Featured vector

Chrome 0.0
<!-- sample vector --> <script> alert(1)0x3e0x3e hax</script>

Fuzz vector cloud

3,386,006 Successful fuzzes

Fuzz Database


9.0
Vector Created By
Entities allowed with no semi colon @garethheyes
Replacement for s in script tag @blubbfiction
Replacement for lt in tag @blubbfiction
Characters that close a quote @0xAli
Uncode sequences generating illegitimate ASCII @0x6D6172696F
Characters not encoded by encodeURIComponent @shafigullin
Characters not encoded by encodeURI @shafigullin
Characters allowed after script @garethheyes
Characters syntactically equivalent to colon in a URI @_cweb
Characters breaking JavaScript Regex delimiter @0x6D6172696F
Escape from attribute a closing tag @shafigullin
Characters in script inside XML elements 004 @0x6D6172696F
Characters in script inside XML elements 001 @0x6D6172696F
Space characters in RegExp @shafigullin
Characters allowed for padding in a data URI 003 @0x6D6172696F
Characters allowed for padding in a data URI 001 @0x6D6172696F
Characters trimmed my trim @shafigullin
Characters before paren in Javascript call @garethheyes
Characters before img @garethheyes
Characters before script @garethheyes
Characters allowed after attribute name @garethheyes
Characters that close JS Comments @garethheyes
Characters allowed before protocol in js url @garethheyes
Characters allowed before colon in js url @garethheyes
Characters allowed before CSS properties @garethheyes
Characters allowed before a JavaScript function @garethheyes
Characters that close a HTML comment @garethheyes
Characters allowed before attribute name @garethheyes