All categories
Browser Quirks
CSS Parsing
Character Encoding
DOM Behavior
Entity Parsing
HTML Parsing
JavaScript Syntax
Regular Expressions
URL Handling
XML Parsing
XSS Execution
Login
Home
Vectors
All vectors
Categories
Browser diffs
RSS
Network
Tools
Cheat sheet
Unicode table
Dynamic template
Blog
Blog home
RSS
Help
Home
Vectors
All vectors
Categories
Browser diffs
RSS
Network
Tools
Cheat sheet
Unicode table
Dynamic template
Blog
Blog home
RSS
Help
Prodding...
disconnected
Distributed Fuzzing
Enabled:
Status:
disconnected
Your browser automatically contributes to distributed fuzzing when idle.
All Vectors
Vector name
User
Created
Type
Likes
⚠ Browser differences
3
3
1
3
Characters allowed at IPv6 but don't change the hostname
d0ge
6/10/2024
JS
1
1
1
Characters that can break out of an inline style background-image url
0xdef1ant
7/13/2024
XSS
1
⚠ Browser differences
312
312
311
314
Characters allowed at hostname
d0ge
6/11/2024
JS
1
5
5
5
5
Properties that contain URLs
hackvertor
5/31/2024
JS
2
15
15
15
15
HTML elements that are self closing or different text content
hackvertor
4/19/2024
XSS
2
25
25
25
25
Characters allowed after optional chaining
hackvertor
5/4/2024
JS
2
⚠ Browser differences
80
80
80
64
Characters allowed after hostname but don't change the hostname
ThomasOrlita
4/15/2024
JS
2
12
12
12
Unicode characters that get normalized into path traversal characters
hackvertor
12/12/2024
JS
2
3
3
3
3
Characters that can start an HTML comment
0x999-x
7/18/2024
HTML
2
47
47
47
Characters appended at the end of TLD within URL, which yield in the same Origin
hansmach1ne
1/5/2025
JS
2
2k
2k
2k
2k
Characters that cause exceptions when URL encoded
hackvertor
10/3/2024
JS
2
106
106
106
106
Named HTML entities that can be closed with !
avlidienbrunn
7/29/2025
XSS
2
49k
49k
49k
Characters that can be used as valid labels in JavaScript
hackvertor
4/30/2024
JS
2
25
25
25
25
Characters allowed in-between operators
hackvertor
4/14/2024
JS
2
3
3
3
3
Characters allowed javascript and colon
renniepak
4/9/2024
JS
3
4
4
4
4
Characters that cause an external URL before @
hackvertor
9/25/2024
JS
3
⚠ Browser differences
65
67
67
67
Characters allowed inside javascript protocol and still returns the hostname
RenwaX23
7/21/2025
JS
3
32
32
32
32
Characters that can precede the javascript protocol
renniepak
4/10/2024
XSS
3
7
7
7
7
Characters allowed while closing script tag
AyushXtha
10/27/2025
XSS
3
5
5
5
Characters allowed between multiple HTML attributes
JorianWoltjer
9/12/2024
XSS
4
Found
245
records
Page 12 of 13
«
4
5
6
7
8
9
10
11
12
13
»
