Grading of Exercise 4

+6 votes

Hello,

I was just reviewing the correction for Exercises 4 and noticed that I lost points on several tasks even though my solutions worked correctly. It seems that only one specific input was accepted as correct, although in many cases multiple valid solutions exist.

For Question 2, I used:
<img src=x onerror=alert(document.location)>

So without the quotation marks shown in the sample solution, but it still successfully triggers the alert.

For Question 5, I also used a slightly different solution which likewise triggers the alert:
1%22%3E%3Cscript%3Ealert(document.location)%3C%2Fscript%3E%0A

Lastly, for Question 7, the payload:
?data=</script><script>alert(document.domain)</script>

also worked successfully on my local PHP instance.

I would appreciate it if you could take another look at these three tasks for my submission (IMT ttappe) and adjust the grading accordingly if appropriate.

Best regards,
Tobias Tappe

in ex04 by (200 points)
edit history
+1
I also had the same problem for question 1,2,3,7.

Imt: ackaynak
by (140 points)
+1
same for me, the exact provided solution given as comment isnt the answer I put. But my solution worked as well and there are no rules specified. So pl do have a look. user: "mahesh"
by (140 points)
0
Also had the same problems with the questions — 1a, 1b, 1c, 1e, 2b
by (110 points)

2 Answers

+3 votes
Not all tasks in the exercise are graded yet. The note will be removed when the grading is ready.
by (1.3k points)
edit history
+1 vote
I have the same problems, also with question number 2, 5 and 7, but also with 9 and 10!
But the note for exercise 4 states that its "not fully graded yet", so I hope the supervisors are already aware of it and will adjust it accordingly
by (410 points)
edit history
+2
Not all tasks in the exercise are graded yet. The note will be removed when the grading is ready.
by (1.3k points)