Shazzer logo

    Characters not urlencoded when using the credentials part of the URL

    This vector shows which characters are not encoded in the credentials part of the URL.

    Created by: hackvertor

    Created on: Tuesday, May 28, 2024 at 10:11:36 PM

    Updated on: Saturday, August 24, 2024 at 2:54:56 PM

    Vector type: JS

    Code used before fuzz:
    const anchor = document.createElement('a');
    Template used:
    anchor.href='//example.com';
anchor.username = String.fromCodePoint($[i]);
if(!/%/.test(anchor+''))log($[i])
    Your browser was detected as:
    Detecting... Detecting... Detecting... Detecting...

    Sample payloads

    anchor.href='//example.com';
anchor.username = String.String.fromCodePoint(33);
if(!/%/.test(anchor+''))alert(33)
    anchor.href='//example.com';
anchor.username = String.String.fromCodePoint(36);
if(!/%/.test(anchor+''))alert(36)
    anchor.href='//example.com';
anchor.username = String.String.fromCodePoint(38);
if(!/%/.test(anchor+''))alert(38)
    anchor.href='//example.com';
anchor.username = String.String.fromCodePoint(40);
if(!/%/.test(anchor+''))alert(40)
    anchor.href='//example.com';
anchor.username = String.String.fromCodePoint(41);
if(!/%/.test(anchor+''))alert(41)
    anchor.href='//example.com';
anchor.username = String.String.fromCodePoint(42);
if(!/%/.test(anchor+''))alert(42)
    anchor.href='//example.com';
anchor.username = String.String.fromCodePoint(43);
if(!/%/.test(anchor+''))alert(43)
    anchor.href='//example.com';
anchor.username = String.String.fromCodePoint(44);
if(!/%/.test(anchor+''))alert(44)
    anchor.href='//example.com';
anchor.username = String.String.fromCodePoint(45);
if(!/%/.test(anchor+''))alert(45)
    anchor.href='//example.com';
anchor.username = String.String.fromCodePoint(46);
if(!/%/.test(anchor+''))alert(46)
    anchor.href='//example.com';
anchor.username = String.String.fromCodePoint(48);
if(!/%/.test(anchor+''))alert(48)
    anchor.href='//example.com';
anchor.username = String.String.fromCodePoint(49);
if(!/%/.test(anchor+''))alert(49)
    anchor.href='//example.com';
anchor.username = String.String.fromCodePoint(50);
if(!/%/.test(anchor+''))alert(50)
    anchor.href='//example.com';
anchor.username = String.String.fromCodePoint(51);
if(!/%/.test(anchor+''))alert(51)
    anchor.href='//example.com';
anchor.username = String.String.fromCodePoint(52);
if(!/%/.test(anchor+''))alert(52)
    anchor.href='//example.com';
anchor.username = String.String.fromCodePoint(53);
if(!/%/.test(anchor+''))alert(53)
    anchor.href='//example.com';
anchor.username = String.String.fromCodePoint(54);
if(!/%/.test(anchor+''))alert(54)
    anchor.href='//example.com';
anchor.username = String.String.fromCodePoint(55);
if(!/%/.test(anchor+''))alert(55)
    anchor.href='//example.com';
anchor.username = String.String.fromCodePoint(56);
if(!/%/.test(anchor+''))alert(56)
    anchor.href='//example.com';
anchor.username = String.String.fromCodePoint(57);
if(!/%/.test(anchor+''))alert(57)

    Fuzz results

    Chrome logo
    Chrome 125.0.0.0 Unknown Unknown
    Found 74 results
    DecHexChr
    3321!
    DecHexChr
    3624$
    DecHexChr
    3826&
    DecHexChr
    4028(
    DecHexChr
    4129)
    DecHexChr
    422a*
    DecHexChr
    432b+
    DecHexChr
    442c,
    DecHexChr
    452d-
    DecHexChr
    462e.
    DecHexChr
    48300
    DecHexChr
    49311
    DecHexChr
    50322
    DecHexChr
    51333
    DecHexChr
    52344
    DecHexChr
    53355
    DecHexChr
    54366
    DecHexChr
    55377
    DecHexChr
    56388
    DecHexChr
    57399
    DecHexChr
    6541A
    DecHexChr
    6642B
    DecHexChr
    6743C
    DecHexChr
    6844D
    DecHexChr
    6945E
    DecHexChr
    7046F
    DecHexChr
    7147G
    DecHexChr
    7248H
    DecHexChr
    7349I
    DecHexChr
    744aJ
    DecHexChr
    754bK
    DecHexChr
    764cL
    DecHexChr
    774dM
    DecHexChr
    784eN
    DecHexChr
    794fO
    DecHexChr
    8050P
    DecHexChr
    8151Q
    DecHexChr
    8252R
    DecHexChr
    8353S
    DecHexChr
    8454T
    DecHexChr
    8555U
    DecHexChr
    8656V
    DecHexChr
    8757W
    DecHexChr
    8858X
    DecHexChr
    8959Y
    DecHexChr
    905aZ
    DecHexChr
    955f_
    DecHexChr
    9761a
    DecHexChr
    9862b
    DecHexChr
    9963c
    DecHexChr
    10064d
    DecHexChr
    10165e
    DecHexChr
    10266f
    DecHexChr
    10367g
    DecHexChr
    10468h
    DecHexChr
    10569i
    DecHexChr
    1066aj
    DecHexChr
    1076bk
    DecHexChr
    1086cl
    DecHexChr
    1096dm
    DecHexChr
    1106en
    DecHexChr
    1116fo
    DecHexChr
    11270p
    DecHexChr
    11371q
    DecHexChr
    11472r
    DecHexChr
    11573s
    DecHexChr
    11674t
    DecHexChr
    11775u
    DecHexChr
    11876v
    DecHexChr
    11977w
    DecHexChr
    12078x
    DecHexChr
    12179y
    DecHexChr
    1227az
    DecHexChr
    1267e~
    Firefox logo
    Firefox 126.0 Unknown Unknown
    Found 75 results
    DecHexChr
    3321!
    DecHexChr
    3624$
    DecHexChr
    3826&
    DecHexChr
    3927'
    DecHexChr
    4028(
    DecHexChr
    4129)
    DecHexChr
    422a*
    DecHexChr
    432b+
    DecHexChr
    442c,
    DecHexChr
    452d-
    DecHexChr
    462e.
    DecHexChr
    48300
    DecHexChr
    49311
    DecHexChr
    50322
    DecHexChr
    51333
    DecHexChr
    52344
    DecHexChr
    53355
    DecHexChr
    54366
    DecHexChr
    55377
    DecHexChr
    56388
    DecHexChr
    57399
    DecHexChr
    6541A
    DecHexChr
    6642B
    DecHexChr
    6743C
    DecHexChr
    6844D
    DecHexChr
    6945E
    DecHexChr
    7046F
    DecHexChr
    7147G
    DecHexChr
    7248H
    DecHexChr
    7349I
    DecHexChr
    744aJ
    DecHexChr
    754bK
    DecHexChr
    764cL
    DecHexChr
    774dM
    DecHexChr
    784eN
    DecHexChr
    794fO
    DecHexChr
    8050P
    DecHexChr
    8151Q
    DecHexChr
    8252R
    DecHexChr
    8353S
    DecHexChr
    8454T
    DecHexChr
    8555U
    DecHexChr
    8656V
    DecHexChr
    8757W
    DecHexChr
    8858X
    DecHexChr
    8959Y
    DecHexChr
    905aZ
    DecHexChr
    955f_
    DecHexChr
    9761a
    DecHexChr
    9862b
    DecHexChr
    9963c
    DecHexChr
    10064d
    DecHexChr
    10165e
    DecHexChr
    10266f
    DecHexChr
    10367g
    DecHexChr
    10468h
    DecHexChr
    10569i
    DecHexChr
    1066aj
    DecHexChr
    1076bk
    DecHexChr
    1086cl
    DecHexChr
    1096dm
    DecHexChr
    1106en
    DecHexChr
    1116fo
    DecHexChr
    11270p
    DecHexChr
    11371q
    DecHexChr
    11472r
    DecHexChr
    11573s
    DecHexChr
    11674t
    DecHexChr
    11775u
    DecHexChr
    11876v
    DecHexChr
    11977w
    DecHexChr
    12078x
    DecHexChr
    12179y
    DecHexChr
    1227az
    DecHexChr
    1267e~
    Safari logo
    Safari 17.4 Unknown Unknown
    Found 75 results
    DecHexChr
    3321!
    DecHexChr
    3624$
    DecHexChr
    3826&
    DecHexChr
    3927'
    DecHexChr
    4028(
    DecHexChr
    4129)
    DecHexChr
    422a*
    DecHexChr
    432b+
    DecHexChr
    442c,
    DecHexChr
    452d-
    DecHexChr
    462e.
    DecHexChr
    48300
    DecHexChr
    49311
    DecHexChr
    50322
    DecHexChr
    51333
    DecHexChr
    52344
    DecHexChr
    53355
    DecHexChr
    54366
    DecHexChr
    55377
    DecHexChr
    56388
    DecHexChr
    57399
    DecHexChr
    6541A
    DecHexChr
    6642B
    DecHexChr
    6743C
    DecHexChr
    6844D
    DecHexChr
    6945E
    DecHexChr
    7046F
    DecHexChr
    7147G
    DecHexChr
    7248H
    DecHexChr
    7349I
    DecHexChr
    744aJ
    DecHexChr
    754bK
    DecHexChr
    764cL
    DecHexChr
    774dM
    DecHexChr
    784eN
    DecHexChr
    794fO
    DecHexChr
    8050P
    DecHexChr
    8151Q
    DecHexChr
    8252R
    DecHexChr
    8353S
    DecHexChr
    8454T
    DecHexChr
    8555U
    DecHexChr
    8656V
    DecHexChr
    8757W
    DecHexChr
    8858X
    DecHexChr
    8959Y
    DecHexChr
    905aZ
    DecHexChr
    955f_
    DecHexChr
    9761a
    DecHexChr
    9862b
    DecHexChr
    9963c
    DecHexChr
    10064d
    DecHexChr
    10165e
    DecHexChr
    10266f
    DecHexChr
    10367g
    DecHexChr
    10468h
    DecHexChr
    10569i
    DecHexChr
    1066aj
    DecHexChr
    1076bk
    DecHexChr
    1086cl
    DecHexChr
    1096dm
    DecHexChr
    1106en
    DecHexChr
    1116fo
    DecHexChr
    11270p
    DecHexChr
    11371q
    DecHexChr
    11472r
    DecHexChr
    11573s
    DecHexChr
    11674t
    DecHexChr
    11775u
    DecHexChr
    11876v
    DecHexChr
    11977w
    DecHexChr
    12078x
    DecHexChr
    12179y
    DecHexChr
    1227az
    DecHexChr
    1267e~
    Chrome logo
    Chrome 125.0.0.0 desktop macOS 10.15.7
    Found 74 results
    DecHexChr
    3321!
    DecHexChr
    3624$
    DecHexChr
    3826&
    DecHexChr
    4028(
    DecHexChr
    4129)
    DecHexChr
    422a*
    DecHexChr
    432b+
    DecHexChr
    442c,
    DecHexChr
    452d-
    DecHexChr
    462e.
    DecHexChr
    48300
    DecHexChr
    49311
    DecHexChr
    50322
    DecHexChr
    51333
    DecHexChr
    52344
    DecHexChr
    53355
    DecHexChr
    54366
    DecHexChr
    55377
    DecHexChr
    56388
    DecHexChr
    57399
    DecHexChr
    6541A
    DecHexChr
    6642B
    DecHexChr
    6743C
    DecHexChr
    6844D
    DecHexChr
    6945E
    DecHexChr
    7046F
    DecHexChr
    7147G
    DecHexChr
    7248H
    DecHexChr
    7349I
    DecHexChr
    744aJ
    DecHexChr
    754bK
    DecHexChr
    764cL
    DecHexChr
    774dM
    DecHexChr
    784eN
    DecHexChr
    794fO
    DecHexChr
    8050P
    DecHexChr
    8151Q
    DecHexChr
    8252R
    DecHexChr
    8353S
    DecHexChr
    8454T
    DecHexChr
    8555U
    DecHexChr
    8656V
    DecHexChr
    8757W
    DecHexChr
    8858X
    DecHexChr
    8959Y
    DecHexChr
    905aZ
    DecHexChr
    955f_
    DecHexChr
    9761a
    DecHexChr
    9862b
    DecHexChr
    9963c
    DecHexChr
    10064d
    DecHexChr
    10165e
    DecHexChr
    10266f
    DecHexChr
    10367g
    DecHexChr
    10468h
    DecHexChr
    10569i
    DecHexChr
    1066aj
    DecHexChr
    1076bk
    DecHexChr
    1086cl
    DecHexChr
    1096dm
    DecHexChr
    1106en
    DecHexChr
    1116fo
    DecHexChr
    11270p
    DecHexChr
    11371q
    DecHexChr
    11472r
    DecHexChr
    11573s
    DecHexChr
    11674t
    DecHexChr
    11775u
    DecHexChr
    11876v
    DecHexChr
    11977w
    DecHexChr
    12078x
    DecHexChr
    12179y
    DecHexChr
    1227az
    DecHexChr
    1267e~
    Safari logo
    Safari 17.5 mobile iOS 17.5.1
    Found 75 results
    DecHexChr
    3321!
    DecHexChr
    3624$
    DecHexChr
    3826&
    DecHexChr
    3927'
    DecHexChr
    4028(
    DecHexChr
    4129)
    DecHexChr
    422a*
    DecHexChr
    432b+
    DecHexChr
    442c,
    DecHexChr
    452d-
    DecHexChr
    462e.
    DecHexChr
    48300
    DecHexChr
    49311
    DecHexChr
    50322
    DecHexChr
    51333
    DecHexChr
    52344
    DecHexChr
    53355
    DecHexChr
    54366
    DecHexChr
    55377
    DecHexChr
    56388
    DecHexChr
    57399
    DecHexChr
    6541A
    DecHexChr
    6642B
    DecHexChr
    6743C
    DecHexChr
    6844D
    DecHexChr
    6945E
    DecHexChr
    7046F
    DecHexChr
    7147G
    DecHexChr
    7248H
    DecHexChr
    7349I
    DecHexChr
    744aJ
    DecHexChr
    754bK
    DecHexChr
    764cL
    DecHexChr
    774dM
    DecHexChr
    784eN
    DecHexChr
    794fO
    DecHexChr
    8050P
    DecHexChr
    8151Q
    DecHexChr
    8252R
    DecHexChr
    8353S
    DecHexChr
    8454T
    DecHexChr
    8555U
    DecHexChr
    8656V
    DecHexChr
    8757W
    DecHexChr
    8858X
    DecHexChr
    8959Y
    DecHexChr
    905aZ
    DecHexChr
    955f_
    DecHexChr
    9761a
    DecHexChr
    9862b
    DecHexChr
    9963c
    DecHexChr
    10064d
    DecHexChr
    10165e
    DecHexChr
    10266f
    DecHexChr
    10367g
    DecHexChr
    10468h
    DecHexChr
    10569i
    DecHexChr
    1066aj
    DecHexChr
    1076bk
    DecHexChr
    1086cl
    DecHexChr
    1096dm
    DecHexChr
    1106en
    DecHexChr
    1116fo
    DecHexChr
    11270p
    DecHexChr
    11371q
    DecHexChr
    11472r
    DecHexChr
    11573s
    DecHexChr
    11674t
    DecHexChr
    11775u
    DecHexChr
    11876v
    DecHexChr
    11977w
    DecHexChr
    12078x
    DecHexChr
    12179y
    DecHexChr
    1227az
    DecHexChr
    1267e~