info/big-list-of-naughty-strings
1
0
Fork 0
mirror of https://github.com/minimaxir/big-list-of-naughty-strings.git synced 2025-09-25 13:19:15 +02:00
Code Issues Releases Wiki Activity

Merge pull request #8 from jlennox/master

Browse Source 
Decimal validation exceptions. Non-numeric JS numbers. IE7 backtick. Attribute escape XSS.
This commit is contained in:
Max Woolf
2015-08-10 14:08:51 -07:00
parent 5376bb15b7 746eab6d76
commit a3f9ce6613
1 changed files with 14 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

15
blns.txt
View File

@@ -26,7 +26,17 @@ $1.00
1/0 1/0
0/0 0/0
0.00 0.00
0..0
.
0.0.0
0,00
0,,0
,
0,0,0
999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999 999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999
NaN
Infinity
-Infinity
# Special Characters # Special Characters
# #
@@ -34,7 +44,7 @@ $1.00
,./;'[]\-= ,./;'[]\-=
<>?:"{}|_+ <>?:"{}|_+
!@#$%^&*() !@#$%^&*()`
# Unicode Symbols # Unicode Symbols
# #
@@ -171,6 +181,9 @@ Z̮̞̠͙͔ͅḀ̗̞͈̻̗Ḷ͙͎̯̹̞͓G̻O̭̗̮
<script>alert('hi')</script> <script>alert('hi')</script>
<img src=x onerror=alert('hi') /> <img src=x onerror=alert('hi') />
<svg><script>0<1>alert('XSS')</script> <svg><script>0<1>alert('XSS')</script>
"><script>alert(document.title)</script>
><script>alert(document.title)</script>
'><script>alert(document.title)</script>
# SQL Injection # SQL Injection
# #