HTML entities inside JavaScript URL

Shows which HTML entities are allowed inside the JavaScript protocol

Created by: hackvertor

Created on: Tuesday, June 25, 2024 at 11:56:40 AM

Updated on: Wednesday, May 28, 2025 at 5:08:10 PM

Detecting browser...

Category: Entity Parsing

Vector visibility: Public

Vector type: JS

Vector charset: UTF-8

Vector data 1: html_entities

Code used before fuzz:

const div = document.createElement('div');

Template used:

div.innerHTML='<a href="java$[data1]script:">test</a>';0x0D
div.querySelector('a').protocol === 'javascript:' && log('$[data1]')

Sample payloads

div.innerHTML='<a href="java&NewLine;script:">test</a>';0x0D
div.querySelector('a').protocol === 'javascript:' && alert('&NewLine;')

div.innerHTML='<a href="java&Tab;script:">test</a>';0x0D
div.querySelector('a').protocol === 'javascript:' && alert('&Tab;')