All VectorsVector nameUser Created Type Likes 3 3 3 3Characters that act as array literalshackvertor6/24/2024JS0⚠ Browser differences 105 106 105Tags that support HTML commentshackvertor1/26/2025XSS0⚠ Browser differences 16 16 16 6Entities allowed between function callshackvertor6/29/2024XSS0 48 48 48 48Characters allowed before host name that are ignoredhackvertor6/11/2025XSS0 127 127 127HTML TAGS ListsY4tacker1/3/2025XSS0⚠ Browser differences 7 7 7 5XSS vectors that execute automatically hackvertor4/17/2024XSS0⚠ Browser differences 28 16 23Difference between browser-supported handlers and Shazzer 'events' listhansmach1ne1/5/2025JS0 31 31 31 31Characters allowed either side of a variable assignmenthackvertor7/18/2025JS0 5 5 5 5Characters that end unencapsulated HTML attribute valuesola4565/14/2025XSS0 1 1 1Characters that starts element namelUcgryy3/10/2025HTML0 3 3 3Characters that can be inside the javascript protocolhipotermia1/22/2025XSS0 5 5 5 5Characters allowed as a class separatorhackvertor4/13/2024XSS0 24 24 24Characters that can be used in eval to write code in betweenm-boll5/12/2024JS0 1 1 1Bypasses for __proto__ string matchvitorfhc8/29/2024JS0 1 1 1 1Characters allowed in-between hyphenshackvertor4/14/2024XSS1 1 1 1Entities allowed between two forward slashesInsertScript9/19/2024XSS1⚠ Browser differences 65.5k 65.5k 65.5k 75Characters not urlencoded when using the credentials part of the URLhackvertor5/28/2024JS1⚠ Browser differences 2 1 2JIS X 0208 bytes that produce ASCII charactersJorianWoltjer9/22/2024JS1⚠ Browser differences 1 1 1 89Characters unencoded characters supported in the hashhackvertor9/24/2024JS1⚠ Browser differences 124 122 124 128All events on windowhackvertor5/31/2024JS1Found 245 recordsPage 9 of 13«45678910111213»
