Skip to content

Instantly share code, notes, and snippets.

View soaj1664's full-sized avatar

Ashar Javed soaj1664

38 followers · 3 following
  • '">><marquee><img src=x onerror=confirm(1)></marquee>"></plaintext\></| \><plaintext/onmouseover=prompt(1)>"><script>alert(document.domain) </script>@gmail.com<isindex formaction=javascript:alert(/XSS/) type=submit>'-- >"></script><script>alert(1) </s
  • '">><marquee><img src=x onerror=confirm(1)></marquee>"></plaintext\></| \><plaintext/onmouseover=prompt(1)>"><script>alert(document.domain) </script>@gmail.com<isindex formaction=javascript:alert(/XSS/) type=submit>'-- >"></script><script>alert(1) </s
View GitHub Profile
@mbijon
mbijon / xss_clean.php
Last active November 1, 2022 03:23
XSS filtering in PHP (cleans various UTF encodings & nested exploits)
<?php
/*
* XSS filter, recursively handles HTML tags & UTF encoding
* Optionally handles base64 encoding
*
* ***DEPRECATION RECOMMENDED*** Not updated or maintained since 2011
* A MAINTAINED & BETTER ALTERNATIVE => kses
* https://github.com/RichardVasquez/kses/
*
* This was built from numerous sources