HTML elements that inherit properties which return the full URL

HTML elements that inherit properties which return the full URL(including credentials & location.hash), baseURI excluded

Created by: 0x999-x

Created on: Thursday, November 14, 2024 at 11:38:50 AM

Updated on: Thursday, November 21, 2024 at 5:01:19 AM

Vector type: XSS

Vector charset: UTF-8

Template used:
<$[data1] id="xx">

Code used after fuzz:

function getAllProperties(obj, maxDepth = 3) {
  const properties = new Set();
  let depth = 0;
  while (obj && depth < maxDepth) {
    Object.getOwnPropertyNames(obj).forEach(prop => properties.add(prop));
    obj = Object.getPrototypeOf(obj);
    depth += 1;
  }
  return [...properties];
}
const properties = getAllProperties(xx)
        for (const prop of properties) {
            try {
                if (xx[prop].includes("shazzer")) {
					log('$[data1]:'+prop)
                }
            } catch (e) {
            }
        }

Your browser was detected as:

Detecting... Detecting... Detecting... Detecting...

Sample payloads

<base:href id="xx"><button:formAction id="xx"><form:action id="xx"><input:formAction id="xx">

Fuzz results

Chrome 130.0.0.0 desktop Windows NT 10.0

Updated

Thu Nov 14 2024

Found 4 results

Show differences only?

Filter out alphanumeric

Sort ascending