All VectorsVector nameUser Created Type Likes⚠ Browser differences 1 1 1 2characters after slash that make a http protocolInsertScript4/3/2024XSS0⚠ Browser differences 2 4 2framers event executorsweizman4/10/2024XSS0 1 1 1Characters that can break out of an inline style with single quotes0xdef1ant7/13/2024XSS0 3 3 3 3Entities that convert to greater than in a iframe srcdochackvertor8/1/2024XSS0 1 1 1 1Characters allowed in-between hyphenshackvertor4/14/2024XSS1 2 2 2 2Tags that HTML encode it's contentshackvertor7/16/2024XSS0 31 31 31 31Characters allowed after malformed entitieshackvertor7/1/2024XSS1 9 9 9XSS vectors that consume tagY4tacker11/5/2024XSS1⚠ Browser differences 32 32 32 33Characters that can precede the javascript protocol copyrcbarnett5/2/2024XSS0 31 31 31 31Characters allowed after greater than in eventshackvertor6/21/2024XSS0⚠ Browser differences 1 4 4Entities allowed between two forward slashesInsertScript9/19/2024XSS1 3 3 3 3Characters that can be inserted in the middle of the JS protocol namecold-try4/15/2024XSS0 1 1 1Characters allowed in colon entityInsertScript9/19/2024XSS0 1 1 1Characters that can break out of an inline style background-image url0xdef1ant7/13/2024XSS1 4 4 4 4Entities that cause an external URL before @hackvertor9/25/2024XSS4 62.5k 62.5k 62.5k 62.5kCharacters that cause the backslash to be consumed with GBK charsethackvertor11/7/2024XSS0 7 7 7 7Characters that close or encapsulate HTML attribute valuesola45611/5/2024XSS1⚠ Browser differences 16 16 16 6Entities allowed between function callshackvertor6/29/2024XSS0 6 6 6Characters allowed before onerror eventshackvertor3/30/2024XSS0 2 2 2 2Characters that act as attribute quoteshackvertor5/28/2024XSS0Found 253 recordsPage 1 of 1312345678910»
