masato - braves parsing finding valid characters
1
1
1Trying to see what characters are allowed
Created by: InsertScript
Created on: Sunday, August 3, 2025 at 9:17:09 AM
Updated on: Sunday, August 3, 2025 at 9:17:09 AM
Category: URL Handling
Vector visibility: Public
Vector type: XSS
Vector charset: UTF-8
Template used:
<div id="x$[i]"><span x="href=$[chr]>&bbb"></span></div>0x0D
<script>0x0D
window["x$[i]"].innerHTML=window["x$[i]"].innerHTML;0x0D
if (window["x$[i]"].firstChild.getAttribute("href") != null)0x0D
{0x0D
log($[i])0x0D
}0x0D
</script>Your browser was detected as:
Detecting... Detecting... Detecting... Detecting...
Sample payloads
<div id="x9"><span x="href=0x09>&bbb"></span></div>0x0D
<script>0x0D
window["x9"].innerHTML=window["x9"].innerHTML;0x0D
if (window["x9"].firstChild.getAttribute("href") != null)0x0D
{0x0D
alert(9)0x0D
}0x0D
</script><div id="x10"><span x="href=
>&bbb"></span></div>0x0D
<script>0x0D
window["x10"].innerHTML=window["x10"].innerHTML;0x0D
if (window["x10"].firstChild.getAttribute("href") != null)0x0D
{0x0D
alert(10)0x0D
}0x0D
</script><div id="x12"><span x="href=0x0C>&bbb"></span></div>0x0D
<script>0x0D
window["x12"].innerHTML=window["x12"].innerHTML;0x0D
if (window["x12"].firstChild.getAttribute("href") != null)0x0D
{0x0D
alert(12)0x0D
}0x0D
</script><div id="x13"><span x="href=0x0D>&bbb"></span></div>0x0D
<script>0x0D
window["x13"].innerHTML=window["x13"].innerHTML;0x0D
if (window["x13"].firstChild.getAttribute("href") != null)0x0D
{0x0D
alert(13)0x0D
}0x0D
</script><div id="x32"><span x="href= >&bbb"></span></div>0x0D
<script>0x0D
window["x32"].innerHTML=window["x32"].innerHTML;0x0D
if (window["x32"].firstChild.getAttribute("href") != null)0x0D
{0x0D
alert(32)0x0D
}0x0D
</script><div id="x45"><span x="href=->&bbb"></span></div>0x0D
<script>0x0D
window["x45"].innerHTML=window["x45"].innerHTML;0x0D
if (window["x45"].firstChild.getAttribute("href") != null)0x0D
{0x0D
alert(45)0x0D
}0x0D
</script><div id="x48"><span x="href=0>&bbb"></span></div>0x0D
<script>0x0D
window["x48"].innerHTML=window["x48"].innerHTML;0x0D
if (window["x48"].firstChild.getAttribute("href") != null)0x0D
{0x0D
alert(48)0x0D
}0x0D
</script><div id="x49"><span x="href=1>&bbb"></span></div>0x0D
<script>0x0D
window["x49"].innerHTML=window["x49"].innerHTML;0x0D
if (window["x49"].firstChild.getAttribute("href") != null)0x0D
{0x0D
alert(49)0x0D
}0x0D
</script><div id="x50"><span x="href=2>&bbb"></span></div>0x0D
<script>0x0D
window["x50"].innerHTML=window["x50"].innerHTML;0x0D
if (window["x50"].firstChild.getAttribute("href") != null)0x0D
{0x0D
alert(50)0x0D
}0x0D
</script><div id="x51"><span x="href=3>&bbb"></span></div>0x0D
<script>0x0D
window["x51"].innerHTML=window["x51"].innerHTML;0x0D
if (window["x51"].firstChild.getAttribute("href") != null)0x0D
{0x0D
alert(51)0x0D
}0x0D
</script><div id="x52"><span x="href=4>&bbb"></span></div>0x0D
<script>0x0D
window["x52"].innerHTML=window["x52"].innerHTML;0x0D
if (window["x52"].firstChild.getAttribute("href") != null)0x0D
{0x0D
alert(52)0x0D
}0x0D
</script><div id="x53"><span x="href=5>&bbb"></span></div>0x0D
<script>0x0D
window["x53"].innerHTML=window["x53"].innerHTML;0x0D
if (window["x53"].firstChild.getAttribute("href") != null)0x0D
{0x0D
alert(53)0x0D
}0x0D
</script><div id="x54"><span x="href=6>&bbb"></span></div>0x0D
<script>0x0D
window["x54"].innerHTML=window["x54"].innerHTML;0x0D
if (window["x54"].firstChild.getAttribute("href") != null)0x0D
{0x0D
alert(54)0x0D
}0x0D
</script><div id="x55"><span x="href=7>&bbb"></span></div>0x0D
<script>0x0D
window["x55"].innerHTML=window["x55"].innerHTML;0x0D
if (window["x55"].firstChild.getAttribute("href") != null)0x0D
{0x0D
alert(55)0x0D
}0x0D
</script><div id="x56"><span x="href=8>&bbb"></span></div>0x0D
<script>0x0D
window["x56"].innerHTML=window["x56"].innerHTML;0x0D
if (window["x56"].firstChild.getAttribute("href") != null)0x0D
{0x0D
alert(56)0x0D
}0x0D
</script><div id="x57"><span x="href=9>&bbb"></span></div>0x0D
<script>0x0D
window["x57"].innerHTML=window["x57"].innerHTML;0x0D
if (window["x57"].firstChild.getAttribute("href") != null)0x0D
{0x0D
alert(57)0x0D
}0x0D
</script><div id="x62"><span x="href=>>&bbb"></span></div>0x0D
<script>0x0D
window["x62"].innerHTML=window["x62"].innerHTML;0x0D
if (window["x62"].firstChild.getAttribute("href") != null)0x0D
{0x0D
alert(62)0x0D
}0x0D
</script><div id="x65"><span x="href=A>&bbb"></span></div>0x0D
<script>0x0D
window["x65"].innerHTML=window["x65"].innerHTML;0x0D
if (window["x65"].firstChild.getAttribute("href") != null)0x0D
{0x0D
alert(65)0x0D
}0x0D
</script><div id="x66"><span x="href=B>&bbb"></span></div>0x0D
<script>0x0D
window["x66"].innerHTML=window["x66"].innerHTML;0x0D
if (window["x66"].firstChild.getAttribute("href") != null)0x0D
{0x0D
alert(66)0x0D
}0x0D
</script><div id="x67"><span x="href=C>&bbb"></span></div>0x0D
<script>0x0D
window["x67"].innerHTML=window["x67"].innerHTML;0x0D
if (window["x67"].firstChild.getAttribute("href") != null)0x0D
{0x0D
alert(67)0x0D
}0x0D
</script>Fuzz results
Chrome 144.0.0.0 desktop macOS 10.15.7
Updated
Sun Jan 25 2026
Found 1 result
Loading...
Chrome 138.0.0.0 desktop Windows NT 10.0older version
Updated
Sun Aug 03 2025
Found 70 results
Loading...
Firefox 147.0 desktop macOS 10.15
Updated
Sun Jan 25 2026
Found 1 result
Loading...
Microsoft Edge 144.0.0.0 desktop Windows NT 10.0
Updated
Mon Jan 26 2026
Found 1 result
Loading...
Microsoft Edge 138.0.0.0 desktop Windows NT 10.0older version
Updated
Sun Aug 03 2025
Found 70 results
Loading...