All VectorsVector nameUser Created Type Likes 3 3 3 3Entities that convert to less than in a iframe srcdochackvertor8/1/2024XSS0 3 3 3 3Entities that convert to greater than in a iframe srcdochackvertor8/1/2024XSS0⚠ Browser differences 39 1 39 39HTML tags that force HTML mode inside SVGhackvertor8/2/2024XSS1 6 6 6Characters that can work as attribute seperatorSudistark8/17/2024JS0 1 1 1 1Characters allowed before event in attribute name using setAttributehackvertor8/21/2024JS0 5 5 5 5Characters allowed in path traversaljoaxcar8/26/2024JS0 1 1 1Bypasses for __proto__ string matchvitorfhc8/29/2024JS0 1 1 1Bypass __proto__ string match defensevitorfhc8/29/2024JS0 4 4 4 4URL domain dot alternativesJorianWoltjer9/10/2024JS5 5 5 5Characters allowed between multiple HTML attributesJorianWoltjer9/12/2024XSS4 1 1 1Entities allowed between two forward slashesInsertScript9/19/2024XSS1 1 1 1Characters allowed in colon entityInsertScript9/19/2024XSS0⚠ Browser differences 2 1 2JIS X 0208 bytes that produce ASCII charactersJorianWoltjer9/22/2024JS1⚠ Browser differences 63.4k 63.4k 63.4k 71Characters urlencoded that get transformed when using the credentials part of the URLhackvertor9/24/2024JS0 2 2 2 2Characters not urlencoded when using the shema part of the URLd0ge9/24/2024JS0⚠ Browser differences 1 1 1 89Characters unencoded characters supported in the hashhackvertor9/24/2024JS1 1 1 1Chars allowed before domaint0xodile9/24/2024XSS0 4 4 4 4Characters that cause an external URL before @hackvertor9/25/2024JS3 4 4 4 4Entities that cause an external URL before @hackvertor9/25/2024XSS4 2 2 2char not urlencoded (data)nu11secur1ty9/29/2024JS0Found 247 recordsPage 7 of 13«234567891011»
