', searchPageNumber: 1 }); }); t = d.getElementsByTagName("script")[0]; s = d.createElement("script"); s.type = "text/javascript"; s.src = "//an.yandex.ru/system/context.js"; s.async = true; t.parentNode.insertBefore(s, t); })(this, this.document, "yandexContextAsyncCallbacks");
Поиск Google ничего не нашел

javascript - when does the svg onload function happen - Stack Overflow

stackoverflow.com

text x="20" y="20" onload="alert('load'); setAttribute('fill', 'fuchsia')" onclick="setAttribute('fill', 'lightgreen')" onmouseout="setAttribute('fill', 'black')" >Load me</text

PayloadsAllTheThings/README.md at master... | XSS in SVG (short)

github.com

XSS Hunter allows you to find all kinds of cross-site scripting vulnerabilities, including the often-missed blind XSS. The service works by hosting specialized XSS probes which, upon firing, scan the page and send information about the vulnerable page to the XSS Hunter service.

Добавление скриптов на страницу. Диалоговое окно alert | HTML+

html-plus.in.ua

<script>. alert("Ура! Первый скрипт заработал!")

XSS Filter Evasion Cheat Sheet | OWASP | On Error Alert

owasp.org

Submitted by Franz Sedlmaier, this XSS vector could defeat certain detection engines that work by first using matching pairs of open and close angle brackets and then by doing a comparison of the tag inside, instead of a more efficient algorythm like Boyer-Moore that looks for entire string matches of...

Загрузка ресурсов: onload и onerror | script.onerror

learn.javascript.ru

script.onload. Главный помощник – это событие load. Оно срабатывает после того, как скрипт был загружен и выполнен.

<script> - SVG: Scalable Vector Graphics | MDN | MDN Web Docs

developer.mozilla.org

The SVG script element allows to add scripts to an SVG document.

onload Event

www.w3schools.com

onload is most often used within the <body> element to execute a script once a web page has completely loaded all content

Bootstrap - Alerts (сообщения) | ИТ Шеф

itchief.ru

<div id="my-alert" class="alert alert-danger alert-dismissible fade show" role="alert"> Информационное сообщение (alert), которое закроется через 5 секунд после загрузки

"><svg/onload=confirm(/openbugbounty/)>

asylornek.kz

svg onload document location href https www OPENBUGBOUNTY...

New And 0day XSS Vectors collected from everywhere | Forum

www.openbugbounty.org

<a/onmousemove=alert('XSSPOSED')//><h1>A<br>A<br>A<br>A<br>A<br>A<br>A<br>A<br>A<br>A<br>R3NW4 says /XSS/ <!

Поиск реализован с помощью YandexXML и Google Custom Search API