All VectorsVector nameUser Created Type Likes 1 1 1Valid characters between function and dot-parenthesis .()felipecaon5/6/2024JS0 1 1 1Bypass __proto__ string match defensevitorfhc8/29/2024JS0 25 25 25 25Characters allowed after a biginthackvertor7/18/2025JS0 6 6 6Characters that can work as attribute seperatorSudistark8/17/2024JS0⚠ Browser differences 65.5k 65.5k 65.5k 75Characters not urlencoded when using the credentials part of the URLhackvertor5/28/2024JS1 1 1 1 1Characters to break out from eval stringm-boll5/12/2024JS0 1 1 1 1Characters allowed before event in attribute name using setAttributehackvertor8/21/2024JS0⚠ Browser differences 63.4k 63.4k 63.4k 71Characters urlencoded that get transformed when using the credentials part of the URLhackvertor9/24/2024JS0 1 1 1 1Characters allowed begin from a forward slash character in javascript protocolsiunam32110/28/2025JS0⚠ Browser differences 1 1 1 89Characters unencoded characters supported in the hashhackvertor9/24/2024JS1 4 4 4 4Characters that cause an external URL before @hackvertor9/25/2024JS3 25 25 25 25Characters allowed before parentheseshackvertor3/31/2024JS0 25 25 25 25Valid space characters in a regexhackvertor12/9/2025JS0⚠ Browser differences 1.4k 1.4k 1.4k 1.4kUnicode "Latin" characters using \p{scx=Latin} RegExJorianWoltjer12/5/2025JS0 47 47 47Characters appended at the end of TLD within URL, which yield in the same host propertyInsertScript1/10/2025JS0 4 4 4 4Characters allowed javascript and colon copy2avlidienbrunn9/29/2024JS0 1 1 1domain valuesnu11secur1ty9/29/2024JS0 5 5 5 5Characters allowed in path traversaljoaxcar8/26/2024JS0 24 24 24Characters that can be used in eval to write code in betweenm-boll5/12/2024JS0 1 1 1Bypasses for __proto__ string matchvitorfhc8/29/2024JS0Found 246 recordsPage 7 of 13«234567891011»
