Cross Site Scripting filter WAF bypass - Events: not only onmouseover
http://css-tricks.com/snippets/javascript/get-possible-dom-events/
http://stackoverflow.com/questions/9368538/getting-an-array-of-all-dom-events-possible
http://stackoverflow.com/questions/9368538/getting-an-array-of-all-dom-events-possible
You can get an array of all the events that start with "on" (e.g. onclick) by running this in the Console of Firefox.
[i for(i in document)].filter(function(i){return i.substring(0,2)=='on'&&(document[i]==null||typeof document[i]=='function');})
You'll get an array like this (Firefox 23):
["onreadystatechange", "onmouseenter", "onmouseleave", "onwheel", "oncopy", "oncut", "onpaste", "onbeforescriptexecute", "onafterscriptexecute", "onabort", "oncanplay", "oncanplaythrough", "onchange", "onclick", "oncontextmenu", "ondblclick", "ondrag", "ondragend", "ondragenter", "ondragleave", "ondragover", "ondragstart", "ondrop", "ondurationchange", "onemptied", "onended", "oninput", "oninvalid", "onkeydown", "onkeypress", "onkeyup", "onloadeddata", "onloadedmetadata", "onloadstart", "onmousedown", "onmousemove", "onmouseout", "onmouseover", "onmouseup", "onpause", "onplay", "onplaying", "onprogress", "onratechange", "onreset", "onseeked", "onseeking", "onselect", "onshow", "onstalled", "onsubmit", "onsuspend", "ontimeupdate", "onvolumechange", "onwaiting", "onmozfullscreenchange", "onmozfullscreenerror", "onmozpointerlockchange", "onmozpointerlockerror", "onblur", "onerror", "onfocus", "onload", "onscroll"]
Firefox, because it supports array comprehension which that little snippet uses.
See also http://help.dottoro.com/larrqqck.php
See also http://help.dottoro.com/larrqqck.php