masato - braves parsing finding entity test
3
3Trying to see what entity trigger the parsing issue. Should be >
Created by: InsertScript
Created on: Sunday, August 3, 2025 at 9:49:03 AM
Updated on: Sunday, August 3, 2025 at 9:56:20 AM
Vector type: XSS
Vector charset: UTF-8
Vector data 1: html_entities
Template used:
<div id="urlenc($[data1])"><span x="test=123$[data1]&bbb"></span></div>
<script>
window["urlenc($[data1])"].innerHTML=window["urlenc($[data1])"].innerHTML;
if (window["urlenc($[data1])"].firstChild.getAttribute("test") != null)
{
log('$[data1]')
}
</script>Your browser was detected as:
Detecting... Detecting... Detecting... Detecting...
Sample payloads
<div id="%26gt%3B"><span x="test=123>&bbb"></span></div>
<script>
window["%26gt%3B"].innerHTML=window["%26gt%3B"].innerHTML;
if (window["%26gt%3B"].firstChild.getAttribute("test") != null)
{
alert('>')
}
</script><div id="%26GT%3B"><span x="test=123>&bbb"></span></div>
<script>
window["%26GT%3B"].innerHTML=window["%26GT%3B"].innerHTML;
if (window["%26GT%3B"].firstChild.getAttribute("test") != null)
{
alert('>')
}
</script><div id="%26nvgt%3B"><span x="test=123>⃒&bbb"></span></div>
<script>
window["%26nvgt%3B"].innerHTML=window["%26nvgt%3B"].innerHTML;
if (window["%26nvgt%3B"].firstChild.getAttribute("test") != null)
{
alert('>⃒')
}
</script>Fuzz results
Microsoft Edge 138.0.0.0 desktop Windows NT 10.0
Updated
Sun Aug 03 2025
Found 3 results
Loading...
Chrome 138.0.0.0 desktop Windows NT 10.0
Updated
Sun Aug 03 2025
Found 3 results
Loading...