XSS Test1

(1) srcdoc属性

Code

<iframe srcdoc="<script>console.log('XSS');</script>"></iframe>

Demo

参考

• srcdoc attribute of iframe - HTML Standard

(2) "data" URL scheme

Code

<iframe src="data:text/html;base64,PHNjcmlwdD5jb25zb2xlLmxvZygnWFNTJyk7PC9zY3JpcHQ+">

Demo

参考

• Data URLs - HTTP | MDN
• RFC 2397 - The "data" URL scheme
• Base64 encoder/decoder online

(3) onmousemove 属性など

<b onmousemove="console.log('XSS')">XSS!</b>

<b onmousemove="console.log('XSS')">XSS!</b>