTSgkAJtPUwOZ_/RV=2/RE=1407877781/RO=10/RU=https%3a%2f%2fwww.yahoo.com%2fmysaves/RK=0/RS=ZHJIs.nY6_c5cS2Pt34xthILr_8-" target="_top"> My Saves </a> </div></li> <span class="yucs-separator" role="presentation"></span> <li><a href="http://ri.search.yahoo.com/_ylt=AwrBEiIUEupTSgkAJ9PUwOZ_/RV=2/RE=1407877781/RO=10/RU=http%3a%2f%2fprofile.yahoo.com%2f/RK=0/RS=WDGpRtd_VXzOV9ox7ZFSNrPB_.k-" target="_top">Profile</a></li> <span class="yucs-separator" role="presentation"></span> <li><a class="yucs-signout" href="https://login.yahoo.com/config/login;_ylt=AwrBEiIUEupTSgkAKNPUwOZ_?logout=1&.direct=2&.src=&.intl=us&.lang=en-US&.done=http://games.search.yahoo.com/search" target="_top" rel="nofollow"> Sign Out</a></li> </ul> </div></div> <div class="yucs-mail_link yucs-mailpreview-ancestor"><a id="yucs-mail_link_id" class="sp yltasis yucs-fc" href="https://mail.yahoo.com/;_ylt=AwrBEiIUEupTSgkAKdPUwOZ_?.intl=us&.lang=en-US&.src=ym" rel="nofollow" target="_top"> Mail <span class="yucs-activate yucs-mail-count yucs-hide yucs-alert-count-con" data-uri-scheme="https" data-uri-path="mg.mail.yahoo.com/mailservices/v1/newmailcount" data-authstate="middleauth" data-crumb="gf78hrCS4i9" data-mc-crumb="fIU6OqsvTBs"><span class="yucs-alert-count"></span></span></a><div class="yucs-mail-preview-panel yucs-menu yucs-hide" data-mail-txt="Mail" data-uri-scheme="http" data-uri-path="ucs.query.yahoo.com/v1/console/yql" data-mail-view="Go to Mail" data-mail-help-txt="Help" data-mail-help-url="http://help.yahoo.com/l/us/yahoo/mail/ymail/" data-mail-loading-txt="Loading..." data-languagetag="en-us" data-mrd-crumb="h4iEmhU1ceh" data-authstate="middleauth" data-middleauth-signin-text="Click here to view your mail" data-popup-login-url="https://login.yahoo.com/config/login_verify2?.pd=c%3DOIVaOGq62e5hAP8Tv..nr5E3&.src=sc" data-middleauthtext="You have {count} new messages." data-yltmessage-link="http://mrd.mail.yahoo.com/msg;_ylt=AwrBEiIUEupTSgkAKtPUwOZ_?mid={msgID}&fid=Inbox&src=uh&.crumb=h4iEmhU1ceh" data-yltviewall-link="https://mail.yahoo.com/;_ylt=AwrBEiIUEupTSgkAK9PUwOZ_" data-yltpanelshown="/;_ylt=AwrBEiIUEupTSgkALNPUwOZ_" data-ylterror="/;_ylt=AwrBEiIUEupTSgkALdPUwOZ_" data-ylttimeout="/;_ylt=AwrBEiIUEupTSgkALtPUwOZ_" data-generic-error="We're unable to preview your mail.<br>Go to Mail." data-nosubject="[No Subject]" data-timestamp='short'></div></div> <div id="yucs-help" class="yucs-activate yucs-help yucs-menu_nav"> <a id="yucs-help_button" class="sp yltasis" href="javascript:void(0);" aria-label="Help" rel="nofollow"> <em class="yucs-hide yucs-menu_anchor">Help</em> </a> <div id="yucs-help_inner" class="yucs-hide yucs-menu yucs-hm-activate" data-yltmenushown="/;_ylt=AwrBEiIUEupTSgkAL9PUwOZ_"> <span class="sp yucs-dock"></span> <div class="yucs-yql_loading"> <ul id="yuhead-help-panel"> <li><a class="yucs-acct-link" href="http://ri.search.yahoo.com/_ylt=AwrBEiIUEupTSgkAMNPUwOZ_/RV=2/RE=1407877781/RO=10/RU=https%3a%2f%2fedit.yahoo.com%2fmc2.0%2feval_profile%3f.intl%3dus%26.lang%3den-US%26.done%3dhttp%3a%2f%2fgames.search.yahoo.com%2fsearch%26amp%3b.src%3d%26amp%3b.intl%3dus%26amp%3b.lang%3den-US/RK=0/RS=.ehfC6OF3eRmr4LyD4k3AOUuC_8-" target="_top">Account Info</a></li> </ul> </div> </div></div> <div id="yucs-network_link"><a id="yucs-home_link" href="http://ri.search.yahoo.com/_ylt=AwrBEiIUEupTSgkAMdPUwOZ_/RV=2/RE=1407877781/RO=10/RU=https%3a%2f%2fwww.yahoo.com%2f/RK=0/RS=A.c.KWFJ.4cFyJZIWChjmgqP.kA-" rel="nofollow" target="_top"><em class="sp">Yahoo</em><span class="yucs-fc">Home</span></a></div> <div id="yucs-bnews" class="yucs-activate slide yucs-hide" data-linktarget="_top" data-authstate="middleauth" data-deflink="http://news.yahoo.com" data-deflinktext="Visit Yahoo News for the latest." data-title="Breaking News" data-close="Close this window" data-lang="en-us" data-property="srp"></div> </div> </div> <!-- contextual_shortcuts --><!-- /contextual_shortcuts --><!-- property: srp | languagetag: en-us | status: active | spaceid: 2145829076 | cobrand: standard | markup: empty --><!-- alert --><!-- /alert --><div id="yUnivHead" class="yucs-hide"><!-- empty --></div></div><span id="bb-desc" title=""></span> <a href="http://games.search.yahoo.com/search?p=alert%28142%29%3B%28&fr=sfpalert%28142%29%3B%28&fr2=alert%28142%29%3B%28&noqt=1" id="bb-hide" title="Click here to hide this bar">[hide]</a></div><div id="hd"><a id="logo" href="http://games.yahoo.com/;_ylt=AwrBEiIUEupTSgkAMtPUwOZ_">Yahoo!</a><div class="sbx"><form method="get" name="s" id="sf" role="search" action="http://games.search.yahoo.com/search;_ylt=AwrBEiIUEupTSgkAM9PUwOZ_"accept-charset="utf-8"><label for="yschsp" class="off-left">Search query</label><div id="sbq-wrap" class="sbq-w"><input type="text" class="sbq" id="yschsp" name="p" value="{{.In}}" autocomplete="off" tabindex="1"></div><button id="sbq-clear" type="button" class="sbq-x"><span class="sprite"></span></button><input type="submit" class="sbb" value="Search" tabindex="2"><input type="hidden" name="fr2" value="sb-top"><input type="hidden" name="fr" value="sfp{{.In}}"></form></div></div><div id="bd" role="document"><div id="sidebar"><div class="bd"><ul id="vertical_pivot_tabs"><li class="pivot piv-000 default_show"><a href="http://search.yahoo.com/search;_ylt=AwrBEiIUEupTSgkANNPUwOZ_?&p=alert%28142%29%3B%28&fr2=piv-games&fr=sfpalert%28142%29%3B%28">Web</a></li><li class="pivot piv-030 default_show"><span class="active">Games</span></li><li class="pivot piv-001 default_hide"><a href="http://images.search.yahoo.com/search/images;_ylt=AwrBEiIUEupTSgkANdPUwOZ_?&p=alert%28142%29%3B%28&fr2=piv-games&fr=sfpalert%28142%29%3B%28">Images</a></li><li class="pivot piv-002 default_hide"><a href="http://video.search.yahoo.com/search/video;_ylt=AwrBEiIUEupTSgkANtPUwOZ_?&p=alert%28142%29%3B%28&fr2=piv-games&fr=sfpalert%28142%29%3B%28">Video</a></li><li class="pivot piv-003 default_hide"><a href="http://news.search.yahoo.com/search;_ylt=AwrBEiIUEupTSgkAN9PUwOZ_?&p=alert%28142%29%3B%28&fr2=piv-games&fr=sfpalert%28142%29%3B%28">News</a></li><li class="pivot piv-006 default_hide"><a href="http://search.yahoo.com/local/s;_ylt=AwrBEiIUEupTSgkAONPUwOZ_?&p=alert%28142%29%3B%28&fr2=piv-games&fr=sfpalert%28142%29%3B%28">Local</a></li><li class="pivot piv-007 default_hide"><a href="http://shopping.search.yahoo.com/search;_ylt=AwrBEiIUEupTSgkAOdPUwOZ_?&p=alert%28142%29%3B%28&fr2=piv-games&fr=sfpalert%28142%29%3B%28">Shopping</a></li><li class="pivot piv-026 default_hide"><a href="http://maps.yahoo.com/search/maps;_ylt=AwrBEiIUEupTSgkAOtPUwOZ_?&p=alert%28142%29%3B%28&fr2=piv-games&fr=sfpalert%28142%29%3B%28">Maps</a></li><li class="pivot piv-031 default_hide"><a href="http://autos.search.yahoo.com/search;_ylt=AwrBEiIUEupTSgkAO9PUwOZ_?&p=alert%28142%29%3B%28&fr2=piv-games&fr=sfpalert%28142%29%3B%28">Autos</a></li><li class="pivot piv-016 default_hide"><a href="http://recipes.search.yahoo.com/search;_ylt=AwrBEiIUEupTSgkAPNPUwOZ_?&p=alert%28142%29%3B%28&fr2=piv-games&fr=sfpalert%28142%29%3B%28">Recipes</a></li><li class="pivot piv-004 default_hide"><a href="http://sports.search.yahoo.com/search;_ylt=AwrBEiIUEupTSgkAPdPUwOZ_?&p=alert%28142%29%3B%28&fr2=piv-games&fr=sfpalert%28142%29%3B%28">Sports</a></li><li class="pivot piv-005 default_hide"><a href="http://finance.search.yahoo.com/search;_ylt=AwrBEiIUEupTSgkAPtPUwOZ_?&p=alert%28142%29%3B%28&fr2=piv-games&fr=sfpalert%28142%29%3B%28">Finance</a></li><li class="pivot piv-010 default_hide"><a href="http://movies.search.yahoo.com/search;_ylt=AwrBEiIUEupTSgkAP9PUwOZ_?&p=alert%28142%29%3B%28&fr2=piv-games&fr=sfpalert%28142%29%3B%28">Movies</a></li><li class="pivot piv-017 default_hide"><a href="http://celebrity.search.yahoo.com/search;_ylt=AwrBEiIUEupTSgkAQNPUwOZ_?&p=alert%28142%29%3B%28&fr2=piv-games&fr=sfpalert%28142%29%3B%28">Celebrity</a></li><li class="pivot piv-021 default_hide"><a href="http://dictionary.search.yahoo.com/search;_ylt=AwrBEiIUEupTSgkAQdPUwOZ_?&p=alert%28142%29%3B%28&fr2=piv-games&fr=sfpalert%28142%29%3B%28">Dictionary</a></li><li class="pivot piv-012 default_hide"><a href="http://dir.search.yahoo.com/search;_ylt=AwrBEiIUEupTSgkAQtPUwOZ_?&p=alert%28142%29%3B%28&fr2=piv-games&fr=sfpalert%28142%29%3B%28">Directory</a></li><li class="toggle more last on"><a href="#">More</a></li><li class="toggle less last"><a href="#">Less</a></li></ul></div></div><div id="results"><style type="text/css">.sc cite{color:#ABAEB7;font-size:85%}.sc .sc-url{color:#1E7D83;font-weight:bold}.sc .timestamp{color:#ABAEB7}.sc .sc-url a{color:#8284cc}.sc .sc-links li{display:inline;padding:0 8px;line-height:1.5em}.sc .sc-links .fst{border-left:none;padding-left:0}.sc .sc-ft{clear:both}.zrp,.zrpmsg{font-size:16px;color:#5f5f5f;padding:0;margin-left:10px;margin-right:10px}.zrpmsg strong{color:#3f3f3f}.zrpmsg{line-height:20px;word-wrap:break-word;margin-bottom:27px}.zrp{padding-bottom:20px}.zrp.help{border:1px solid #ccc;border-left:0;border-right:0;margin:1em 11px;padding:5px;text-align:center}.zrp ul{margin-top:10px;padding-left:38px}.zrp li{font-size:13px;line-height:17px;list-style-type:disc}.dym{padding-left:0}.dym i{font-style:italic;font-weight:bold}</style><div id="cols"><div id="left"><div id="main"><p class="msg zrpmsg">We did not find results for: <strong>{{.In}}</strong>. Try the suggestions below or type a new query above.</p><div class="zrp"><p>Suggestions:</p><ul><li>Check your spelling.</li><li>Try more general words.</li><li>Try different words that mean the same thing.</li><li id="ans_tip">Try asking a question on <a href="http://answers.yahoo.com/;_ylt=AwrBEiIUEupTSgkAQ9PUwOZ_">Yahoo Answers</a></li><li id="hlp_tip">For helpful tips on searching, visit the <a href="http://help.yahoo.com/l/us/yahoo/search/basics/;_ylt=AwrBEiIUEupTSgkARNPUwOZ_">Yahoo Search Help Center</a>.</li></ul></div></div></div></div></div><div class="bdc"><div id="ft" role="contentinfo"><ul><li class="copyright">Yahoo</li><li><a href="http://help.yahoo.com/l/us/yahoo/search/;_ylt=AwrBEiIUEupTSgkARdPUwOZ_">Help</a></li><li><a href="http://ri.search.yahoo.com/_ylt=AwrBEiIUEupTSgkARtPUwOZ_/RV=2/RE=1407877781/RO=10/RU=http%3a%2f%2finfo.yahoo.com%2fprivacy%2fus%2fyahoo%2fsearch%2fdetails.html/RK=0/RS=gXeeMdTeBWHRl0gE6TJiHxsU_sU-">Privacy</a></li><li><a href="http://ri.search.yahoo.com/_ylt=AwrBEiIUEupTSgkAR9PUwOZ_/RV=2/RE=1407877781/RO=10/RU=http%3a%2f%2finfo.yahoo.com%2flegal%2fus%2fyahoo%2futos%2futos-173.html/RK=0/RS=Ij1c6iyYu5xVFW9lV1JJfnh_m.4-">Terms</a></li><li><a href="http://ri.search.yahoo.com/_ylt=AwrBEiIUEupTSgkASNPUwOZ_/RV=2/RE=1407877781/RO=10/RU=http%3a%2f%2fadvertising.yahoo.com%2farticle%2fsearch-advertising.html/RK=0/RS=zjWOrHwkS9hNxaz2sl5Uh7NVIjU-">Advertise</a></li></ul></div></div></div></div><!-- SpaceID=2145829076 loc=FOOT9 noad --><!-- fac-gd2-noad --><!-- gd2-status-2 --><!--QYZ CMS_NONE_AVAIL,,98.139.227.124;;FOOT9;2145829076;2;--><script>YUI_config={"spaceid":"2145829076","pvid":"qgzECjk4LjGYwWQxU4R22Ad7OTguMVPqEhT_wuo4","beacon":"http:\/\/games.search.yahoo.com\/beacon\/p.gif","testid":"","fetchCSS":true};(function(){var e=window.location,d,b;function c(f){return decodeURIComponent(f.replace(/\+/g," "))}function a(j){var h=j.match(/([^\?#&]+)=([^#&]*)/g)||[],l={},g,f,k;for(g=0,f=h.length;g<f;++g){k=h[g].split("=");l[c(k[0])]=c(k[1])}return l}if(window.navigator&&window.navigator.userAgent.match(/Gecko\//)){d=/#.*$/.exec(e.href);d=d&&d[0]?d[0]:""}else{d=e.hash}b=a(d);if(b.sd){document.getElementById("yschsp").value=b.sd}else{if(b._sd){document.getElementById("yschsp").value=""}}})();(function(){YUI={Env:{mods:{},add:function(n,m,l,d){if(n&&n.addEventListener){n.addEventListener(m,l,d)}else{if(n&&n.attachEvent){n.attachEvent("on"+m,l)}}},remove:function(o,n,m,d){if(o&&o.removeEventListener){try{o.removeEventListener(n,m,d)}catch(l){}}else{if(o&&o.detachEvent){o.detachEvent("on"+n,m)}}}},add:function(l,n,d,m){YUI.Env.mods[l]={name:l,fn:n,version:d,details:m||{}}}};Y={_pending:[],use:function(){Y._pending.push(arguments)},Search:{}};var i=window,g=document,k=YUI.Env.add,f=YUI.Env.remove,b=(function(){var d=[];function l(){setTimeout(function(){var n=0,m=d.length;for(;n<m;n++){d[n]()}f(i,"load",l)},0)}k(i,"load",l);return{add:function(m){d.push(m)}}}()),a=(function(){var d=navigator.userAgent.match(/MSIE\s([^;]*)/);if(d){return parseFloat(d[1])}return 0}());function c(d){return d.replace(/^\s+|\s+$/g,"")}function e(m,d){var l=new RegExp("(\\s|^)"+d+"(\\s|$)");return m.className.match(l)}function j(m,d){var l=new RegExp("(\\s|^)"+d+"(\\s|$)");m.className=c(m.className.replace(l," "))}function h(l){var d=g.getElementById(l);if(d){d.reset()}}Y.Search.Loader=(function(){var l=[],m=false;function o(q,p){var s=g.createElement(q),r,t;for(r in p){if(p.hasOwnProperty(r)){t=p[r];s.setAttribute(r,t)}}return s}function d(){var r=0,p=l.length,s,t,q=g.getElementsByTagName("head")[0];for(;r<p;r++){s=l[r];if(s.type==="css"){t=o("link",{href:s.url,rel:"stylesheet",type:"text/css"})}else{if(s.type==="js"){t=o("script",{src:s.url})}else{continue}}q.appendChild(t)}m=true;l=[]}function n(){var r=arguments[0],s=Array.prototype.slice.call(arguments,1),q=0,p=s.length;for(;q<p;q++){l.push({type:r,url:s[q]})}if(m){d()}}b.add(d);return{js:function(){var p=Array.prototype.slice.call(arguments);n.apply(null,["js"].concat(p))},css:function(){var p=Array.prototype.slice.call(arguments);n.apply(null,["css"].concat(p))}}}());(function(){var o=0;function n(){if(--o===0&&typeof rt_AddTime==="function"){rt_AddTime("t2")}if(o===0&&typeof T!=="undefined"){T.stamp("img")}}function l(){var q=this,p=q.parentNode.parentNode,y,t,r,z,v,u,s;n();if(q.getAttribute("allowResize")==="true"||e(q,"sm-thumb")){j(p,"sm-hide");if(a&&e(p,"sm-media")){y=p.offsetWidth;t=p.offsetHeight;r=q.width;z=q.height;v=Math.max(r/y,z/t);if(v&&r&&z){q.style.width=(r/v)+"px";q.style.height=(z/v)+"px"}}}if(e(q,"has-default")){u=q.parentNode.childNodes;for(var s=0;s<u.length;s++){if(e(u[s],"default-thumb")){u[s].style.display="none";break}}q.style.display="block"}}function m(){var p=this.parentNode.parentNode,q;n();this.style.display="none";if(e(p,"imagedd-item")){q=p.parentNode;q.removeChild(p)}else{if(e(p,"ugc-thumb")){var r=p.parentNode;if(r&&r.parentNode&&e(r.parentNode,"thumb")){r.parentNode.className="res";r.removeChild(p)}}}}function d(){var p=g.images,q,r,s;for(q=0;q<p.length;q++){r=p[q];s=r.getAttribute("data-src")||r.getAttribute("__src")||r.getAttribute("_src");if(s){o++;r.onload=l;r.onerror=m;r.setAttribute("src",s);r.removeAttribute("data-src");r.removeAttribute("__src");r.removeAttribute("_src");j(r,"hidden")}}}b.add(d)}());b.add(function(){var l=g.getElementById("yschsp"),d=/(^|\s)sd(\s|$)/;if(l&&d.test(l.parentNode.className)){return}if(a&&(!l||!l.getAttribute("dirty"))){h("sf");h("sB")}});(function(){var l=g.getElementById("web"),m=(l)?l.getElementsByTagName("a"):[],p=/(?:^|\s+)yschttl(?:\s+|$)/,n=m.length,q,d=(function(){if(a&&a<7){return function(v,t){var u=new RegExp("^<a.*\\s"+t+'="([^"]*)"',"i"),s=u.exec(v.outerHTML);return s?s[1]:null}}else{return function(t,s){return t.getAttribute(s)}}}());function r(s){var w=s||i.event,u=w.target||w.srcElement,v;while(u){if(u.tagName&&u.tagName.toLowerCase()==="a"&&u.getAttribute("dirtyhref")){v=d(u,"dirtyhref");if(v){u.setAttribute("href",v)}break}u=u.parentNode}}k(g,"mousedown",r);k(g,"click",r);function o(w){var t,x,s,v,u;t=d(w,"href");if(!t){return}x=d(w,"ourl");if(!x){s=t.indexOf("/**");if(s<0){return}x=decodeURIComponent(t.substr(s+3))}v=w.cloneNode(true);v.setAttribute("href",x);v.setAttribute("dirtyhref",t);if(a){u=v.innerHTML;t=d(v,"dirtyhref");v.setAttribute("href",t);if(v.innerHTML!==u){return}v.setAttribute("href",x)}w.parentNode.replaceChild(v,w)}while(n--){q=m[n];if(p.test(q.className)){o(q)}}}())}());YUI.add("init-zrp", function(Y) {Y.namespace("Vertical.Zrp");Y.Vertical.Zrp.init = function() {return {isZrp: true} }});YUI.add("vertical-zrp",function(a){a.namespace("Vertical.Zrp");a.Vertical.Zrp.postProcessing=function(d){var b=document.getElementById("sbx-bot"),c=document.getElementById("results");if(b){b.style.visibility=d.isZrp?"hidden":"visible"}}},"3.3.0",{requires:["init-zrp"]});Y.use("vertical-zrp",function(b){if(b.Vertical.Zrp.init){var a=b.Vertical.Zrp.init();if(a){b.Vertical.Zrp.postProcessing(a)}}});Y.use("srp",function(){Y.Search.SRP.init({"enable_sidebar_collapse":"","pvid":"qgzECjk4LjGYwWQxU4R22Ad7OTguMVPqEhT_wuo4","url_img_progress":"http:\/\/l.yimg.com\/pv\/i\/us\/sch\/gr4\/sp-progress2.gif","tts":null},{"aria_loading_results":"Retrieving search results. Please wait.","aria_results_loaded":"New search results have been retrieved. Press control shift and down arrow key to jump to the first search result. Press control shift and up arrow key to jump back to the search box.","common.expando.playvideo":"Play Video","common.expando.closevideo":"Close Video","common.results.error":"Sorry, there was a problem retrieving search results. Please try again.","common.results.loading":"Loading results...","srp.title":"%q - Yahoo Games Search Results","common.more":"More","common.less":"Less"});});Y.use("search-assist-client", function() {new Y.SEARCHASSIST.CLIENT({"property":"games","searchBox":"#yschsp","hostNodeToAttach":"#sbq-wrap","maxSuggests":10,"anyKeySearch":true,"backspaceBehaviorNative":true,"enableTrending":false,"autoAlign":false,"cancelButton":true,"tcpPreConnect":false,"quietMode":false,"ariaPlug":true,"stream":false,"reverseHighlight":true,"lang":"en-US","device":{"tablet":{"skin":"desktop"}},"ult":{"spaceId":"2145829076","csrcpvid":"qgzECjk4LjGYwWQxU4R22Ad7OTguMVPqEhT_wuo4","vtestid":""},"extraUltParams":{"fr":"sfp{{.In}}","n_rslt":0},"yltCustom":"_ylt=AwrBEiIUEupTSgkABNPUwOZ_"});});Y.use('loader','srp',function(){Y.config=Y.mix(Y.config,{bootstrap:true,combine:true,comboBase:'http://l.yimg.com/zz/combo?',ignore:['skin-sam-tabview','gallery-jsonp'],root:'yui:3.10.0/build/',groups:{a:{combine:true,comboBase:'http://l.yimg.com/zz/combo?',ext:false,root:'pv/',modules:{"srp-universal-header-3":{"path":"lib\/s8\/vertical\/srp-universal-header-3_201305050738.js","requires":[]}}}}},true,null,0,true);Y.Search.use('srp-universal-header-3','node-focusmanager','base','io','json','async-queue','cookie','event-custom','jsonp','jsonp-url','event','substitute','event-resize','event-hover','event-mouseenter','event-delegate','querystring-stringify','oop','classnamemanager','lang/datatype-date','intl',function(){(function(){Y.Search.UniversalHeader.init({"js":"http:\/\/l.yimg.com\/zz\/combo?kx\/yucs\/uh3\/uh\/1067\/js\/uh-min.js\u0026kx\/yucs\/uh3\/uh\/js\/102\/gallery-jsonp-min.js\u0026kx\/yucs\/uh3\/uh\/js\/1021\/menu_utils_v3-min.js\u0026kx\/yucs\/uh3\/uh\/js\/834\/localeDateFormat-min.js\u0026kx\/yucs\/uh3\/uh\/js\/872\/timestamp_library_v2-min.js\u0026kx\/yucs\/uh3\/uh\/js\/829\/logo_debug-min.js\u0026kx\/yucs\/uh_3_0_2\/switch_theme\/4\/js\/switch_theme-min.js\u0026kx\/yucs\/uhc\/meta\/16\/js\/meta-min.js\u0026kx\/yucs\/uh_common\/beacon\/18\/js\/beacon-min.js\u0026kx\/ucs\/comet\/js\/77\/cometd-yui3-min.js\u0026kx\/ucs\/comet\/js\/77\/conn-min.js\u0026kx\/ucs\/comet\/js\/77\/dark-test-min.js\u0026kx\/yucs\/uh3\/disclaimer\/191\/js\/disclaimer_seed-min.js\u0026kx\/yucs\/uh3\/uh3_top_bar\/js\/274\/top_bar_v3-min.js\u0026kx\/yucs\/uh3\/profile\/js\/62\/profile-min.js\u0026kx\/yucs\/uh3\/profile\/js\/82\/usermenu_v3-min.js\u0026kx\/ucs\/common\/js\/135\/jsonp-super-cached-min.js\u0026kx\/yucs\/uh3\/avatar\/js\/25\/avatar-min.js\u0026kx\/yucs\/uh3\/mail_link\/js\/89\/mailcount_ssl-min.js\u0026kx\/yucs\/uh3\/help\/js\/55\/help_menu_v3-min.js\u0026kx\/ucs\/common\/js\/131\/jsonp-cached-min.js\u0026kx\/yucs\/uh3\/breakingnews\/js\/11\/breaking_news-min.js","sprite":"http:\/\/l.yimg.com\/kx\/yucs\/uh3\/uh\/images\/387\/uh_sprite.png","options":[[{"menuText":"Preferences","actionType":"link","url":"http:\/\/search.yahoo.com\/preferences\/preferences?pref_done=http%3A%2F%2Fgames.search.yahoo.com%2Fsearch%3Fei%3DUTF-8%26p%3Dalert%2528142%2529%253B%2528%26fr%3Dsfpalert%2528142%2529%253B%2528\u0026.bcrumb=C4rlJwqEoeG\u0026fr=sfpalert%28142%29%3B%28","target":"_top"}],[{"menuText":"Advertising Programs","actionType":"link","url":"http:\/\/advertising.yahoo.com\/","target":"_top"},{"menuText":"About This Page","actionType":"link","url":"http:\/\/help.yahoo.com\/l\/us\/yahoo\/search\/basics\/basics-23.html","target":"_top"}]]});}());});});Y.Search.Loader.js('http://l.yimg.com/pv/lib/s8/vertical/us_srp_purple_games_1_201404292033.js','http://l.yimg.com/pv/lib/s8/vertical/us_srp_purple_games_2_201407092035.js','http://l.yimg.com/pv/lib/s8/vertical/srp_bucketbar_yui3_201202200327.js');</script></body></html><script>(function(c){var e="https://",a=c&&c.JSON,f="ypcdb",g=document,d=["yahoo.com","flickr.com","rivals.com","yahoo.net","yimg.com"],b;function i(l,o,n,m){var k,p;try{k=new Date();k.setTime(k.getTime()+m*1000);g.cookie=[l,"=",encodeURIComponent(o),"; domain=",n,"; path=/; max-age=",m,"; expires=",k.toUTCString()].join("")}catch(p){}}function h(l){var k,m;try{k=new Image();k.onerror=k.onload=function(){k.onerror=k.onload=null;k=null};k.src=l}catch(m){}}function j(u,A,n,y){var w=0,v,z,x,s,t,p,m,r,l,o,k,q;try{b=location}catch(r){b=null}try{if(a){k=a.parse(y)}else{q=new Function("return "+y);k=q()}}catch(r){k=null}try{v=b.hostname;z=b.protocol;if(z){z+="//"}}catch(r){v=z=""}if(!v){try{x=g.URL||b.href||"";s=x.match(/^((http[s]?)\:[\/]+)?([^:\/\s]+|[\:\dabcdef\.]+)/i);if(s&&s[1]&&s[3]){z=s[1]||"";v=s[3]||""}}catch(r){z=v=""}}if(!v||!k||!z||!A){return}while(l=d[w++]){t=l.replace(/\./g,"\\.");p=new RegExp("(\\.)+"+t+"$");if(v==l||v.search(p)!=-1){o=l;break}}if(!o){return}if(z===e){A=n}w=0;while(m=A[w++]){h(z+m+k[m.substr(1+m.lastIndexOf("="))])}i(f,u,o,86400)}j('37fec0f993e7cac897a374c26ed69eee',['ad.yieldmanager.com/csync?ver=2.1','csync.yahooapis.com/csync?ver=2.1','u2sb.interclick.com/beacon.gif?ver=2.1'],['ad.yieldmanager.com/csync?ver=2.1','cdnk.interclick.com/beacon.gif?ver=2.1','csync.yahooapis.com/csync?ver=2.1'],'{"2.1":"&id=23351&value=9uto4659b8gzb%26o%3d4%26q%3dp1DhmY1cLSBKWSYLyEPEqN30E6L-%26f%3de3%26v%3dIrQDW7cWZmKFOgkLxNgV&optout=h%3d1%26b%3d0&timeout=1407848981&sig=13rgogtar"}')})(window);
</script>
<!-- fe05.vertical.search.bf1.yahoo.com uncompressed/chunked Tue Aug 12 13:09:40 UTC 2014 -->
`,
"xss/reflect/js4_dq": `{{ define "title" }}JavaScript and double-quote injection in JS block (js.4){{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
<script language="javascript">
var f = {
date: "",
week: "1",
bad: "{{.In}}",
phase: "2",
};
</script>
Hello!<BR>
This test demonstrates exploitable Injection due to unsafe handling of double quotes into a Javascript block.
</body></html>
`,
"xss/reflect/js4_dq_fp": `{{ define "title" }}JavaScript and double-quote injection in JS block (js.4){{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
<script language="javascript">
var f = {
date: "",
week: "1",
good: "{{.In}}",
phase: "2",
};
</script>
Hello!<BR>
This test demonstrates a false positive related to injection of double quotes into a Javascript block. It is a false positive since double quotes and backslashes are escaped.
</body></html>
`,
"xss/reflect/js6_bug7208690": `<!doctype html>
<html xmlns="http://www.w3.org/1999/xhtml" xmlns:og="http://opengraphprotocol.org/schema/" xmlns:fb="http://www.facebook.com/2008/fbml" xml:lang="en" lang="en" id="Stencil">
<head>
<meta property="og:description" content="Yahoo首頁 'qwe'};alert(142);(' search results"/>
<meta property="og:image" content="https://s.yimg.com/pj/contact/201410242217/resource/img/og-help-logo.png "/>
<meta name="robots" content="noindex" />
<!-- NEW CSS & JS -->
<!-- CSS -->
<link rel="stylesheet" type="text/css" href="https://s.yimg.com/zz/combo?yui:3.10.1/cssgrids/cssgrids-min.css&yui:3.10.1/cssgrids-responsive/cssgrids-responsive-min.css&yui:3.10.1/cssreset/cssreset-min.css&yui:3.10.1/cssfonts/cssfonts-min.css&yui:3.10.1/cssbutton/cssbutton-min.css&yui:3.10.1/cssgrids-base/cssgrids-base-min.css&yui:3.10.1/cssgrids-units/cssgrids-units-min.css&yui:3.10.1/cssreset-context/cssreset-context-min.css">
<!--[if gte IE 9]>
<style type="text/css">
.gradient { filter: none; }
</style>
<![endif]-->
<link rel="stylesheet" type="text/css" href="https://s.yimg.com/pj/contact/201410242217/resource/css/styles.css"/>
<!--[if IE]>
<link rel="stylesheet" type="text/css" href="https://s.yimg.com/pj/contact/201410242217/resource/css/yhlp_ie.css" />
<![endif]-->
<!--[if IE 6]>
<link rel="stylesheet" type="text/css" href="https://s.yimg.com/pj/contact/201410242217/resource/css/yhlp_ie6.css" />
<![endif]-->
<script src="https://s.yimg.com/pj/contact/201410242217/resource/js/inq_min.js" type="text/javascript"></script>
<script src="https://s.yimg.com/pj/contact/201410242217/resource/js/jquery-ui.min.js" type="text/javascript"></script>
<script type="text/javascript" src="https://s.yimg.com/zz/combo?yui:2.7.0/build/yahoo-dom-event/yahoo-dom-event.js&yui:2.7.0/build/connection/connection-min.js&yui:2.7.0/build/datasource/datasource-min.js&yui:2.7.0/build/autocomplete/autocomplete-min.js&yui:2.7.0/build/container/container-min.js&yui:2.7.0/build/menu/menu-min.js&yui:2.7.0/build/get/get-min.js"></script>
<script type="text/javascript">
if (top.location!= self.location) {
top.location = self.location.href;
}
</script>
<!-- fix to defect 4598149 - YWA: Case Response/Closure Pages Report Instrumentation-->
<title>Yahoo首頁 說明 搜尋結果</title>
<script language="javascript" type="text/javascript">
if((navigator.userAgent.match(/iPhone/i)) || (navigator.userAgent.match(/iPod/i)) || (navigator.userAgent.match(/iPad/i))) {
document.write('<link rel=\"stylesheet\" href=\"https://s.yimg.com/pj/contact/201410242217/resource/css/iphone-sprite.css\" />');
}
</script>
</head>
<body id="doc">
<script type="text/javascript" src="https://s.yimg.com/mi/ywa.js"></script>
<div id="hd">
<link type='text/css' rel='stylesheet' href='https://s.yimg.com/zz/combo?kx/yucs/uh_common/meta/3/css/meta-min.css&kx/yucs/uh3s/uh/270/css/uh-center-aligned-min.css' /><style type="text/css">@font-face{font-family:Yglyphs-common;src:url(https://s.yimg.com/os/mit/ape/font/c023217/fonts/Yglyphs-common.eot);font-weight:400;font-style:normal}@font-face{font-family:Yglyphs-common;src:url(https://s.yimg.com/os/mit/ape/font/c023217/fonts/Yglyphs-common.eot);src:url(https://s.yimg.com/os/mit/ape/font/c023217/fonts/Yglyphs-common.eot?#iefix) format('embedded-opentype'),url(https://s.yimg.com/os/mit/ape/font/c023217/fonts/Yglyphs-common.woff) format('woff'),url(https://s.yimg.com/os/fontserver/0.1.8/Yglyphs-common.ttf) format('truetype'),url(https://s.yimg.com/os/mit/ape/font/c023217/fonts/Yglyphs-common.svg?#Yglyphs-common) format('svg');font-weight:400;font-style:normal}.Ycon{font-family:Yglyphs-common}.YconArrowDown{*zoom:expression( this.runtimeStyle['zoom'] = '1', this.innerHTML = '⋁')}.YconArrowDown:before{content:'\22c1'}.YconArrowEnd{*zoom:expression( this.runtimeStyle['zoom'] = '1', this.innerHTML = '>')}.YconArrowEnd:before{content:'\3e'}.YconArrowOpenEnd{*zoom:expression( this.runtimeStyle['zoom'] = '1', this.innerHTML = '⟩')}.YconArrowOpenEnd:before{content:'\27e9'}.YconArrowOpenStart{*zoom:expression( this.runtimeStyle['zoom'] = '1', this.innerHTML = '⟨')}.YconArrowOpenStart:before{content:'\27e8'}.YconArrowStart{*zoom:expression( this.runtimeStyle['zoom'] = '1', this.innerHTML = '<')}.YconArrowStart:before{content:'\3c'}.YconArrowUp{*zoom:expression( this.runtimeStyle['zoom'] = '1', this.innerHTML = '⋀')}.YconArrowUp:before{content:'\22c0'}.YconCircleSolid{*zoom:expression( this.runtimeStyle['zoom'] = '1', this.innerHTML = '●')}.YconCircleSolid:before{content:'\25cf'}.YconEllipsis{*zoom:expression( this.runtimeStyle['zoom'] = '1', this.innerHTML = '…')}.YconEllipsis:before{content:'\2026'}.YconHome{*zoom:expression( this.runtimeStyle['zoom'] = '1', this.innerHTML = '⌂')}.YconHome:before{content:'\2302'}.YconLogoYahoo{*zoom:expression( this.runtimeStyle['zoom'] = '1', this.innerHTML = 'Y')}.YconLogoYahoo:before{content:'\59'}.YconMail{*zoom:expression( this.runtimeStyle['zoom'] = '1', this.innerHTML = '✉')}.YconMail:before{content:'\2709'}.YconMenu{*zoom:expression( this.runtimeStyle['zoom'] = '1', this.innerHTML = '≡')}.YconMenu:before{content:'\2261'}.YconProfile{*zoom:expression( this.runtimeStyle['zoom'] = '1', this.innerHTML = '👤')}.YconProfile:before{content:'\1f464'}.YconSearch{*zoom:expression( this.runtimeStyle['zoom'] = '1', this.innerHTML = '🔍')}.YconSearch:before{content:'\1f50d'}.YconSettings{*zoom:expression( this.runtimeStyle['zoom'] = '1', this.innerHTML = '⚙')}.YconSettings:before{content:'\2699'}</style><link type="text/css" rel="stylesheet" href="https://s.yimg.com/os/stencil/3.0.1/desktop/styles-ltr.css" /><!-- meta --><div id="yucs-meta" data-authstate="signedin" data-cobrand="standard" data-crumb="ng44xSC03R8" data-mc-crumb="1JKCnxvQs5g" data-gta="hQ/qBOPmYSd" data-device="desktop" data-experience="uh304" data-firstname="Dmitri" data-flight="1416825058" data-forcecobrand="standard" data-guid="QZ5YYJ6AQMXCAACESMI33HWAHY" data-host="help.yahoo.com" data-https="1" data-languagetag="zh-tw" data-property="help" data-protocol="https" data-shortfirstname="Dmitri" data-shortuserid="dsavints_laptop" data-status="active" data-spaceid="1182477571" data-test_id="" data-userid="dsavints_laptop" data-stickyheader="true" data-headercollapse='' ></div><!-- /meta --><div id="UH" class="Row yucs yucs-cb-standard StencilRoot yucs-zh-tw yucs-help " role="banner" data-protocol='https' data-property="help" data-spaceid="1182477571" data-stencil="true"><style>#yucs-profile {padding-left: 0!important;}
.yucs-trigger .Icon,
.yucs-trigger b {
line-height: 22px !important;
height: 22px !important;
}
.yucs-trigger .Icon {
font-size: 22px !important;
}
.yucs-trigger .AlertBadge,
.yucs-trigger .MailBadge {
line-height: 13px !important;
height: 13px !important;
}
.yucs-mail_link_att.yucs-property-frontpage #yucs-mail_link_id i.Icon {
text-indent: -9999em;
}
/* mail badge */
.AlertBadge,
.MailBadge {
padding: 3px 6px 2px 6px;
min-width: 6px;
max-width: 16px;
margin-left: -13px;
}
/* search box */
#UHSearchBox {
border: 1px solid #ceced6 !important;
border-radius: 2px;
height: 34px;
*height: 18px;
}
#UHSearchBox:focus {
border: 1px solid #7590f5 !important;
box-shadow: none !important;
}
/* buttons */
#UHSearchWeb, #UHSearchProperty {
height: 32px !important;
line-height: 34px !important;
-webkit-appearance: none;
}
#Stencil #UHSearchWeb,
#Stencil #UHSearchProperty {
height: 30px;
box-sizing: content-box;
min-width: 92px;
padding-left: 14px;
padding-right: 14px;
*width: 100%;
}
.DarkTheme .yucs-trigger .Ycon {
color: #fff;
}</style><div id="yucs-disclaimer" class="yucs-disclaimer yucs-activate yucs-hide yucs-property-help yucs-fcb- " data-dsstext="Want a better search experience? {dssLink}Set your Search to Yahoo{linkEnd}" data-dsstext-mobile="Search Less, Find More" data-dsstext-mobile-ok="OK" data-dsstext-mobile-set-search="Set Search to Yahoo" data-ylt-link="https://search.yahoo.com/searchset;_ylt=As4OX90RZ7Km4DbAShs3FCoDLXtG?pn=" data-ylt-dssbarclose="/;_ylt=Aor91p7DMLcAFG2dLHQod4YDLXtG" data-ylt-dssbaropen="/;_ylt=AkvmNXm2oZGzDCoZL8ao6YsDLXtG" data-linktarget="_top" data-lang="zh-tw" data-property="help" data-device="Desktop" data-close-txt="關閉此視窗" data-maybelater-txt = "Maybe Later" data-killswitch = "0" data-host="help.yahoo.com" data-spaceid="1182477571" data-pn="TwSIZs0J/Dv" data-pn-en-ca-mobile="GCBDseCIXO2" data-pn-de-de-mobile="4aotfa78uHE" data-pn-es-es-mobile="WPfkt.P/TO9" data-pn-fr-fr-mobile="kVAkDBrkctx" data-pn-en-in-mobile="ZD0s45a/IB." data-pn-it-it-mobile="okEK3KDjU4n" data-pn-en-us-mobile="TwSIZs0J/Dv" data-pn-en-sg-mobile="WOQYS4UvhMc" data-pn-en-gb-mobile="X/7NYJwiSZt" data-pn-en-us-tablet="MJQXiAEJpBH" data-news-search-yahoo-com="UjcDe4gGpKm" data-answers-search-yahoo-com="ce.X5g0kWZs" data-finance-search-yahoo-com="/fojH5HAbP7" data-images-search-yahoo-com="5JDhD8JASyl" data-video-search-yahoo-com="yMQ2BT.SIuo" data-sports-search-yahoo-com="4orVDWNT4ce" data-shopping-search-yahoo-com="HZLO0WdIZtK" data-shopping-yahoo-com="HZLO0WdIZtK" data-us-qa-trunk-news-search-yahoo-com ="UjcDe4gGpKm" data-dss=""></div> <div id="masterNav" class='yucs-ps' data-ylk="rspns:nav;act:click;t1:a1;t2:uh-d;t3:tb;t5:pty;slk:pty;elm:itm;elmt:pty;itc:0;"><ul id="Eyebrow" class="Mb-12 Lh-17 NavLinks Reset" role="navigation"><li id="yucs-top-home" class="Grid-U Mend-18 Pstart-10"><a href="https://tw.yahoo.com/" data-ylk="t5:home;slk:home;"><i id="my-home" class="Fl-start Mend-6 Ycon YconHome Fz-s Mt-neg-1"></i><b class="Mstart-neg-1">首頁</b></a></li><li id="yucs-top-mail" class="Grid-U Mend-18 Pstart-14"><a href="https://tw.mail.yahoo.com/" data-ylk="t5:mail;slk:mail;">信箱</a></li><li id="yucs-top-news" class="Grid-U Mend-18 Pstart-14"><a href="http://tw.news.yahoo.com/" data-ylk="t5:news;slk:news;">新聞</a></li><li id="yucs-top-finance" class="Grid-U Mend-18 Pstart-14"><a href="http://tw.finance.yahoo.com/" data-ylk="t5:finance;slk:finance;">股市</a></li><li id="yucs-top-weather" class="Grid-U Mend-18 Pstart-14"><a href="http://tw.weather.yahoo.com/" data-ylk="t5:weather;slk:weather;">氣象</a></li><li id="yucs-top-sports" class="Grid-U Mend-18 Pstart-14"><a href="http://tw.sports.yahoo.com/" data-ylk="t5:sports;slk:sports;">運動</a></li><li id="yucs-top-screen" class="Grid-U Mend-18 Pstart-14"><a href="https://tw.screen.yahoo.com/" data-ylk="t5:screen;slk:screen;">影音</a></li><li id="yucs-top-celebrity" class="Grid-U Mend-18 Pstart-14"><a href="https://tw.celebrity.yahoo.com" data-ylk="t5:celebrity;slk:celebrity;">名人娛樂</a></li><li id="yucs-top-flickr" class="Grid-U Mend-18 Pstart-14"><a href="https://www.flickr.com/" data-ylk="t5:flickr;slk:flickr;">Flickr</a></li><li id="yucs-top-buy" class="Grid-U Mend-18 Pstart-14"><a href="http://tw.buy.yahoo.com/" data-ylk="t5:buy;slk:buy;">購物中心</a></li><li id="yucs-top-mall" class="Grid-U Mend-18 Pstart-14"><a href="http://tw.mall.yahoo.com/" data-ylk="t5:mall;slk:mall;">商城</a></li><li id="yucs-top-bid" class="Grid-U Mend-18 Pstart-14"><a href="http://tw.bid.yahoo.com/" data-ylk="t5:bid;slk:bid;">拍賣</a></li><li id='yucs-more' class='Grid-U Pstart-10 Pend-6 Pos-r Z-1 MoreDropDown yucs-menu yucs-more-activate' data-ylt=""><a href="http://tw.everything.yahoo.com/" role="button" id='yucs-more-link' class='Pos-r Z-1 yucs-leavable rapidnofollow MouseOver Fl-start' data-plugin="toggle" data-toggle='[{"target":"#yucs-top-menu .MoreDropDown-Box","click":{"toggle":{"classnames":"D-n"}}}, {"target-ancestor":".MoreDropDown","click":{"toggle":{"classnames":"MoreDropDown-on"}}}]' data-ylk="rspns:op;t5:more;slk:more;elmt:mu;itc:1;" style="padding:0;"><b class="Fl-start Lh-17 MouseOver-TextDecoration">更多</b><i class="Fz-m Va-m Lh-1 Mstart-2 Ycon YconArrowDown Ta-c NoTextDecoration Fl-end Mt-4"></i></a><div id='yucs-top-menu'><div class="Pos-a Start-0 T-100 MoreDropDown-Box D-n yui3-menu-content"><iframe frameborder="0" class="Pos-a Start-0 W-100 H-100 Bd-0" src="https://s.yimg.com/os/mit/media/m/base/images/transparent-95031.png"></iframe><ul class="yucs-leavable Pos-r Px-10"><li id='yucs-top-answers'><a class="D-b" href="https://tw.knowledge.yahoo.com/" data-ylk="t5:answers;slk:answers;t4:pty-mu;">知識+</a></li><li id='yucs-top-autos'><a class="D-b" href="http://tw.autos.yahoo.com/" data-ylk="t5:autos;slk:autos;t4:pty-mu;">汽車機車</a></li><li id='yucs-top-movies'><a class="D-b" href="http://tw.movies.yahoo.com/" data-ylk="t5:movies;slk:movies;t4:pty-mu;">電影</a></li><li id='yucs-top-dictionary'><a class="D-b" href="http://tw.dictionary.yahoo.com/" data-ylk="t5:dictionary;slk:dictionary;t4:pty-mu;">字典</a></li><li id='yucs-top-games'><a class="D-b" href="http://tw.games.yahoo.com/" data-ylk="t5:games;slk:games;t4:pty-mu;">遊戲</a></li><li id='yucs-top-travel'><a class="D-b" href="http://tw.travel.yahoo.com/" data-ylk="t5:travel;slk:travel;t4:pty-mu;">旅遊</a></li><li id='yucs-top-money'><a class="D-b" href="http://tw.money.yahoo.com/" data-ylk="t5:money;slk:money;t4:pty-mu;">理財</a></li><li id='yucs-top-homes'><a class="D-b" href="http://tw.house.yahoo.com/" data-ylk="t5:homes;slk:homes;t4:pty-mu;">房地產</a></li><li id='yucs-top-fashion'><a class="D-b" href="https://tw.fashion.yahoo.com/" data-ylk="t5:fashion;slk:fashion;t4:pty-mu;">時尚美妝</a></li><li id='yucs-top-discount'><a class="D-b" href="http://tw.discount.yahoo.net/" data-ylk="t5:discount;slk:discount;t4:pty-mu;">折扣+</a></li></ul></div></div></li></ul></div> <div id="uhWrapper" class="Ma Z-2 Pos-r" data-ylk="rspns:nav;act:click;t1:a1;t2:uh-d;itc:0;"> <table class="Ma My-0 W-100" role="presentation"> <tr role="presentation"> <td style="width:190px" role="presentation"><style>/** * IE7+ and non-retina display */.YLogoMY { background-repeat: no-repeat; background-image: url(https://s.yimg.com/rz/d/yahoo_help_zh-Hant-TW_s_f_pw_351x40_help.png); _background-image: url(https://s.yimg.com/rz/d/yahoo_help_zh-Hant-TW_s_f_pw_351x40_help.gif); /* IE6 */ width: 162px; }.DarkTheme .YLogoMY { background-position: -351px 0px !important;}/** * For 'retina' display */@media only screen and (-webkit-min-device-pixel-ratio: 2), only screen and ( min--moz-device-pixel-ratio: 2), only screen and ( -o-min-device-pixel-ratio: 2/1), only screen and ( min-device-pixel-ratio: 2), only screen and ( min-resolution: 192dpi), only screen and ( min-resolution: 2dppx) { .YLogoMY { background-image: url(https://s.yimg.com/rz/d/yahoo_help_zh-Hant-TW_s_f_pw_351x40_help_2x.png) !important; background-size: 702px 40px !important; }}</style><a class="YLogoMY Mx-a " data-ylk="slk:logo;t3:logo;t5:logo;elm:img;elmt:logo;" href="https://tw.help.yahoo.com/kb/helpcentral" target="_top" >服務中心</a></td> <td role="presentation"><form id="UHSearch" target="_top" autocomplete="off" data-vfr="uh3_help_vert_gs"data-webaction="https://tw.search.yahoo.com/search" action="https://help.yahoo.com/l/us/yahoo/helpcentral/vsp.html" data-webaction-tar="" data-verticalaction-tar="" method="get"class="Reset UHSearch-Init"><table class="W-100 Reset H-100"> <tbody> <tr> <td class='W-100 Px-0'><input id="UHSearchBox" type="text" class="W-100 Fz-l Fw-200 M-0 P-4 Bdrs-0 Bxsh-n" style="border-color:#7590f5;" name="p" aria-describedby="UHSearchBox" data-ylk="slk:srchinpt-hddn;itc:1;" data-yltvsearch="https://help.yahoo.com/l/us/yahoo/helpcentral/vsp.html" data-yltvsearchsugg="/" data-satype="" data-gosurl="" data-pubid="" data-maxresults="10" data-resize=""> <div id="yucs-satray" class="sa-tray D-n Fz-s FancyBox Bdtrrs-0 Bdtlrs-0 Lh-15 NoLinkColor NoTextDecoration" data-wstext="Search Web for: " data-wsearch="https://tw.search.yahoo.com/search" data-vfr="uh3_help_vert_gs" data-vsearch="https://help.yahoo.com/l/us/yahoo/helpcentral/vsp.html" data-vstext= "Search News for: " > </div></td> <!-- ".Grid' is used here to kill white-space --> <td class="Grid W-10 Whs-nw Pstart-4 Pend-0 Bdcl-s"><style type="text/css">#UHSearchWeb, #UHSearchProperty{ height: 30px; min-width: 120px;} .ua-ie8 #UHSearchWeb, .ua-ie8 #UHSearchProperty, .ua-ie9 #UHSearchWeb, .ua-ie9 #UHSearchProperty{ height: 32px; min-width: 120px;}#UHSearchProperty, .Themable .ThemeReset #UHSearchProperty { background: #400090 !important; border: 0 !important; box-shadow: 0 2px #190130 !important;}</style><input id="UHSearchProperty" class="Grid-U Btn M-0" type="submit" data-vfr="uh3_help_vert_gs"data-vsearch="https://us.lrd.yahoo.com/_ylt=Auiae9i0i8ueCZo2Q_i3M7MDLXtG/SIG=12a1g2oq0/EXP=1418034658/**https%3A//help.yahoo.com/l/us/yahoo/helpcentral/vsp.html"value="搜尋說明" data-ylk="t3:srch;t5:srchvert;slk:srchvert;elm:btn;elmt:srch;tar:;"></td> <td class="Grid W-10 Whs-nw Pstart-4 Pend-0 Bdcl-s"><input id="UHSearchWeb" class="Grid-U Btn M-0 uh-ignore-rapid" type="submit" value="網頁搜尋" data-ylk="t3:srch;t5:srchweb;slk:srchweb;elm:btn;elmt:srch;tar:;"></td> <style type="text/css"> #UHSearchWeb, #UHSearchProperty{ height: 30px; } .ua-ie8 #UHSearchWeb, .ua-ie8 #UHSearchProperty, .ua-ie9 #UHSearchWeb, .ua-ie9 #UHSearchProperty{ height: 32px; } #UHSearchWeb, .Themable .ThemeReset #UHSearchWeb { background: #3775dd; border: 0; box-shadow: 0 2px #21487f; } </style> </tr> </tbody> </table> <input type="hidden" name="type" value="2button" data-ylk="slk:yhstype-hddn;itc:1;"/> <input type="hidden" id="fr" name="fr" data-ylk="slk:frcode-hddn;itc:1;" value="uh3_help_web_gs" /> </form><!-- /#uhSearchForm --></td> <td class="W-1" role="presentation" id="uhNavWrapper"> <ul class="Fl-end Mend-10 Grid Whs-nw My-6"> <li class="Grid-U Pos-r Pstart-4 Mend-20" id="yucs-profile" data-yltmenushown="/;_ylt=AmF.lUU1xaHLxSWo.vrBI8YDLXtG"> <a class="D-ib MouseOver NoTextDecoration yucs-trigger Lh-1"data-plugin='tooltip' data-trigger='mouseenter mouseleave click' data-tooltip='{"target-child":".Ycon","click":{"toggle":{"position":"bl","id":"yucs-profile-panel"}},"mouseenter":{"show":{"mouseover":true,"position":"bl","id":"yucs-profile-panel"}},"mouseleave":{"hide":{"id":"yucs-profile-panel"}}}'href="http://profile.yahoo.com/" target="_top" rel="nofollow" aria-label="社交名片" aria-haspopup="true" role="button" id="yui_3_10_3_1_1375219693637_127" data-ylk="t3:tl-lst;t5:usersigninst;slk:usersigninst;elm:tl;elmt:usr;"> <i class="Va-m W-a yucs-avatar yucs-av-activate yucs-menu_anchor Ycon YconProfile Fz-2xl Lh-1 C-p-blue" style="width: 22px; visibility: hidden;" data-user="Dmitri" data-property="help" data-bucket="1" data-prof="Avatar" data-crumb="ng44xSC03R8" data-guid="QZ5YYJ6AQMXCAACESMI33HWAHY"></i> <b class="Va-m MouseOver-TextDecoration Ell D-ib Lh-17" style="max-width: 86px;" title="您好, Dmitri">Dmitri</b></a><noscript class="yucs-noscript"><span class="Va-m MouseOver-TextDecoration">http://login.yahoo.com/config/login?logout=1&.direct=2&.src=yhelp&.intl=tw&.lang=zh-TW&.done=https://tw.yahoo.com/</span></noscript> <div id="yucs-profile-panel" class="FancyBox Arrow NorthWest Px-10 Mt-10 Pos-a Lh-14 Start-0 Mstart-neg-20 Whs-nw D-n" aria-hidden="true"> <ul class="Pos-r Bleed Mb-0"> <li class="Py-8 Px-16 Bd-b"> <span class="Grid-U Ov-h W-100"> <b class="Dimmed D-b">用的登入身份是:</b><b class="Fw-b D-b Ell C-n">dsavints_laptop</b> </span> </li> </ul> <ul class="Pos-r Bleed My-0 NoLinkColor"> <li class="Py-8 Px-16 Bd-b"> <a class="D-b" href="http://profile.yahoo.com/" target="_top" data-ylk="t3:tl-lst;t4:usr-mu;t5:prfl;slk:prfl;elm:itm;elmt:prfl;">社交名片</a> </li> <li class="Py-8 Px-16"> <a id= "yucs-signout" class="D-b" target="_top" rel="nofollow" href="http://login.yahoo.com/config/login?logout=1&.direct=2&.src=yhelp&.intl=tw&.lang=zh-TW&.done=https://tw.yahoo.com/" data-ylk="t3:tl-lst;t4:usr-mu;t5:usersigno;slk:usersigno;elm:itm;elmt:lgo;">登出</a> </li> </ul></div> </li> <li class="Grid-U Mend-20 Pos-r yucs-mail_link yucs-mailpreview-ancestor" id="yucs-mail"> <a id="yucs-mail_link_id" class="D-ib sp yltasis yucs-fc Pos-r MouseOver NoTextDecoration yucs-menu-link yucs-trigger Lh-1" href="https://tw.mail.yahoo.com/?.intl=tw&.lang=zh-TW" data-plugin='tooltip' data-trigger='mouseenter mouseleave' data-tooltip='{"target-child":".Ycon","mouseenter":{"show":{"mouseover":true,"position":"br","id":"yucs-mail-panel"}},"mouseleave":{"hide":{"id":"yucs-mail-panel"}}}' data-ylk="t3:tl-lst;t5:mailsigninst;slk:mailsigninst;elm:tl;elmt:mail;"> <b class="MailBadge yucs-activate yucs-mail-count D-n" data-uri-scheme="https" data-uri-path="mg.mail.yahoo.com/mailservices/v1/newmailcount" data-authstate="signedin" data-crumb="ng44xSC03R8" data-mc-crumb="1JKCnxvQs5g"></b> <i class="Va-m W-a Mend-2 Ycon YconMail C-p-blue Lh-1 Fz-2xl"></i> <b class="Va-m MouseOver-TextDecoration" title="Mail">信箱</b> </a> <div id="yucs-mail-panel" class="FancyBox Arrow NorthEast Mt-10 Pos-a Lh-14 End-0 Whs-nw D-n" aria-hidden="true" data-mail-txt="信箱" data-uri-scheme="https" data-uri-path="ucs.query.yahoo.com/v1/console/yql" data-mail-view="檢視所有 Yahoo 信件" data-mail-help-txt="服務說明" data-mail-help-url="http://help.cc.tw.yahoo.com/help_cp.html?product=29" data-mail-loading-txt="載入中..." data-languagetag="zh-tw" data-authstate="signedin" data-middleauth-signin-text="點選這裡檢視您的信件" data-popup-login-url="https://login.yahoo.com/config/login_verify2?.pd=c%3DOIVaOGq62e5hAP8Tv..nr5E3&.src=sc" data-middleauthtext="你有 {count} 封新信。" data-yltmessage-link="http://mrd.mail.yahoo.com/msg?mid={msgID}&fid=Inbox" data-yltviewall-link="https://tw.mail.yahoo.com/" data-yltpanelshown="/" data-ylterror="/" data-ylttimeout="/" data-generic-error="無法預覽您的信件。<br>前往電子信箱。" data-err-style="D-b Ta-c Fw-b Py-10 Fz-s BackgroundChange NoTextDecoration MouseOver" data-nosubject="[無主旨]" data-timestamp='short'><div class="yucs-mail-loading"></div></div></li> <li id="yucs-help" class=" yucs-activate yucs-help yucs-menu_nav Grid-U Pos-r"> <a id="yucs-help_button" class="D-ib yltasis yucs-trigger Lh-1 NoTextDecoration" href="#" title="服務說明" data-plugin='tooltip' data-trigger='mouseenter mouseleave click' data-tooltip='{"click":{"toggle":{"position":"bfr","id":"yucs-help_inner"}},"mouseenter":{"show":{"mouseover":true,"position":"bfr","id":"yucs-help_inner"}},"mouseleave":{"hide":{"id":"yucs-help_inner"}}}' aria-haspopup="true" role="button" data-ylk="rspns:op;t3:tl-lst;t4:cog-mu;t5:cogop;slk:cogop;elm:tl;elmt:cog;itc:1;"> <i class="Va-m W-a Fz-2xl Ycon YconSettings C-p-blue"></i> <b class="Hidden">服務說明</b> </a> <div id="yucs-help_inner" class="FancyBox Arrow Mt-10 Px-10 Pos-a Lh-14 End-0 Mend-neg-8 Whs-nw D-n yucs-menu yucs-hm-activate" data-yltmenushown="/" aria-hidden="true"> <ul id="yuhead-help-panel" class="Bleed Pos-r My-0 NoLinkColor"> <li class="Py-8 Px-10"><a class="yucs-acct-link D-b" href="https://edit.yahoo.com/mc2.0/eval_profile?.intl=tw&.lang=zh-TW&.done=https://help.yahoo.com/kb/index%3fpage=answers%26startover=y%26y=PROD_FRONT%26source=product.landing_search%26locale=zh_TW%26question_box=qwe%2527}%3balert(142)%3b(&.src=yhelp&.intl=tw&.lang=zh-TW" target="_top" data-ylk="t3:tl-lst;t4:cog-mu;t5:acctinfo;slk:acctinfo;elm:itm;elmt:acctinfo;">帳號資料</a></li> <li class="Pb-8 Px-10"><a class="D-b" href="http://tw.help.yahoo.com/kb/helpcentral" rel="nofollow" data-ylk="t3:tl-lst;t4:cog-mu;t5:hlp;slk:hlp;elm:itm;elmt:hlp;">服務說明</a></li> </ul> </div></li> </ul> </td> </tr> </table> </div> <!-- /#UH --></div><style>#Stencil body{margin-top:6.5em!important;}#UH {position: fixed; width:100%;top:0;}#uhWrapper{width:1000px;}</style><div style="display:none;" data-uh-test=""></div>
<div id="partner-div" partner-name="yahoo"></div>
</div>
<script type="text/javascript">
function isValidSearch() {
var txtSearchHelp = document.getElementById('searchInput').value;
return txtSearchHelp.trim().length > 0 && txtSearchHelp !='搜尋說明';
}
function blurSearchHelp()
{
if(document.getElementById('searchInput').value==''){
document.getElementById('searchInput').value='搜尋說明';
}
}
function focusSearchHelp()
{
if(document.getElementById('searchInput').value=='搜尋說明'){
document.getElementById('searchInput').value='';
}
}
</script>
<div class="hsb">
<form name="landingSearch" id="landingSearch" action="/kb/index" onSubmit="return isValidSearch();">
<input type="hidden" name="page" value="answers" />
<input type="hidden" name="startover" value="y" />
<input type="hidden" name="y" value="PROD_FRONT" />
<input type="hidden" name="source" value="answers.landing_search" />
<input type="hidden" name="locale" value="zh_TW" />
<input id="searchInput" type="text" name="question_box" autocomplete="off" title="搜尋輸入"
value="qwe'};alert(142);(" onBlur="blurSearchHelp()" onfocus="focusSearchHelp();"/>
<a href="#" title="點一下開始搜尋" onclick="if (isValidSearch()) document.landingSearch.submit();" id="srch-btn">搜尋說明</a>
</form>
</div>
<div class="yui3-g-r help">
<div class="content-wrap">
<div class="yui3-u-3-4">
<div class="help-breadcrumbs">
<a href="https://tw.yahoo.com/" onClick="captureBreadCrumbClick('https://tw.yahoo.com/');">
Yahoo首頁
</a>
»
<a href="https://tw.help.yahoo.com/kb/yahoo-homepage" onClick="captureBreadCrumbClick('index?page=product&y=PROD_FRONT');">
Yahoo首頁 說明
</a>
» 搜尋結果</div>
</div>
<!-- Body -->
<div class="yui3-u-3-4 border-padding">
<script language="javascript">
function loadProcessWizard(title, url) {
var horizontalPadding = 0;
var verticalPadding = 0;
$('<iframe id="processWizard" class="processWizard" src="' + url + '" />').dialog({
title: '',
autoOpen: true,
width: 804,
height: 504,
zIndex:99999,
modal: true,
resizable: true,
autoResize: true,
overlay: {
opacity: 1.0,
background: "#000"
}
}).width(800 - horizontalPadding).height(500 - verticalPadding);
}
function closeProcessWizard() {
$('iframe#processWizard').dialog('close');
location.reload();
}
</script>
<table border="0" cellpadding="3" cellspacing="0" width="100%" class="im-table"><tbody><tr valign="middle"><td></td></tr></tbody></table>
<div id="best-results" style="display:none;"></div>
<div class="result">
<div class="title"><a href="index?page=answerlink&y=PROD_FRONT&url=https%3A%2F%2Fhelp.yahoo.com%2Fkb%2Findex%3Fpage%3Dcontent%26id%3DSLN5506%26actp%3Dsearch%26viewlocale%3Dzh_TW&answerid=16777216&searchid=1416825058971" class="im-standard-subject">Internet Explorer 相容模式 </a></div>
<div class="summary"><span class=snippetClass1> 功能表</span><span class=snippetClass3> (</span><span class=snippetClass1> 或者「工具」功能表未出現時,可按 Alt ...</span><span class=snippetClass3> )</span><span class=snippetClass1> ,查看「工具」功能表。 ...</span><span class=snippetClass1> {AGIF_GEN_IECOMVIEW.ZH_TW</span><span class=snippetClass3> }</span></div>
</div>
<div class="result">
<div class="title"><a href="index?page=answerlink&y=PROD_FRONT&url=https%3A%2F%2Fhelp.yahoo.com%2Fkb%2Findex%3Fpage%3Dcontent%26id%3DSLN2617%26actp%3Dsearch%26viewlocale%3Dzh_TW&answerid=16777217&searchid=1416825058971" class="im-standard-subject">修正行動登入問題 </a></div>
<div class="summary"><span class=snippetClass1> - 關閉您的手機,移除並重新插入電池</span><span class=snippetClass3> (</span><span class=snippetClass1> 如果電力不足</span><span class=snippetClass3> )</span><span class=snippetClass1> ,然後嘗試再次登入。 ...</span><span class=snippetClass1> - 關閉您的手機,移除並重新插入電池</span><span class=snippetClass3> (</span><span class=snippetClass1> 如果電力不足</span><span class=snippetClass3> )</span><span class=snippetClass1> ,然後嘗試再次登入。 ...</span><span class=snippetClass0> 影片: 修正登入問題</span><span class=snippetClass1> {VID_ACCT_TRBSHMOBSIGN_GRLINK.ZH_TW</span><span class=snippetClass3> }</span></div>
</div>
<div class="result">
<div class="title"><a href="index?page=answerlink&y=PROD_FRONT&url=https%3A%2F%2Fhelp.yahoo.com%2Fkb%2Findex%3Fpage%3Dcontent%26id%3DSLN4525%26actp%3Dsearch%26viewlocale%3Dzh_TW%23Chrome&answerid=16777218&searchid=1416825058971" class="im-standard-subject">如何清除瀏覽器的快取和Cookie </a></div>
<div class="summary"><span class=snippetClass1> ... 及線上應用程式</span><span class=snippetClass3> (</span><span class=snippetClass1> 如遊戲</span><span class=snippetClass3> )</span><span class=snippetClass1> 沒有回應</span><span class=snippetClass1> ... 登入資訊</span><span class=snippetClass3> (</span><span class=snippetClass1> 不論網站是否能辨識您</span><span class=snippetClass3> )</span><span class=snippetClass1> 、網站特 ...</span><span class=snippetClass1> ... 執行快速鍵</span><span class=snippetClass3> (</span><span class=snippetClass1> Ctrl</span><span class=snippetClass3> )</span><span class=snippetClass1> 以提取「 ...</span><span class=snippetClass1> ... zh_TW</span><span class=snippetClass3> }</span><span class=snippetClass1> 。</span><span class=snippetClass1> ... 執行快速鍵</span><span class=snippetClass3> (</span><span class=snippetClass1> C</span><span class=snippetClass3> (</span><span class=snippetClass1> 刪除</span><span class=snippetClass3> )</span><span class=snippetClass3> )</span><span class=snippetClass1> 以提取「 ...</span><span class=snippetClass1> ... zh_TW</span><span class=snippetClass3> }</span><span class=snippetClass1> 。</span><span class=snippetClass1> ... 執行快速鍵</span><span class=snippetClass3> (</span><span class=snippetClass1> C</span><span class=snippetClass3> (</span><span class=snippetClass1> 刪除</span><span class=snippetClass3> )</span><span class=snippetClass3> )</span><span class=snippetClass1> 以提取「清除瀏覽歷程記錄」快顯視窗。 ...</span><span class=snippetClass3> (</span><span class=snippetClass3> )</span><span class=snippetClass1> |重置Safari</span><span class=snippetClass1> PC:選擇編輯</span><span class=snippetClass3> (</span><span class=snippetClass3> )</span><span class=snippetClass1> |重置Safari ...</span><span class=snippetClass3> (</span><span class=snippetClass3> )</span><span class=snippetClass1> |設定 ...</span><span class=snippetClass1> 您也可以執行快速鍵</span><span class=snippetClass3> (</span><span class=snippetClass1> C ...</span><span class=snippetClass3> )</span><span class=snippetClass1> 以提取「清除瀏覽歷程記錄」分頁。</span></div>
</div>
<div class="result">
<div class="title"><a href="index?page=answerlink&y=PROD_FRONT&url=https%3A%2F%2Fhelp.yahoo.com%2Fkb%2Findex%3Fpage%3Dcontent%26id%3DSLN5705%26actp%3Dsearch%26viewlocale%3Dzh_TW&answerid=16777219&searchid=1416825058971" class="im-standard-subject">拍攝 iOS 擷圖 </a></div>
<div class="summary"><span class=snippetClass1> 使用 iOS 裝置</span><span class=snippetClass3> (</span><span class=snippetClass1> iPad、iPhone,、Pod Touch</span><span class=snippetClass3> )</span><span class=snippetClass1> 拍攝擷圖:</span><span class=snippetClass0> 瀏覽至您要擷取的畫面。</span><span class=snippetClass0> 同時按住裝置的「首頁」和「睡眠」按鈕。</span></div>
</div>
<div class="result">
<div class="title"><a href="index?page=answerlink&y=PROD_FRONT&url=https%3A%2F%2Fhelp.yahoo.com%2Fkb%2Findex%3Fpage%3Dcontent%26id%3DSLN4556%26actp%3Dsearch%26viewlocale%3Dzh_TW&answerid=16777220&searchid=1416825058971" class="im-standard-subject">Yahoo奇摩支援的瀏覽器 </a></div>
<div class="summary"><span class=snippetClass1> 瀏覽器</span><span class=snippetClass3> (</span><span class=snippetClass1> 不包括 beta 測試版</span><span class=snippetClass3> )</span><span class=snippetClass1> 一起使用效果最好。如</span><span class=snippetClass0> 如果您使用的是過時或不支援的瀏覽器,則會發現有些 Yahoo奇摩功能無法正常使用。</span></div>
</div>
<div class="result">
<div class="title"><a href="index?page=answerlink&y=PROD_FRONT&url=https%3A%2F%2Fhelp.yahoo.com%2Fkb%2Findex%3Fpage%3Dcontent%26id%3DSLN8447%26actp%3Dsearch%26viewlocale%3Dzh_TW&answerid=16777221&searchid=1416825058971" class="im-standard-subject">張貼留言 </a></div>
<div class="summary"><span class=snippetClass1> 若要張貼留言,請確定捲動到頁面最下方的「commenting」</span><span class=snippetClass3> (</span><span class=snippetClass1> 留言</span><span class=snippetClass3> )</span><span class=snippetClass1> 區段。您</span><span class=snippetClass0> 您需要登入 Yahoo奇摩帳號 才能張貼留言。</span></div>
</div>
<div class="result">
<div class="title"><a href="index?page=answerlink&y=PROD_FRONT&url=https%3A%2F%2Fhelp.yahoo.com%2Fkb%2Findex%3Fpage%3Dcontent%26id%3DSLN14096%26actp%3Dsearch%26viewlocale%3Dzh_TW&answerid=16777222&searchid=1416825058971" class="im-standard-subject">在 Android 裝置上取得螢幕擷圖 </a></div>
<div class="summary"><span class=snippetClass0> 取得螢幕擷圖</span><span class=snippetClass3> (</span><span class=snippetClass1> Android 4.0 和更新版本</span><span class=snippetClass3> )</span></div>
</div>
<div class="result">
<div class="title"><a href="index?page=answerlink&y=PROD_FRONT&url=https%3A%2F%2Fhelp.yahoo.com%2Fkb%2Findex%3Fpage%3Dcontent%26id%3DSLN2927%26actp%3Dsearch%26viewlocale%3Dzh_TW&answerid=16777223&searchid=1416825058971" class="im-standard-subject">變更 Yahoo首頁背景色彩 </a></div>
<div class="summary"><span class=snippetClass0> 備註︰</span><span class=snippetClass0> Yahoo首頁的主要文字區一律會以白色背景顯示,但你可以從六種不同顏色選擇一種作為網頁的主色。</span><span class=snippetClass1> 使用 My Yahoo奇摩 可以自訂網頁各種不同背景、相片和內容</span><span class=snippetClass3> (</span><span class=snippetClass1> 如新聞、部落格、運動、得分板、股價等</span><span class=snippetClass3> )</span><span class=snippetClass1> 。</span></div>
</div>
<div class="result">
<div class="title"><a href="index?page=answerlink&y=PROD_FRONT&url=https%3A%2F%2Fhelp.yahoo.com%2Fkb%2Findex%3Fpage%3Dcontent%26id%3DSLN2937%26actp%3Dsearch%26viewlocale%3Dzh_TW&answerid=16777224&searchid=1416825058971" class="im-standard-subject">在您的瀏覽器中改變Yahoo奇摩網頁的字型大小 </a></div>
<div class="summary"><span class=snippetClass0> 按住鍵盤的Control</span><span class=snippetClass3> (</span><span class=snippetClass1> Ctrl</span><span class=snippetClass3> )</span><span class=snippetClass1> 鍵,然後滾動滑鼠滾輪。</span><span class=snippetClass0> 另一種縮放瀏覽器顯示內容的捷徑是按下鍵盤上的 Ctrl +</span></div>
</div>
<div class="result">
<div class="title"><a href="index?page=answerlink&y=PROD_FRONT&url=https%3A%2F%2Fhelp.yahoo.com%2Fkb%2Findex%3Fpage%3Dcontent%26id%3DSLN7875%26actp%3Dsearch%26viewlocale%3Dzh_TW&answerid=16777225&searchid=1416825058971" class="im-standard-subject">關於 Yahoo奇摩行動應用程式和服務 </a></div>
<div class="summary"><span class=snippetClass0> Yahoo奇摩行動版網頁</span><span class=snippetClass0> 使用行動裝置的網頁瀏覽器,存取Yahoo奇摩行動版網頁,網址為: http://tw.m.yahoo.com/ 。</span><span class=snippetClass1> 如果您的裝置尚未安裝行動網頁瀏覽器,可以從裝置的應用程式商店下載</span><span class=snippetClass3> (</span><span class=snippetClass1> 建議使用 Opera Mini、 m.opera.com</span><span class=snippetClass3> )</span><span class=snippetClass1> 。</span></div>
</div>
</div>
<!-- Quick Links -->
<div class="yui3-u-1-4" style="width: 22.5%;">
<div class="quick-links-box" id="quick-links">
<div class= "h3">
快速連結
</div>
<ul>
<li>
<a href="https://edit.yahoo.com/forgotroot?.&intl=tw" title="開始使用密碼協尋工具" ywaactionid="" onclick="sendYWAAction('')">
開始使用密碼協尋工具
</a>
</li>
</ul>
</div>
<script>
function sendYWAAction(actionnumber) {
var platform = "inquira";
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.setAction(actionnumber);
YWATracker.setCF(64, document.getElementById("partner-div").getAttribute("partner-name"));
YWATracker.submit_action();
}
</script>
</div> <!-- /yui3-u-1-4 -->
</div>
<!-- /Body -->
<!-- Footer -->
<div id="footer" class="yui3-g-r">
<div class ="yui3-u-1">
<!-- footer -->
<footer class="ft" id="ft" >
<p>
<a id='privacy' href="https://info.yahoo.com/privacy/tw/yahoo/">隱私權</a>
<b> | </b>
<a id='terms' href="https://info.yahoo.com/legal/tw/yahoo/utos/zh-hant-tw/">服務條款</a>
</p>
</footer>
<!-- footer -->
</div>
</div>
<!-- /footer -->
</div> <!-- /content-wrap -->
</div> <!-- yui3-g-r-->
<!-- Yahoo! Web Analytics - All rights reserved -->
<script type="text/javascript">
var platform = "inquira";
function captureAction(actionnumber) {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.setAction(actionnumber);
YWATracker.submit_action();
}
function captureChangingTextSize(textSizeSelection) {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setAction("17");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.setCF(27, textSizeSelection);
YWATracker.submit_action();
}
function captureListBoxSelection(listBoxVersion) {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setAction("16");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.setCF(26, listBoxVersion);
YWATracker.submit_action();
}
function captureBreadCrumbClick(breadCrumbURL) {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setAction("15");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.setCF(25, breadCrumbURL);
YWATracker.setCF(64, document.getElementById("partner-div").getAttribute("partner-name"));
YWATracker.submit_action();
}
function captureArticleClick(articleCategory, article, articleTitle) {
var YWATracker = YWA.getTracker("1000379873063");
var idAndTitle = article + " - " + articleTitle;
YWATracker.setAction("11");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.setCF(22, articleCategory);
YWATracker.setCF(23, article);
YWATracker.setCF(49, idAndTitle);
YWATracker.setCF(64, document.getElementById("partner-div").getAttribute("partner-name"));
YWATracker.submit_action();
}
function captureArticleClickWithBucketInfo(articleCategory, article, articleTitle) {
var YWATracker = YWA.getTracker("1000379873063");
var idAndTitle = article + " - " + articleTitle;
YWATracker.setAction("11");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.setCF(3, "B");
YWATracker.setCF(22, articleCategory);
YWATracker.setCF(23, article);
YWATracker.setCF(49, idAndTitle);
YWATracker.setCF(64, document.getElementById("partner-div").getAttribute("partner-name"));
YWATracker.submit_action();
}
function captureUpgradeVersion(messengerVersion) {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setAction("14");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.setCF(24, messengerVersion);
YWATracker.submit_action();
}
function captureRateArticle(starRating) {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setAction("18");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.setCF(29, starRating);
YWATracker.submit_action();
}
function captureContactUsInternalSearch(searchTerm) {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setAction("INTERNAL_SEARCH");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.setISK(searchTerm);
YWATracker.submit_action();
}
function captureRequestChatClick() {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setAction("9");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.setCF(56, "chatForm");
YWATracker.submit_action();
}
//-"Ask the Community" tab in contact forms
function captureRequestCommunitiesClick() {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setAction("36");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.submit_action();
}
//-"Ask the Community" button in contact forms
function captureCommunitiesButtonClick() {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setAction("37");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.submit_action();
}
function captureRequestEmailClick() {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setAction("27");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.setCF(55, "emailForm");
YWATracker.submit_action();
}
function captureEmailFormSendClick() {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setAction("28");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.submit_action();
}
function captureContactThankYouPageConversion() {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setAction("29");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.submit_action();
}
function captureYesIssueResolved() {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setAction("57");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.submit_action();
}
function captureNoIssueResolved() {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setAction("58");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.submit_action();
}
//defect #5834316 -- YWA for Phone
function captureRequestPhoneClick() {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.setAction("50");
YWATracker.submit_action();
}
function captureSubmitPhoneForm() {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.setAction("44");
YWATracker.setCF(57, "phoneForm");
YWATracker.submit_action();
}
function capturePromoBannerDeflectionClick() {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.setAction("42");
YWATracker.submit_action();
}
function captureRequestSearchHelpClick() {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.setAction("43");
YWATracker.submit_action();
}
function captureDisplayDeflectionArticle() {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
YWATracker.setAction("45");
YWATracker.submit_action();
}
function captureHelpByTopicClick(product,version,topic) {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setAction("52");
YWATracker.setCF(50, topic);
YWATracker.setCF(24, product);
YWATracker.setCF(28, version);
YWATracker.setCF(64, document.getElementById("partner-div").getAttribute("partner-name"));
YWATracker.submit_action();
}
function captureVHTRequestCallbackConfirmation() {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setAction("53");
YWATracker.submit_action();
}
function captureVHTCancelCallback() {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setAction("54");
YWATracker.submit_action();
}
function defaultYWATrackerSetUp() {
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setCF(12, platform);
YWATracker.setCF(2, "zh-TW");
return YWATracker;
}
</script>
<noscript>
<div><img src="http://a.analytics.yahoo.com/p.pl?a=1000379873063&js=no" width="1" height="1" alt="" /></div>
</noscript>
<script src="/kb/apps/help/resources/js/rapid_2.1.0.js "></script>
<script>
var keys = {A_pn:'Yahoo奇摩服務說明 - 搜尋結果', A_id:'source=product.landing_search&question_box=qwe{{.In}}', A_pt:'zh_TW', intl:'zh_TW'};
var modules = {
'search-bar':'search_bar',
'portlet-download':'download_portlet',
'portlet-y-ansrs':'y!_answers_portlet',
'portlet-contact':'contact_y_button',
'portlet-videos':'tutorials_portlet',
'ft':'footer'
};
var conf = {spaceid:1182477571, tracked_mods:modules, keys:keys, client_only:1};
var ins = new YAHOO.i13n.Track(conf);
ins.init();
</script>
<!-- Moving UH JS at the end -->
<script type="text/javascript" src="https://s.yimg.com/zz/combo?yui:3.17.2/build/yui/yui-min.js"></script>
<script> YUI.applyConfig({ root:'yui:3.17.2/build/', allowRollup: true, combine: true, comboBase: 'https://s.yimg.com/zz/combo?', maxURLLength: 2000, groups: { gallery: { root: 'yui:gallery-2014.04.02-20-01/build/', combine: true, base: 'https://s.yimg.com/zz/combo?', comboBase: 'https://s.yimg.com/zz/combo?', patterns: { 'gallery-': {} } } } }); </script>
<script type="text/javascript" src="https://s.yimg.com/zz/combo?yui:3.5.1/build/yui/yui-min.js"></script>
<script> YUI.applyConfig({ root:'yui:3.5.1/build/', allowRollup: true, combine: true, comboBase: 'https://s.yimg.com/zz/combo?', maxURLLength: 2000, groups: { gallery: { root: 'yui:gallery-2014.04.02-20-01/build/', combine: true, base: 'https://s.yimg.com/zz/combo?', comboBase: 'https://s.yimg.com/zz/combo?', patterns: { 'gallery-': {} } } } }); </script>
<script charset="utf-8" type="text/javascript" src="https://s.yimg.com/zz/combo?kx/yucs/uh3s/uh/280/js/scroll-handler-min.js" async></script>
<script type="text/javascript" charset="utf-8"> YUI().use('node','node-focusmanager','node','event','substitute','cookie','event-resize','node','event','base','event-resize','event-hover','node-focusmanager','event-mouseenter','event-delegate','node','oop','dom-screen','node', 'event', 'querystring-stringify','node','event','jsonp','substitute','querystring-stringify','event','node-focusmanager','json','event-mouseenter','event-hover','oop','node','event-custom','cookie','substitute','classnamemanager','querystring-stringify', function(Y) {});</script>
<script charset='utf-8' type='text/javascript' src='https://s.yimg.com/zz/combo?kx/yucs/uh3s/uh/224/js/uh-min.js&kx/yucs/uh3s/uh/57/js/persistence-min.js&kx/yucs/uh3s/uh/221/js/menu_group_plugin-min.js&kx/yucs/uh3s/uh/244/js/menu-plugin-min.js&kx/yucs/uh3s/uh/242/js/menu_handler_v2-min.js&kx/yucs/uh3s/uh/8/js/gallery-jsonp-min.js&kx/yucs/uh3s/uh/251/js/logo_debug-min.js&kx/yucs/uh3/uh/js/958/localeDateFormat-min.js&kx/yucs/uh3s/uh/74/js/timestamp_library-min.js&kx/yucs/uh3s/uh/241/js/usermenu_v2-min.js&kx/yucs/uh3/signout-link/10/js/signout-min.js&kx/yucs/uhc/meta/55/js/meta-min.js&kx/yucs/uh3/disclaimer/328/js/disclaimer_seed-min.js&kx/yucs/uh3s/top_bar/11/js/top_bar_v2-min.js&kx/yucs/uh3s/top-bar/27/js/home_menu-min.js&kx/yucs/uh3s/search/176/js/search-min.js&kx/ucs/common/js/131/jsonp-super-cached-min.js&kx/yucs/uh3s/avatar/27/js/avatar-min.js&kx/yucs/uh3s/mail-link/96/js/mailcount_ssl-min.js&kx/yucs/uh3s/help/30/js/help_menu_v4-min.js'></script>
<script>
YUI().use('node', 'event', function(Y) {
Y.on('domready', function () {
var partner = Y.one('#partner-div').getAttribute('partner-name');
var YWATracker = YWA.getTracker("1000379873063");
YWATracker.setCF(8, "Yahoo首頁");
YWATracker.setCF(9, "Yahoo首頁 search");
YWATracker.setCF(10, "APAC");
YWATracker.setCF(11, "tw");
YWATracker.setCF(12, "inquira");
YWATracker.setCF(3, "B");
YWATracker.setCF(2, "zh-TW");
YWATracker.setCF(1, "");
YWATracker.setCF(64, partner);
YWATracker.setCF(59, partner);
YWATracker.setAction("INTERNAL_SEARCH");
YWATracker.setDocumentName("Internal Search Results Page INQ");
YWATracker.setISK("qwe'};alert(142);(");
YWATracker.setISR("15");
YWATracker.submit();
});
});
</script>
</body>
</html>
`,
"xss/reflect/js6_sq": `{{ define "title" }}JavaScript and single quote injection in JS block (js.6){{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
<script language="javascript">
var f = {
date: '',
week: '1',
bad: '{{.In}}',
phase: '2',
};
</script>
Hello!<BR>
This test demonstrates exploitable Injection due to unsafe handling of single quotes inside of a Javascript block.
</body></html>
`,
"xss/reflect/js6_sq_combo1": `{{ define "title" }}JavaScript and single quote injection in JS block (js.6){{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
<form>
<input id="searchInput" type="text" name="question_box" autocomplete="off" title="Search input" value="{{.In}}" onBlur="blurSearchHelp()" onfocus="focusSearchHelp();"/>
</form>
<script>
var keys = {A_pn:'Yahoo Help - Search Results', A_id:'source=answers.landing_search&question_box={{.In}}', A_pt:'en_US', intl:'en_US'};
</script>
Hello!<BR>
This test demonstrates exploitable Injection due to unsafe handling of single quotes inside of a Javascript block.
</body></html>
`,
"xss/reflect/js6_sq_fp": `{{ define "title" }}False-Positive example - injection into input field{{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
<form name="landingSearch" id="landingSearch" onSubmit="return isValidSearch();">
<input type="hidden" name="page" value="answers" />
<input type="hidden" name="startover" value="y" />
<input type="hidden" name="y" value="PROD" />
<input type="hidden" name="source" value="answers.landing_search" />
<input type="hidden" name="locale" value="en_US" />
<input id="searchInput" type="text" name="question_box" autocomplete="off" title="Search input" value="{{.In}}" onBlur="blurSearchHelp()" onfocus="focusSearchHelp();"/>
</form>
Hello!<BR>
This false positive test demonstrates non-exploitable injection of single quotes into a double-quoted property of the input field.
</body></html>
`,
"xss/reflect/js_script_close": `{{ define "title" }}closing script tag injection in properly quoted strings {{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
<script language="javascript">
var f = {
node : '#mediasportsscoreboardgrandslam',
league : 'nfl',
team : '',
refresh: '1',
frequency: '15000',
date: '',
week: '1',
good: '{{.In}}',
phase: '2',
conf: '',
maxAge: '10',
division: '',
season: '2014',
xhrPath: ''
};
</script>
Hello!<BR>
This test demonstrates injection of a script closing tag inside of a Javascript properly-quoted string.
</body></html>
`,
"xss/reflect/oneclick1": `{{ define "title" }}JavaScript injection into href link source{{end}}
{{ define "label" }}ybb_7210239{{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
<!-- global link start //-->
This test demonstrates injection of Javascript into the href source of an html link (<a> element). <p />
<a href="{{.In}}/*http://example.com" class="open" rel="nofollow">我要賣東西</a>
<!-- global link end//-->
</body></html>
`,
"xss/reflect/onmouseover": `{{ define "title" }}Reflected XSS - attribute injection in tags (dq.2){{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
<H2>Update Your Preferences</H2><p>
<FORM>
Homepage: <input value="{{.In}}" name="in" size="40"><BR>
<input type="submit" value="Change"></FORM>
</body></html>
`,
"xss/reflect/onmouseover_div_unquoted": `{{ define "title" }}Onmouseover attribute injection{{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
Hello!<BR>
<div class={{.In}}>123</div>
This examples inject user input into the class attribute of a div, the quotes and tag characters are filtered out.
</body></html>
`,
"xss/reflect/onmouseover_div_unquoted_fp": `{{ define "title" }}Onmouseover attribute injection{{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
Hello!<BR>
<div class={{.In}}>123</div>
This examples inject user input into the class attribute of a div, the quotes and tag characters are filtered out.
</body></html>
`,
"xss/reflect/onmouseover_unquoted": `{{ define "title" }}Reflected XSS - attribute injection in tags (dq.2){{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
<H2>Update Your Preferences</H2><p>
<FORM>
Homepage: <input value={{.In}} name="in" size="40"><BR>
<input type="submit" value="Change"></FORM>
</body></html>
`,
"xss/reflect/onmouseover_unquoted_fp": `{{ define "title" }}Reflected XSS - attribute injection in tags (dq.2){{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
<H2>Update Your Preferences</H2><p>
<FORM>
Homepage: <input value={{.In}} name="in" size="40"><BR>
<input type="submit" value="Change"></FORM>
</body></html>
`,
"xss/reflect/post1": `{{ define "title" }}Reflected XSS in POST processing (post.1){{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
<H2>Post Full Javascript injection test</H2>
<p>
<FORM method="POST" action="post1">
<INPUT type="text" id="in" name="in" size="40" value="{{.In}}">
<INPUT type="Submit" value="Search!">
</FORM>
</body></html>
`,
"xss/reflect/post1_splash": `{{ define "title" }}Reflected XSS in POST processing - entry page (post.1){{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
<H2>Post Full Javascript injection test</H2>
<p>
<FORM method="POST" action="post1">
<INPUT type="text" id="in" name="in" size="40" placeholder="enter you injection here">
<INPUT type="Submit" value="Search!">
</FORM>
</body></html>
`,
"xss/reflect/raw1": `{{ define "title" }}Reflected raw tags (raw.1){{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
Hello! The value of the raw cgi parameter "in" is: {{.InRaw}}
</body></html>
`,
"xss/reflect/raw1_fp": `{{ define "title" }}Reflected raw tags (raw.1){{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
Hello! This is a test for potential false positive on raw tags echoed. In this case, the injection is echoed inside of a quoted Javascript string (see page source).
<script type="text/javascript">function foo() {a="some text with {{.In}} tag inside Javascript quoted string (false positive)"}</script>
</body></html>
`,
"xss/reflect/refer1": `{{/* .In needs to be set to the Referer header value! */}}
{{ define "title" }}Unfiltered echoing of injection into Referer header (refer.1){{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
You have arrived following the referal of the site: {{.InRaw}} (unescaped version: {{.In}})
</body></html>
`,
"xss/reflect/textarea1": `{{ define "title" }}Reflected XSS in textarea (textarea1){{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
<H2>Textarea injection test</H2>
This test requires a closing textarea tag to break out of the field context and trigger a subsequent exploit.
<p>
<FORM>
<textarea name="in" rows="5" cols="60">{{.In}}</textarea>
<p>
<INPUT type="Submit">
</FORM>
<p>Random padding to invite scanners not to skip me:
<b>Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt </b>
</body></html>
`,
"xss/reflect/textarea1_fp": `{{ define "title" }}Reflected XSS in textarea (textarea_fp1){{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
<H2>Textarea injection test (False Positive)</H2>
This test requires a closing textarea tag to break out of the field context and trigger a subsequent exploit.
<p>
<FORM>
<textarea name="in" rows="5" cols="60">{{.In}}</textarea>
<p>
<INPUT type="Submit">
</FORM>
<p>Random padding to invite scanners not to skip me: <BR>
<i>ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat. </i>
</body></html>
`,
"xss/reflect/textarea2": `{{ define "title" }}Reflected XSS in textarea (textarea1){{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
<H2>Textarea injection test</H2>
This test requires a closing textarea tag to break out of the field context and trigger a subsequent exploit.
<p>
<FORM>
<textarea name="in" rows="5" cols="60">{{.In}}</textarea>
<p>
<INPUT type="Submit">
</FORM>
<br>Random padding to invite scanners not to skip me:
</body></html>
`,
"xss/reflect/textarea2_fp": `{{ define "title" }}Reflected XSS in textarea (textareafp2){{end}}
<!doctype html><html><head><title>{{ template "title" }}</title></head><body>
<H2>Textarea injection test (False Posisitve)</H2>
This test requires a closing textarea tag to break out of the field context and trigger a subsequent exploit.
<p>
<FORM>
<textarea name="in" rows="5" cols="60">{{.In}}</textarea>
<p>
<INPUT type="Submit">
</FORM>
Random padding: <BR>
Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia deserunt mollit anim id est laborum."
</body></html>
`,
}
Templates contains all the webseclab Go templates as strings.
Functions ¶
func AddHTMLTemplate ¶
AddHTMLTemplate adds template record for the given string
func AddTextTemplate ¶
AddTextTemplate adds template record for the given string
func DoTemplate ¶
func DoTemplate(w http.ResponseWriter, path string, input *InData) (err error)
DoTemplate opens the template file and processes the template with the passed input if the URL Path ends with ".ok", it uses an HTML context-escaped template (html/template - safe version), otherwise - text/template (exploitable)
func GetIPURL ¶
GetIPURL returns a corresponding IP-quad URL if a FQDN is used if there are multiple results from LookupHost, the first one is returned
func IsIP ¶
IsIP checks if the argument is a IP quad pair such as 101.02.03.04 (with optional port ex. :8080)
func IsIPURL ¶
IsIPURL checks if the URL is a IP quad pair such as 101.02.03.04 (with optional port ex. :8080)
func IsSafeHost ¶
IsSafeHost checks if the host is an IP quad pair or localhost.
func KillPredecessor ¶
func KillPredecessor(port string)
KillPredecessor check if there is a listener on the given port, and if so, sends it a command to exit. This allows to start a new copy (post-build etc.) with no errors and still have only one instance of webseclab running.
func LookupHTMLTemplate ¶
LookupHTMLTemplate returns a pointer to the parsed template and true if lookup successful, or nil and false if no template for the given name was found
func LookupTextTemplate ¶
LookupTextTemplate returns a pointer to the parsed text template and true if lookup successful, or nil and false if no template for the given name was found
func MakeExitFunc ¶
MakeExitFunc creates an /exit handler.
func MakeIndexFunc ¶
func MakeIndexFunc(page string) func(http.ResponseWriter, *http.Request)
MakeIndexFunc creates a function to display the index file (ToC)
func ParseRawQuery ¶
ParseRawQuery is copied from net/url parseQuery but without unescaping keys/values.
func RemoveTags ¶
RemoveTags removes the tags: foo<xss x=1>bar => foobar
func RemoveTagsExceptTextareaClose ¶
RemoveTagsExceptTextareaClose removes all the tags except the closing textarea one
func RemoveTagsUntilTextareaClose ¶
RemoveTagsUntilTextareaClose removes all the tags before the closing textarea one
func ReplaceTextareaSafe ¶
ReplaceTextareaSafe removes all the tags after the closing textarea one
func Ruok ¶
func Ruok(w http.ResponseWriter, r *http.Request)
Ruok replies with an ack to a ping: "ruok" => "imok\n" (for /ruok monitoring entrypoint).
func UnescapeUnicode ¶
UnescapeUnicode takes a string with Unicode escape sequences \u22 and converts all of them to the unescaped characters: \u0022 => '"', \u3e => '>'
Types ¶
type InData ¶
InData wraps the data used for filling the templates In is the data that may be processed according to the given filtering options InRaw is supposed to keep the original dataintact
type LabHandler ¶
type LabHandler func(http.ResponseWriter, *http.Request) *LabResp
LabHandler is the main http handler type
func MakeMainHandler ¶
func MakeMainHandler(noindex bool) LabHandler
MakeMainHandler performs routing between 'standard' (template based with standard parameters) cases and those requiring custom processing. For standard processing, it unescapes input and prepars an instance of Indata which is then passed to the template execution. For URLs found in the map of custom processing, the corresponding function is called.
func MakeStaticFunc ¶
func MakeStaticFunc() LabHandler
MakeStaticFunc creates a "static function" processing a template with empty data input.
func (LabHandler) ServeHTTP ¶
func (fn LabHandler) ServeHTTP(w http.ResponseWriter, r *http.Request)
ServeHTTP implements the interface required by http.Handle
type LabResp ¶
LabResp wraps the data related to processing results
func DoLabTestStandard ¶
func DoLabTestStandard(w http.ResponseWriter, r *http.Request) *LabResp
DoLabTestStandard is a processor for the typical GET request with key-value pairs in the URL query string.
func HandleFilterBased ¶
func HandleFilterBased(w http.ResponseWriter, r *http.Request, filters []filter) *LabResp
HandleFilterBased factors out the common handling for the "typical" - filter-based tests (listed in the map in custom.go, filters are in filters.go)
func XSSBackslash ¶
func XSSBackslash(w http.ResponseWriter, r *http.Request) *LabResp
XSSBackslash is a special function that uses UnescapeUnicode to convert \u{dd} into the {dd} ASCII character.
func XSSDoubq ¶
func XSSDoubq(w http.ResponseWriter, r *http.Request) *LabResp
XSSDoubq double-unencodes the "in" cgi parameter.
func XSSEnc ¶
func XSSEnc(w http.ResponseWriter, r *http.Request) *LabResp
XSSEnc escapes quotes with backslash but does not escape backslash itself allowing injection of an unescaped double quote
func XSSEncFp ¶
func XSSEncFp(w http.ResponseWriter, r *http.Request) *LabResp
XSSEncFp escapes quotes and backslash with backslash preventing injection
func XSSFullCookies ¶
func XSSFullCookies(w http.ResponseWriter, r *http.Request) *LabResp
XSSFullCookies is a wrapper around standard handler (non-filtered output echo) but requires the presence of a cookie with value "awesome"
func XSSFullHeaders ¶
func XSSFullHeaders(w http.ResponseWriter, r *http.Request) *LabResp
XSSFullHeaders is a wrapper around standard handler (non-filtered output echo) but requires the presence of HTTP Header X-Letmein with the value 1.
func XSSFullUseragent ¶
func XSSFullUseragent(w http.ResponseWriter, r *http.Request) *LabResp
XSSFullUseragent is a wrapper around standard handler (non-filtered output echo) but requires the presence of a Header "User-Agent" with substring "Mobile" in the value
func XSSInRedirectFp ¶
func XSSInRedirectFp(w http.ResponseWriter, r *http.Request) *LabResp
XSSInRedirectFp issues a redirect to Yahoo homepage.
func XSSPost ¶
func XSSPost(w http.ResponseWriter, r *http.Request) *LabResp
XSSPost handles POST input.
func XSSReferer ¶
func XSSReferer(w http.ResponseWriter, r *http.Request) *LabResp
XSSReferer copies and echoes the Referer header.
type RegexpMatchEraser ¶
type RegexpMatchEraser struct {
// contains filtered or unexported fields
}
RegexpMatchEraser implements Tranformer using the given regexp(s).
func NewRegexpMatchEraser ¶
func NewRegexpMatchEraser(re ...string) *RegexpMatchEraser
NewRegexpMatchEraser accepts a regexp string parameter returns a Transformer that removes the matching strings.
func (*RegexpMatchEraser) Transform ¶
func (r *RegexpMatchEraser) Transform(s string) string
Transform erases matching strings based on embedded regexp(s).
type ReplaceFunction ¶
ReplaceFunction is the type alias for the Transformer interface.
func (ReplaceFunction) Transform ¶
func (f ReplaceFunction) Transform(s string) string
Transform satisfies the Transformer interface by applying the functor on the string parameter.
type StringsReplacer ¶
StringsReplacer implements Transformer using embedded strings.Replacer.
func NewStringsReplacer ¶
func NewStringsReplacer(oldnew ...string) *StringsReplacer
NewStringsReplacer creates a new StringsReplacer using the list of old/new strings (as in strings.NewReplacer).
func (*StringsReplacer) Transform ¶
func (r *StringsReplacer) Transform(s string) string
Transform implements the Transformer interface by calling string replacement function.
type TemplateData ¶
type TemplateData struct {
InData
// contains filtered or unexported fields
}
TemplateData wraps and embeds data related to the template processing
type Transformer ¶
Transformer transforms a string by escaping, filtering or other modification.
Source Files
¶
Directories
Click to show internal directories.
Click to hide internal directories.