All VectorsVector nameUser Created Type Likes 1 1 1domain valuesnu11secur1ty9/29/2024JS0 157 157 157char not urlencoded (data+)nu11secur1ty9/29/2024JS0 1HTML vector nu11secur1ty9/29/2024HTML0 1 1 1worknu11secur1ty9/29/2024HTML0 4 4 4 4Characters allowed javascript and colon copy2avlidienbrunn9/29/2024JS0 2k 2k 2k 2kCharacters that cause exceptions when URL encodedhackvertor10/3/2024JS2 1 1 1Includes Validation Chars AllowedSimpsonpt10/8/2024JS1 1 1 1 1Characters in-between square brackets that close cdatahackvertor10/8/2024XSS0 1 1 1Entities in-between square brackets that close cdatahackvertor10/8/2024XSS1 1 1 1< removal bypassDevice130610/9/2024HTML0 63.3k 63.3k 63.3k 63.3kDifferences between escape vs encodeURIComponenthackvertor10/15/2024JS1⚠ Browser differences 45.4k 56.7k 45.4k 62.5kCharacters that cause the backslash to be consumed with a big5 charsethackvertor11/1/2024XSS0 2 2 2HTML tags that can clobber the credentials part of the URL0x999-x11/4/2024XSS1 19 19 19HTML tags and attributes that can be used to access the URL0x999-x11/4/2024XSS1 9 9 9XSS vectors that consume tagY4tacker11/5/2024XSS1 7 7 7 7Characters that close or encapsulate HTML attribute valuesola45611/5/2024XSS1 62.5k 62.5k 62.5k 62.5kCharacters that cause the backslash to be consumed with GBK charsethackvertor11/7/2024XSS0 1 1 1Characters that can be between < and script>m10x11/12/2024HTML0⚠ Browser differences 1 1 1 17URL scheme separator alternativessimoneonofri11/14/2024JS1⚠ Browser differences 4 3 4HTML elements that inherit properties which return the full URL0x999-x11/14/2024XSS0Found 247 recordsPage 8 of 13«3456789101112»
