WebSandbox - Clock Sample

Home

Samples

Forums

This sample displays a clock that updates every second. The sandbox isolates the clock such that other code running in the page cannot interfere with it. Try to inject exploit code (either by pasting it in the code box or uploading from an URI) that interferes with the clock: replace the displayed value; change the time; modify the update frequency; stop the clock; and so on. The injected code will run in the sandbox. If you succeed at circumventing it we'd like to know how you did it!

Trusted Sample

Clock Sample

Sample Source Code

<html>
    <head>
        <title>Clock Sample</title>
        <base href="http://www.websandbox.org/"/>
        <link href="Images/favicon.ico" rel="icon" />
        <style>
            .sampleTitle
            {
                font-family: Segoe UI, Tahoma;
                font-size: 11pt;
                font-weight: bold;
                color: #07519A;
            }
            .clockSample
            {
	            height: 130px;
	            border: solid 1px lightgrey;
	            background: white;
	            background-repeat: repeat-x;
	            background-position: left top;
	            padding: 10px;
	            overflow-y: auto;
            }
        </style>
    </head>
    <body>
        <div id="sample" class="clockSample">
            <div class="sampleTitle">Clock Sample</div>
            <br />
            <span id="currentTime"></span>
            
            <script type="text/javascript">
                window.setInterval(function() {
                    document.getElementById("currentTime").innerText = new Date();
                }, 999)
            </script>
        </div>
    </body>
</html>

Create your gadget: Type code below OR upload via an URL.

Source: <html> <head> <title>Your Gadget's Title</title> <script type="text/javascript"> //JavaScript Goes Here </script> <style type="text/css"> /* CSS Styles Goes here */ </style> </head> <body> <p>Your Gadget's HTML goes here. Your HTML must be well-formed.</p> </body> </html>
URL

Transform via: Client (Requires Microsoft Silverlight) Server [ ? ]

Trusted Sample

Sample Source Code

Create your gadget: Type code below OR upload via an URL.

View Gadget Source

Untrusted Input

Trusted Transformed Output