You are viewing a single comment's thread from:

RE: XSS Security Test

in #test2 months ago

E1: Tab in javascript URL

tab-js

E2: Newline in javascript URL

newline-js

E3: noscript mXSS

test

E4: details ontoggle

<details open ontoggle=document.title='E4'>

Xin

E5: CSS url() in td style

cell

E6: hive: protocol

hive link

E7: HTML comment trick

(html comment removed: >)

E8: table+style mXSS

<img src=x onerror=document.title='E8'>)

E9: svg foreignObject

<body onload=document.title='E9'>

E10: entity encoded javascript:

encoded

E11: data URI

base64

E12: marquee event

<marquee onstart=document.title='E12'>text

E13: video source

E14: img srcset

E15: DOM clobbering

c1c2

2 months ago in #test by
$0.00
    Reply 0
    Sort:  
  • Trending