', searchPageNumber: 1 }); }); t = d.getElementsByTagName("script")[0]; s = d.createElement("script"); s.type = "text/javascript"; s.src = "//an.yandex.ru/system/context.js"; s.async = true; t.parentNode.insertBefore(s, t); })(this, this.document, "yandexContextAsyncCallbacks");
Поиск Google ничего не нашел

internet explorer - Encoding XSS attack (</script><svg/onload=alert...

stackoverflow.com

Learn more. Encoding XSS attack (</script><svg/onload=alert(window.location.href)>) not working in IE. Ask Question. Asked 3 years, 3 months ago.

Методы обхода защитных средств веб-приложений при... / Хабр

habr.com

Несмотря на большое количество рекомендаций по защите веб-приложения от клиент-сайд атак, таких как XSS (cross site scripting) многие разработчики ими пренебрегают, либо выполняют эти требования не...

GitHub - s0md3v/AwesomeXSS: Awesome XSS stuff

github.com

Awesome Confirm Variants. Yep, confirm because alert is too mainstream.

onload Event

www.w3schools.com

onload is most often used within the <body> element to execute a script once a web page has completely loaded all content (including

Scripting SVG

dev.w3.org

SVG Web is a JavaScript library which provides SVG support on many browsers, including Internet Explorer

“><svg/onload=confirm(1) | Add External Scripts/Pens

codepen.io

We offer two popular choices: Autoprefixer (which processes your CSS server-side) and -prefix-free (which applies prefixes via a script, client-side).

'"></script><svg onload=alert()> | Kaggle

www.kaggle.com

Explore and run machine learning code with Kaggle Notebooks | Using data from <img src=x onerror=alert(document.domain).

Top 500 Наиболее важных XSS скриптов для тестирования на...

itsecforu.ru

...div style=content:url(data:image/svg+xml,%%3Csvg/%%3E);visibility:hidden onload=javascript

XSS: fails to escape link text in [<svg/onload=alert...] - Github Help

githubhelp.com

This displays an alert in Firefox (XSS).

SVG Scripting

tutorials.jenkov.com

When SVG is embedded in an HTML page, you can work with SVG elements in JavaScript just as if they were HTML elements. The JavaScript looks the same. This text shows you examples of how to work with SVG elements via JavaScript, but it does not explain JavaScript itself.

Поиск реализован с помощью YandexXML и Google Custom Search API