All Vectors

Sanitizing...

	Vector name	User	Created	Type	Likes
1 1 1 1	Characters to break out from eval string	m-boll	5/12/2024	JS	0
1 1 1 1	Characters transformed when using lowercase	hackvertor	11/18/2024	JS	0
10 10 10 10	Characters transformed when using uppercase	hackvertor	11/18/2024	JS	0
89 89 89 89	Characters unencoded characters supported in the hash	hackvertor	9/24/2024	JS	1
⚠ Browser differences 70 71 70 71	Characters urlencoded that get transformed when using the credentials part of the URL	hackvertor	9/24/2024	JS	0
1 1 1	Chars allowed before domain	t0xodile	9/24/2024	XSS	0
6 6 6 6	Chars allowed before style attribute...	t0xodile	10/25/2025	XSS	0
5 5 5	Chars allowed between src and = in img tag	rootd4ddy	3/2/2025	XSS	0
⚠ Browser differences 2.1k 1 2.1k	Chars in href that will not default to full URL	joaxcar	11/16/2024	XSS	0
1 1 1	Chars that can be used as opening bracket in innerHTML	nollium	4/19/2025	JS	1
7 7 7 7	Closing title tag name separators	ola456	9/15/2025	XSS	0
8 8 8 8	Consuming tags	hackvertor	4/8/2024	HTML	1
8 8 8 8	DOM element relationships	joaxcar	4/10/2024	XSS	0
1 1 1 1	Decimal separators in parseFloat	piprett	5/17/2026	JS	0
1 1 1	Difference between browser-supported handlers and Shazzer 'all_browser_events' list	hansmach1ne	1/5/2025	JS	0
⚠ Browser differences 24 16 24	Difference between browser-supported handlers and Shazzer 'events' list	hansmach1ne	1/5/2025	JS	0
1.1M 63.3k 63.3k 63.3k	Differences between escape vs encodeURIComponent	hackvertor	10/15/2024	JS	1
1 1 1 1	Electron XSS TEST	P4rkJW	10/22/2025	HTML	0
18 18 18 18	Entities after protocol-relative URL	hackvertor	4/3/2026	JS	2
⚠ Browser differences 18 18 18 12	Entities allowed after slashes on a protocol relative URL	hackvertor	7/6/2024	JS	0

Found 268 records

Page 8 of 14

3 4 5 6 7 8 9 10 11 12

All Vectors

Distributed Fuzzing

All Vectors