[on\w+\s*]這個(gè)規(guī)則過(guò)濾了所有on事件,為了驗(yàn)證每個(gè)瀏覽器中有效的分隔符,可以使用fuzzing方法測(cè)試0×00到0xff,結(jié)果如下: IExplorer= [0x09,0x0B,0x0C,0x20,0x3B] Chrome = [0x09,0x20,0x28,0x2C,0x3B] Safari = [0x2C,0x3B] FireFox= [0x09,0x20,0x28,0x2C,0x3B] ...
www.dbjr.com.cn/hack/5224...html 2025-6-9