All Vectors

	Vector name	User	Created	Type	Likes
1 1 1	Includes Validation Chars Allowed	Simpsonpt	10/8/2024	JS	1
1 1 1	Entities in-between square brackets that close cdata	hackvertor	10/8/2024	XSS	1
63.3k 63.3k 63.3k 63.3k	Differences between escape vs encodeURIComponent	hackvertor	10/15/2024	JS	1
⚠ Browser differences 3 1 3 1	Characters allowed at IPv6 but don't change the hostname	d0ge	6/10/2024	JS	1
2 2 2	HTML tags that can clobber the credentials part of the URL	0x999-x	11/4/2024	XSS	1
19 19 19	HTML tags and attributes that can be used to access the URL	0x999-x	11/4/2024	XSS	1
⚠ Browser differences 312 311 312 314	Characters allowed at hostname	d0ge	6/11/2024	JS	1
9 9 9	XSS vectors that consume tag	Y4tacker	11/5/2024	XSS	1
65.4k 65.4k 65.4k 65.4k	Characters encoded by escape()	JorianWoltjer	7/4/2025	JS	1
7 7 7 7	Characters that close or encapsulate HTML attribute values	ola456	11/5/2024	XSS	1
1 1 1 1	Characters between < and element name	ThomasOrlita	4/15/2024	HTML	1
⚠ Browser differences 1 1 1 17	URL scheme separator alternatives	simoneonofri	11/14/2024	JS	1
29 29 29 29	Non-standard characters that break JSON.parse()	DreyAnd	11/15/2024	JS	1
4 4 4 4	Characters that act as new lines in multi line strings	hackvertor	6/20/2024	JS	1
2 2 2 2	ISO-2022-JP ASCII escape sequence	hackvertor	12/11/2024	XSS	1
30 30 30	Characters allowed after equals sign for event	YouGina	12/17/2024	XSS	1
2 2 2	Bytes that will normalize ISO-2022-JP	Cillian-Collins	12/26/2024	XSS	1
2 2 2	Bytes that will scramble ISO-2022-JP	Cillian-Collins	12/26/2024	XSS	1
25 25 25	Loose comparison, characters appended which still result in type coercion	hansmach1ne	1/6/2025	JS	1
82 82 82 82	encodeURI() not encoded with %	forglockenspielexact	7/11/2025	JS	1

Found 248 records

Page 10 of 13

4 5 6 7 8 9 10 11 12 13

All Vectors

Distributed Fuzzing