Characters allowed to break double quotes
Characters allowed to break double quotes in the action attribute
Created by: p3n7a90n
Created on: 6/30/2024, 12:02:09 PM
Updated on: 7/2/2024, 7:37:37 AM
Vector type: XSS
Template used:
<form id="test" action="aaa$[chr]onsubmit=alert(1)><input/type='submit'>
Code used after fuzz:
var form = document.getElementById("test");
if (typeof form.onsubmit === 'function') {
log(String.fromCharCode($[i]))
}
Your browser was detected as:
Detecting... Detecting... Detecting... Detecting...
Fuzz results
![Chrome logo](/_next/image?url=%2Flogos%2Fbrowsers%2Fchrome.png&w=64&q=75)
Chrome 122.0.0.0 desktop macOS 10.15.7
Found 1 result
Data |
---|
" |