6:["$","div",null,{"className":"flex flex-col lg:flex-row","children":["$","div",null,{"children":[["$","div",null,{"className":"grid grid-cols-1 md:grid-cols-2 xl:grid-cols-2 gap-3","children":[["$","div",null,{"children":[["$","div",null,{"className":"mb-4","children":[["$","h1",null,{"className":"text-3xl font-bold break-words tracking-tight","children":"Characters that can break out of an inline style with single quotes"}],["$","div",null,{"className":"flex flex-col gap-2","children":[false,["$","div",null,{"className":"flex flex-row","children":[["$","div","browserIcon0",{"className":"mt-5 mr-5 relative inline-block tooltip tooltip-bottom","data-tip":"Chrome 145.0.0.0 - Updated 1d ago","children":[["$","$L16",null,{"src":"/logos/browsers/chrome.png","width":32,"height":32,"alt":"Chrome logo","className":"","priority":true}]," ",false," ",false," ",false," ",["$","span",null,{"className":"badge badge-secondary absolute top-0 right-0 translate-x-1/2 -translate-y-1/2","children":"1"}]]}],["$","div","browserIcon1",{"className":"mt-5 mr-5 relative inline-block tooltip tooltip-bottom","data-tip":"Firefox 147.0 - Updated 17d ago","children":[false," ",["$","$L16",null,{"src":"/logos/browsers/firefox.png","width":32,"height":32,"alt":"Firefox logo","className":"","priority":true}]," ",false," ",false," ",["$","span",null,{"className":"badge badge-secondary absolute top-0 right-0 translate-x-1/2 -translate-y-1/2","children":"1"}]]}],["$","div","browserIcon2",{"className":"mt-5 mr-5 relative inline-block tooltip tooltip-bottom","data-tip":"Microsoft Edge 145.0.0.0 - Updated 6h ago","children":[false," ",false," ",false," ",["$","$L16",null,{"src":"/logos/browsers/edge.png","width":32,"height":32,"alt":"Edge logo","className":"","priority":true}]," ",["$","span",null,{"className":"badge badge-secondary absolute top-0 right-0 translate-x-1/2 -translate-y-1/2","children":"1"}]]}]]}]]}]]}],["$","p",null,{"className":"text-base-content/80 break-words leading-relaxed mb-6","children":"Characters that can break out of an inline style with single quotes"}],["$","div",null,{"className":"flex items-center gap-3 mb-6 p-3 bg-base-200 rounded-lg w-fit","children":[["$","div",null,{"className":"avatar","children":["$","div",null,{"className":"w-10 rounded-full","children":["$","$L16",null,{"src":"https://avatars.githubusercontent.com/u/120345772?v=4","width":40,"height":40,"alt":"0xdef1ant","className":"rounded-full"}]}]}],["$","div",null,{"className":"flex flex-col","children":[["$","span",null,{"className":"text-xs text-base-content/60 uppercase tracking-wide","children":"Created by"}],["$","$L1b","6615f079272f664a50f7aa49",{"href":"/profile?id=6615f079272f664a50f7aa49","className":"link link-hover font-semibold","children":"0xdef1ant"}]]}],null]}],["$","div",null,{"className":"flex flex-wrap gap-4 text-sm text-base-content/70 mb-6","children":[["$","div",null,{"className":"flex items-center gap-2","children":[["$","svg",null,{"xmlns":"http://www.w3.org/2000/svg","className":"h-4 w-4","fill":"none","viewBox":"0 0 24 24","stroke":"currentColor","children":["$","path",null,{"strokeLinecap":"round","strokeLinejoin":"round","strokeWidth":2,"d":"M8 7V3m8 4V3m-9 8h10M5 21h14a2 2 0 002-2V7a2 2 0 00-2-2H5a2 2 0 00-2 2v12a2 2 0 002 2z"}]}],["$","span",null,{"children":["Created"," ","Jul 13, 2024"]}]]}],["$","div",null,{"className":"flex items-center gap-2","children":[["$","svg",null,{"xmlns":"http://www.w3.org/2000/svg","className":"h-4 w-4","fill":"none","viewBox":"0 0 24 24","stroke":"currentColor","children":["$","path",null,{"strokeLinecap":"round","strokeLinejoin":"round","strokeWidth":2,"d":"M4 4v5h.582m15.356 2A8.001 8.001 0 004.582 9m0 0H9m11 11v-5h-.581m0 0a8.003 8.003 0 01-15.357-2m15.357 2H15"}]}],["$","span",null,{"children":["Updated"," ","May 27, 2025"]}]]}]]}],["$","div",null,{"className":"space-y-4","children":[["$","div",null,{"className":"flex flex-wrap gap-2","children":[["$","$L1c",null,{"data1":"","data2":"","end":65535,"initCode":"","afterCode":"let a = document.getElementById(\"test\");\r\nif (typeof a.onload === 'function') {\r\nlog(String.fromCharCode($[i]))\r\n }","template":"

hello

","vectorType":"XSS","fuzzToken":"f0383a145eacbe44a31c5caf6fee2e18","initCode":"","afterCode":"let a = document.getElementById(\"test\");\r\nif (typeof a.onload === 'function') {\r\nlog(String.fromCharCode($[i]))\r\n }","data1":"","data2":"","csrfToken":"AAiIWJvJZx2QfD+bXvGKf7vwtOwMY9SOgZSJRETJ","id":"6692d78ea334eda48afdc5a0","doRedirect":true,"charset":"UTF-8"}]]}],["$","div",null,{"className":"divider my-2"}],["$","div",null,{"className":"flex flex-wrap items-center gap-2","children":[["$","button",null,{"type":"button","className":"btn btn-secondary","disabled":true,"children":[["$","svg",null,{"xmlns":"http://www.w3.org/2000/svg","className":"h-4 w-4","fill":"none","viewBox":"0 0 24 24","stroke":"currentColor","children":["$","path",null,{"strokeLinecap":"round","strokeLinejoin":"round","strokeWidth":2,"d":"M11 5H6a2 2 0 00-2 2v11a2 2 0 002 2h11a2 2 0 002-2v-5m-1.414-9.414a2 2 0 112.828 2.828L11.828 15H9v-2.828l8.586-8.586z"}]}],"Edit"]}],["$","$L1b",null,{"href":"/vectors/new/?id=6692d78ea334eda48afdc5a0","children":["$","button",null,{"type":"button","className":"btn btn-secondary","children":[["$","svg",null,{"xmlns":"http://www.w3.org/2000/svg","className":"h-4 w-4","fill":"none","viewBox":"0 0 24 24","stroke":"currentColor","children":["$","path",null,{"strokeLinecap":"round","strokeLinejoin":"round","strokeWidth":2,"d":"M8 16H6a2 2 0 01-2-2V6a2 2 0 012-2h8a2 2 0 012 2v2m-6 12h8a2 2 0 002-2v-8a2 2 0 00-2-2h-8a2 2 0 00-2 2v8a2 2 0 002 2z"}]}],"Fork"]}]}],["$","$L1e",null,{"fuzzToken":"f0383a145eacbe44a31c5caf6fee2e18"}],["$","$L1f",null,{"text":"Characters that can break out of an inline style with single quotes"}],["$","$L20",null,{"disabled":true,"toggleLike":"$h21","id":"6692d78ea334eda48afdc5a0","likeCount":0,"currentLikeStatus":false,"csrfToken":"AAiIWJvJZx2QfD+bXvGKf7vwtOwMY9SOgZSJRETJ"}]]}]]}]]}],["$","div",null,{"children":[["$","div",null,{"className":"mb-5","children":["$","$L22",null,{}]}],["$","div",null,{"className":"bg-base-200 rounded-lg p-4 mb-5","children":["$","div",null,{"className":"flex flex-wrap gap-3 lg:grid lg:grid-cols-2 justify-items-start","children":[["$","div",null,{"className":"flex flex-col","children":[["$","span",null,{"className":"text-xs text-base-content/60 uppercase tracking-wide mb-1","children":"Category"}],["$","span",null,{"className":"badge badge-primary","children":"CSS Parsing"}]]}],["$","div",null,{"className":"flex flex-col","children":[["$","span",null,{"className":"text-xs text-base-content/60 uppercase tracking-wide mb-1","children":"Visibility"}],["$","span",null,{"className":"badge badge-primary","children":"Public"}]]}],["$","div",null,{"className":"flex flex-col","children":[["$","span",null,{"className":"text-xs text-base-content/60 uppercase tracking-wide mb-1","children":"Type"}],["$","span",null,{"className":"badge badge-primary","children":"XSS"}]]}],["$","div",null,{"className":"flex flex-col","children":[["$","span",null,{"className":"text-xs text-base-content/60 uppercase tracking-wide mb-1","children":"Charset"}],["$","span",null,{"className":"badge badge-primary","children":"UTF-8"}]]}],"",""]}]}],"",["$","div",null,{"className":"mb-5","children":["Template used:",["$","br",null,{}],["$","$L23",null,{"code":"

hello

"]}]]}],["$","div",null,{"className":"grid grid-cols-1 md:grid-cols-2 xl:grid-cols-2 gap-3 mt-5","children":["$","$L26",null,{"vector":"$27","fuzzResults":[{"id":"697f34a2873500fc328e2f78","vectorId":"6692d78ea334eda48afdc5a0","charset":"UTF-8","browser":"Firefox","version":"147.0","platform":"desktop","os":"Linux","characters":"'","userId":"6615f079272f664a50f7aa49","createdAt":"$D2026-02-01T11:10:26.378Z","updatedAt":"$D2026-02-01T11:10:26.378Z"},{"id":"697e719941798ad437530d30","vectorId":"6692d78ea334eda48afdc5a0","charset":"UTF-8","browser":"Microsoft Edge","version":"145.0.0.0","platform":"desktop","os":"Windows NT 10.0","characters":"'","userId":"6615f079272f664a50f7aa49","createdAt":"$D2026-01-31T21:18:17.432Z","updatedAt":"$D2026-02-18T18:12:01.525Z"},{"id":"6976a748a7308016fdb3ca1e","vectorId":"6692d78ea334eda48afdc5a0","charset":"UTF-8","browser":"Chrome","version":"145.0.0.0","platform":"desktop","os":"Windows NT 10.0","characters":"'","userId":"6615f079272f664a50f7aa49","createdAt":"$D2026-01-25T23:29:12.076Z","updatedAt":"$D2026-02-17T20:29:11.817Z"},{"id":"6918b41a93b2efcdd4b0b502","vectorId":"6692d78ea334eda48afdc5a0","charset":"UTF-8","browser":"Firefox","version":"145.0","platform":"desktop","os":"Windows NT 10.0","characters":"'","userId":"6615f079272f664a50f7aa49","createdAt":"$D2025-11-15T17:10:50.875Z","updatedAt":"$D2025-11-15T17:10:50.875Z"},{"id":"6692d794d42b3c7a201a51dd","vectorId":"6692d78ea334eda48afdc5a0","charset":"UTF-8","browser":"Chrome","version":"144.0.0.0","platform":"desktop","os":"macOS 10.15.7","characters":"'","userId":"6615f079272f664a50f7aa49","createdAt":"$D2024-07-13T19:37:56.883Z","updatedAt":"$D2026-02-17T20:28:04.143Z"}],"limit":20}]}]]}],["$","div",null,{"className":"mt-5 border-t border-slate-700 p-5","children":[["$","h2",null,{"className":"text-xl font-bold mb-3","children":"Fuzz results"}],["$","$L29",null,{"fuzzResults":"$2a","highlights":[],"vector":"$27"}]]}]]}]}]

Characters that can break out of an inline style with single quotes

Sample payloads

Fuzz results

Distributed Fuzzing