🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List

• UpdatedJul 18, 2024

XssPayload List . Usage:

• UpdatedJan 15, 2020
• Python

xss漏洞模糊测试payload的最佳集合 2020版

• UpdatedMay 25, 2020

From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extras

• UpdatedFeb 18, 2020
• Python

PoC for XSS in org.webjars:swagger-ui [3.14.2, 3.36.2]

• UpdatedFeb 17, 2023
• Kotlin

alert(1) to win payloads

• UpdatedOct 12, 2018

Simple flask website to demonstrate reflected and stored XSS attacks.

• UpdatedNov 26, 2021
• CSS

A simple web application to learn about Cross-Site Scripting (XSS)

• UpdatedOct 1, 2020
• PHP

Proof-of-Concept exploit of CVE-2018-19131: Squid Proxy XSS via X.509 Certificate

• UpdatedNov 14, 2018
• Dockerfile

Automation of KNOXSS extension.

• UpdatedApr 12, 2019
• Python

PoC for XSS springfox-swagger-ui 2.9.1 to 3.0.0

• UpdatedFeb 17, 2023
• Java

An exploit and demonstration on how to exploit a Stored XSS vulnerability inhttps://anonstress.com.

• UpdatedNov 29, 2021
• Python

An ongoing curated collection of awesome XSS software, libraries, frameworks, learning tutorials & practical resources cross-site scripting.

• UpdatedFeb 2, 2022

This is a repo of my solution of one XSS challenge website (http://sudo.co.il/xss/) . This challenges may have different types of solutions. My solutions are not the only one. So, keep searching & keep sharing.

• UpdatedAug 20, 2023

XSS Bypass techniquies

• UpdatedMay 23, 2018

VanillaForum 2.6.3 allows stored XSS.

• UpdatedOct 1, 2022

• UpdatedAug 26, 2021
• Python

An exploit and demonstration on how to exploit a Stored XSS vulnerability inhttps://anonstress.com.

• UpdatedAug 12, 2023
• Python

Nginx + Modsecurity + Má configuração = Nego invadindo

• UpdatedOct 17, 2019
• Shell

IBM Maximo XSS Exploit

• UpdatedFeb 23, 2021