Character allowed after onerror event

I want to know which characters the browser accepts between an event handler and a equal sign.

Created by: InsertScript

Created on: Tuesday, April 2, 2024 at 9:47:31 AM

Updated on: Tuesday, March 11, 2025 at 9:55:43 PM

Vector type: XSS

Vector charset: UTF-8

Template used:
<img src=x onerror$[chr]=log($[i])>

Your browser was detected as:

Detecting... Detecting... Detecting... Detecting...

Sample payloads

<img src=x onerror =alert(9)>

<img src=x onerror
=alert(10)>

<img src=x onerror=alert(12)>

<img src=x onerror
=alert(13)>

<img src=x onerror =alert(32)>

Chrome 123.0.0.0 Unknown Unknown

Updated

Sun Apr 14 2024

Found 5 results

Show differences only?

Filter out alphanumeric

Sort ascending

Firefox 124.0 Unknown Unknown

Updated

Sun Apr 14 2024

Found 5 results

Show differences only?

Filter out alphanumeric

Sort ascending

Safari 17.4 Unknown Unknown

Updated

Sun Apr 14 2024

Found 5 results

Show differences only?

Filter out alphanumeric

Sort ascending