elacruz88
12/2/2013 - 4:39 PM
From http://www.thisislegal.com/tutorials/7 script injection
From http://www.thisislegal.com/tutorials/7 script injection
javascript:alert(document.cookie);
javascript:void(document.cookie="Field = myValue");
javascript:void(document.cookie="Authorized=yes");
javascript:alert(document.forms[0].to.value);
javascript:void(document.forms[0].to.value="email@nhacks.com");
javascript:alert(document.forms[0].name.options[0].value=”peach”)