All VectorsVector nameUser Created Type Likes 1 1 1Quotesdogspyagent7/13/2024XSS0 1 1 1Entities allowed inside function namehackvertor7/2/2024XSS0 1 1 1Characters that can break out of an inline style with double quotes0xdef1ant7/13/2024XSS0 1 1 1HTML-Encoded Attribute EscapeIDKdir7/13/2024XSS0⚠ Browser differences 16 17 16 17Tags that remove the span or are self closinghackvertor7/16/2024XSS0 9 9 9XSS vectors that consume tagY4tacker11/5/2024XSS1 1.1k 1.1k 1.1kMutated XSS AttributesIDKdir7/13/2024XSS0⚠ Browser differences 39 1 39 39HTML tags that force HTML mode inside SVGhackvertor8/2/2024XSS1 7 7 7 7Characters that close or encapsulate HTML attribute valuesola45611/5/2024XSS1 7 7 7Fuzzing weird script behaviour after script texthackvertor7/18/2024XSS0 2 2 2HTML tags that can clobber the credentials part of the URL0x999-x11/4/2024XSS1 31 31 31 31Characters allowed after greater than in eventshackvertor6/21/2024XSS0 62.5k 62.5k 62.5k 62.5kCharacters that cause the backslash to be consumed with GBK charsethackvertor11/7/2024XSS0 2 2 2Bytes that will normalize ISO-2022-JPCillian-Collins12/26/2024XSS1 2 2 2Bytes that will scramble ISO-2022-JPCillian-Collins12/26/2024XSS1⚠ Browser differences 1 1 1 2characters after slash that make a http protocolInsertScript4/3/2024XSS0⚠ Browser differences 2 4 2framers event executorsweizman4/10/2024XSS0 1 1 1Mutated XSS with img onerrorsqjor7/30/2024XSS0 6 6 6Allowed characters right after tag name & before tag closure, no other characters in betweenhansmach1ne1/9/2025XSS0⚠ Browser differences 4 3 4HTML elements that inherit properties which return the full URL0x999-x11/14/2024XSS0Found 246 recordsPage 9 of 13«45678910111213»
