Characters allowed in between start of HTML tag name and event handler
6
6Characters allowed in between start of HTML tag name and event handler
Created byAyushXtha
Created Mar 4, 2026
Updated Mar 4, 2026
Detecting browser...
CategoryHTML Parsing
VisibilityPublic
TypeXSS
CharsetUTF-8
Template used:
<a$[chr]id="test">Code used after fuzz:
document.getElementById('test') && log(i)Sample payloads
<a0x09id="test"><a
id="test"><a0x0Cid="test"><a0x0Did="test"><a id="test"><a/id="test">Fuzz results
Chrome 145.0.0.0 desktop macOS 10.15.7
Updated4 Mar 2026
Found 6 results
Loading...
Firefox 148.0 desktop macOS 10.15
Updated4 Mar 2026
Found 6 results
Loading...