Characters allowed in colon entity

This vector shows if a character is allowed in an entity. Firefox did that in the past

Created on: Thursday, September 19, 2024 at 11:07:03 AM

Updated on: Monday, November 18, 2024 at 9:38:23 PM

Vector type: XSS

Vector charset: UTF-8

<a href="javascript&colo$[chr]n;abcd" id="x">f</a>

try{
if(x.protocol == "javascript:")log($[i])
}catch(e){}