So, IMG tags in BBCode fail to sanitize " and ' from the URL you insert into it. You can use this to insert additional attributes into the HTML IMG tag that it generates, which can then be used to execute Javascript code. I found it to work with the "onanimationstart" tag, since that doesn't get filtered out by the forums.
Here, I create a blank animation in CSS called "x", and then set the onanimationstart attribute in the IMG tag, and also the style attribute that sets the animation to "x".
It is important that quotes are stored as HTML character codes, single and double (' and ", respectively), or else it will not work.
pls be safe with this
- Code:
<style>@keyframes x{}</style>
[img]"onanimationstart="javascript:[INSERT CODE HERE]" style="animation: x;"[/img]
Here, I create a blank animation in CSS called "x", and then set the onanimationstart attribute in the IMG tag, and also the style attribute that sets the animation to "x".
It is important that quotes are stored as HTML character codes, single and double (' and ", respectively), or else it will not work.
pls be safe with this