Shazzer logo
Login

HTML entities before JavaScript URL

Chrome logo 2
Firefox logo 2
Edge logo 2
Safari logo 2

Shows which HTML entities are allowed before the JavaScript protocol

hackvertor
Created byhackvertor
Created Jun 25, 2024
Updated May 28, 2025

Tweet
Detecting browser...
CategoryEntity Parsing
VisibilityPublic
TypeJS
CharsetUTF-8
$[data1] placeholderhtml_entities
Code used before fuzz:
const div = document.createElement('div');
Template used:
div.innerHTML='<a href="$[data1]javascript:">test</a>';0x0D
div.querySelector('a').protocol === 'javascript:' && log('$[data1]')

Sample payloads

div.innerHTML='<a href="&NewLine;javascript:">test</a>';0x0D
div.querySelector('a').protocol === 'javascript:' && alert('&NewLine;')
div.innerHTML='<a href="&Tab;javascript:">test</a>';0x0D
div.querySelector('a').protocol === 'javascript:' && alert('&Tab;')

Fuzz results

Chrome logo
Chrome 144.0.0.0 desktop macOS 10.15.7
Updated30 Jan 2026
Found 2 results
Loading...
Chrome logo
Chrome 143.0.0.0 desktop Windows NT 10.0older version
Updated30 Jan 2026
Found 2 results
Loading...
Firefox logo
Firefox 147.0 desktop Windows NT 10.0
Updated29 Jan 2026
Found 2 results
Loading...
Edge logo
Microsoft Edge 144.0.0.0 desktop Windows NT 10.0
Updated30 Jan 2026
Found 2 results
Loading...
Safari logo
Safari 17.5 mobile iOS 17.5.1
Updated25 Jun 2024
Found 2 results
Loading...

Distributed Fuzzing

Enabled:
Status:disconnected
Your browser automatically contributes to distributed fuzzing when idle.