Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <!DOCTYPE html>
- <html lang="en">
- <head>
- <meta charset="UTF-8">
- <meta name="viewport" content="width=device-width, initial-scale=1.0">
- <title>XSS test</title>
- </head>
- <body>
- <h1>Check console.</h1>
- <!-- HTML Entities -->
- <a href='jAvascript:console.log("HTML Entity")'>hoge</a>
- <!-- URL Encoding -->
- <a href="javascript:al%65rt('URL Encoding')">fuga</a>
- <script>
- // unicode encoding.
- \u0063onsole.log("\u0061")
- // hex encoding.
- eval('\x63onsole.log("\x63")')
- </script>
- </body>
- </html>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement