All VectorsVector nameUser Created Type Likes 47 47 47Characters appended at the end of TLD within URL, which yield in the same Originhansmach1ne1/5/2025JS2 15 15 15 15HTML elements that are self closing or different text contenthackvertor4/19/2024XSS2⚠ Browser differences 65.5k 65.5k 65.5k 75Characters not urlencoded when using the credentials part of the URLhackvertor5/28/2024JS1 25 25 25Loose comparison, characters appended which still result in type coercionhansmach1ne1/6/2025JS1 1 1 1Entities allowed between two forward slashesInsertScript9/19/2024XSS1⚠ Browser differences 2 1 2JIS X 0208 bytes that produce ASCII charactersJorianWoltjer9/22/2024JS1⚠ Browser differences 124 122 124 128All events on windowhackvertor5/31/2024JS1 19 19 19HTML tags and attributes that can be used to access the URL0x999-x11/4/2024XSS1 1 1 1 1Characters between < and element nameThomasOrlita4/15/2024HTML1⚠ Browser differences 34 35 34 34HTML elements that parse differently when renderedhackvertor4/19/2024XSS1 30 30 30Characters allowed after equals sign for eventYouGina12/17/2024XSS1 1 1 1Entities in-between square brackets that close cdatahackvertor10/8/2024XSS1 1 1 1Includes Validation Chars AllowedSimpsonpt10/8/2024JS1⚠ Browser differences 3 1 3 1Characters allowed at IPv6 but don't change the hostnamed0ge6/10/2024JS1⚠ Browser differences 1 1 1 89Characters unencoded characters supported in the hashhackvertor9/24/2024JS1⚠ Browser differences 45 45 45 29Characters allowed within a hostname but don't change the hostnameThomasOrlita4/30/2024JS1 4 4 4 4Characters that act as new lines in multi line stringshackvertor6/20/2024JS1 577 577 577 577Entities allowed as JS variableshackvertor7/2/2024XSS1 1 1 1Characters that change length on .toLowerCase()JorianWoltjer4/11/2024JS1 1 1 1 1Characters allowed in-between hyphenshackvertor4/14/2024XSS1Found 246 recordsPage 2 of 13«12345678910»
