Scribd
Upload
14K views3 pages

XSS Dorks List 2017 - Finding XSS Vulnerable Websites - HowTechHack

This document contains 73 potential XSS dorks that could be used to search for and find websites vulnerable to cross-site scripting attacks. The dorks include common PHP parameters and strings that may allow XSS payloads to be injected and executed on vulnerable sites.

Uploaded by

Muchammad Rizaldy Fachrullah
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
14K views3 pages

XSS Dorks List 2017 - Finding XSS Vulnerable Websites - HowTechHack

This document contains 73 potential XSS dorks that could be used to search for and find websites vulnerable to cross-site scripting attacks. The dorks include common PHP parameters and strings that may allow XSS payloads to be injected and executed on vulnerable sites.

Uploaded by

Muchammad Rizaldy Fachrullah
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 3

XSS Dorks List 2017 - Finding XSS Vulnerable Websites

1. /2wayvideochat/index.php?r=

2. /Property-Cpanel.html?pid= /Property-Cpanel.html?pid=

3. /elms/subscribe.php?course_id= /elms/subscribe.php?course_id=

4. /gen_confirm.php?errmsg= /gen_confirm.php?errmsg=

5. /hexjector.php?site= /hexjector.php?site=

6. /index.php?option=com_easygb&Itemid=

7. /index.php?view=help&faq=1&ref=

8. /index.php?view=help&faq=1&ref=

9. /info.asp?page=fullstory&key=1&news_type=news&onvan=

10. /info.asp?page=fullstory&key=1&news_type=news&onvan=

11. /main.php?sid= /main.php?sid=

12. /news.php?id= /news.php?id=

13. /notice.php?msg= /notice.php?msg=

14. /preaspjobboard//Employee/emp_login.asp?msg1=

15. /schoolmv2/html/studentmain.php?session=

16. /search.php?search_keywords= /search.php?search_keywords=

17. /ser/parohija.php?id= /ser/parohija.php?id=

18. /showproperty.php?id= /showproperty.php?id=

19. /site_search.php?sfunction= /site_search.php?sfunction=

20. /strane/pas.php?id= /strane/pas.php?id=

21. /vehicle/buy_do_search/?order_direction=

22. /view.php?PID= /view.php?PID=

23. /winners.php?year=2008&type= /winners.php?year=2008&type=

24. /winners.php?year=2008&type= /winners.php?year=2008&type=

25. index.php?option=com_reservations&task=askope&nidser=2&namser=
"com_reservations"

www.HowTechHack.com Page 1
XSS Dorks List 2017 - Finding XSS Vulnerable Websites
26. index.php?option=com_reservations&task=askope&nidser=2&namser=
com_reservations

27. index.php?option=com_reservations&task=askope&nidser=2&namser= "com_reservations"

28. intext:"Website by Mile High Creative"

29. intext:Website by Mile High Creative

30. inurl:".php?author="

31. inurl:".php?cat="

32. inurl:".php?cmd="

33. inurl:".php?feedback="

34. inurl:".php?feedback="

35. inurl:".php?file="

36. inurl:".php?from="

37. inurl:".php?keyword="

38. inurl:".php?keyword="

39. inurl:".php?mail="

40. inurl:".php?max="

41. inurl:".php?pass="

42. inurl:".php?q="

43. inurl:".php?query="

44. inurl:".php?search="

45. inurl:".php?searchstring="

46. inurl:".php?searchstring="

47. inurl:".php?tag="

48. inurl:".php?txt="

49. inurl:".php?vote="

50. inurl:".php?years="

www.HowTechHack.com Page 2
XSS Dorks List 2017 - Finding XSS Vulnerable Websites

51. inurl:".php?z="

52. inurl:"contentPage.php?id="

53. inurl:"displayResource.php?id="

54. inurl:.com/search.asp

55. inurl:/poll/default.asp?catid=

56. inurl:/poll/default.asp?catid=

57. inurl:/products/classified/headersearch.php?sid=

58. inurl:/products/orkutclone/scrapbook.php?id=

59. inurl:/search_results.php?search=

60. inurl:/search_results.php?search=

61. inurl:/search_results.php?search=Search&k=

62. inurl:/search_results.php?search=Search&k=

63. inurl:/search_results.php?search=

64. inurl:com_feedpostold/feedpost.php?url=

65. inurl:com_feedpostold/feedpost.php?url=

66. inurl:headersearch.php?sid=

67. inurl:headersearch.php?sid=

68. inurl:scrapbook.php?id=

69. inurl:scrapbook.php?id=

70. inurl:search.php?q=

71. inurl:contentPage.php?id=

72. inurl:displayResource.php?id=

73. pages/match_report.php?mid= pages/match_report.php?mid=

www.HowTechHack.com Page 3

You might also like