This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit

Projects/OWASP Web Browser Testing System Project/Releases/WBTS 1.0

Jump to: navigation, search

back to project home page

what is this release?
WBTS 1.0 - N/A - (download)
Release Description: Currently WBTS is being re-written see: to track it's progress!

WBTS-beta has been used to help researchers find the following bugs:
1. Ability to read cross domain image data using toDataURL and getImageData via createPattern
1. Cross-domain checks may be bypassed, allowing limited data theft using CSS
1. Waiting for update on CSS Bug...
2. Waiting for update on Header Injection Bug...
3. Waiting for update Same Origin Policy Bypass Bug...

The previous (beta) release license was GNUv3, this has been changed to MIT for the next release.
If you wish to download the BETA release you can get it here:

Release License: MIT License [1]
who worked on this release?
Release Leader(s):
  • Isaac Dawson @
how can you learn more?
Release Notes: View
Release Rating: Yellow button.JPG Not Reviewed - Assessment Details
Key Contacts
  • Contact Isaac Dawson @ to contribute to this project
  • Contact Isaac Dawson @ to review or sponsor this project
  • Contact the GPC to report a problem or concern about this release info or to update information.