Shazzer logo
Login

HTML entities inside JavaScript URL

Chrome logo 2
Firefox logo 2
Edge logo 2
Safari logo 2

Shows which HTML entities are allowed inside the JavaScript protocol

hackvertor
Created byhackvertor
Created Jun 25, 2024
Updated May 28, 2025

Tweet
Detecting browser...
CategoryEntity Parsing
VisibilityPublic
TypeJS
CharsetUTF-8
$[data1] placeholderhtml_entities
Code used before fuzz:
const div = document.createElement('div');
Template used:
div.innerHTML='<a href="java$[data1]script:">test</a>';0x0D
div.querySelector('a').protocol === 'javascript:' && log('$[data1]')

Sample payloads

div.innerHTML='<a href="java&NewLine;script:">test</a>';0x0D
div.querySelector('a').protocol === 'javascript:' && alert('&NewLine;')
div.innerHTML='<a href="java&Tab;script:">test</a>';0x0D
div.querySelector('a').protocol === 'javascript:' && alert('&Tab;')

Fuzz results

Chrome logo
Chrome 145.0.0.0 desktop Windows NT 10.0
Updated16 Feb 2026
Found 2 results
Loading...
Chrome logo
Chrome 126.0.0.0 desktop macOS 10.15.7older version
Updated25 Jun 2024
Found 2 results
Loading...
Firefox logo
Firefox 148.0 desktop Windows NT 10.0
Updated23 Feb 2026
Found 2 results
Loading...
Firefox logo
Firefox 127.0 desktop macOS 10.15older version
Updated25 Jun 2024
Found 2 results
Loading...
Edge logo
Microsoft Edge 145.0.0.0 desktop Windows NT 10.0
Updated17 Feb 2026
Found 2 results
Loading...
Safari logo
Safari 17.4 desktop macOS 10.15.7
Updated25 Jun 2024
Found 2 results
Loading...

Distributed Fuzzing

Enabled:
Status:disconnected
Your browser automatically contributes to distributed fuzzing when idle.