xss_DA2F564D-33BB-59E8-AFA3-F5767E564DB4

Description

分享一下比较全的XSS Payload 高级绕过字典 --- 目录 1. 基础大小写混合与标签混淆 2. 浏览器突变型XSS 3. 编码绕过 4. 协议层混淆绕过 5. 空字节与控制字符注入 6. 注释混淆与标签闭合 7. 嵌套标签与多重混淆 8. 短事件处理器 9. JS模板字符串注入 10. DOMPurify绕过 11. DOM破坏攻击 12. Polyglot payloads 13. Unicode归一化绕过 14. AngularJS SSTI 15. React/Vue框架绕过 16...

Visit Original Source

Basic Information

ID DA2F564D-33BB-59E8-AFA3-F5767E564DB4

Published Apr 27, 2026 at 08:14

Modified Apr 27, 2026 at 08:20

{
    "lastseen": "2026-04-27T08:29:22",
    "description": "\u5206\u4eab\u4e00\u4e0b\u6bd4\u8f83\u5168\u7684XSS Payload \u9ad8\u7ea7\u7ed5\u8fc7\u5b57\u5178 --- \u76ee\u5f55 1. \u57fa\u7840\u5927\u5c0f\u5199\u6df7\u5408\u4e0e\u6807\u7b7e\u6df7\u6dc6 2. \u6d4f\u89c8\u5668\u7a81\u53d8\u578bXSS 3. \u7f16\u7801\u7ed5\u8fc7 4. \u534f\u8bae\u5c42\u6df7\u6dc6\u7ed5\u8fc7 5. \u7a7a\u5b57\u8282\u4e0e\u63a7\u5236\u5b57\u7b26\u6ce8\u5165 6. \u6ce8\u91ca\u6df7\u6dc6\u4e0e\u6807\u7b7e\u95ed\u5408 7. \u5d4c\u5957\u6807\u7b7e\u4e0e\u591a\u91cd\u6df7\u6dc6 8. \u77ed\u4e8b\u4ef6\u5904\u7406\u5668 9. JS\u6a21\u677f\u5b57\u7b26\u4e32\u6ce8\u5165 10. DOMPurify\u7ed5\u8fc7 11. DOM\u7834\u574f\u653b\u51fb 12. Polyglot payloads 13. Unicode\u5f52\u4e00\u5316\u7ed5\u8fc7 14. AngularJS SSTI 15. React/Vue\u6846\u67b6\u7ed5\u8fc7 16...",
    "published": "2026-04-27T08:14:50",
    "modified": "2026-04-27T08:20:13",
    "type": "githubexploit",
    "title": "xss",
    "source": "",
    "references": "",
    "id": "DA2F564D-33BB-59E8-AFA3-F5767E564DB4",
    "bulletinFamily": "exploit",
    "cwe": null,
    "cvelist": [],
    "sourceData": "",
    "sourceHref": "",
    "cvss": {
        "score": 0,
        "severity": "NONE",
        "vector": "NONE",
        "version": "NONE"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "https://github.com/aalhea/xss",
    "category_name": "Exploit",
    "post_link": "",
    "product": "",
    "version": "",
    "vendor": "",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Description

Basic Information

💭 Join the Security Discussion ❌ Cancel Reply