All VectorsVector nameUser Created Type Likes 136.3k 136.9kCharacters that can be used as valid labels in JavaScripthackvertor4/30/2024JS2 4 4 4Entities allowed before slashes which result in an external URLhackvertor1/16/2025XSS0 2 2 2HTML entities inside JavaScript URLhackvertor6/25/2024JS0 3 3 3HTML entities inside JavaScript URL before colonhackvertor6/25/2024JS0 8 8 8Characters that act as quotes or whitespacehackvertor4/13/2024HTML0 106 106Tags that support HTML commentshackvertor1/26/2025XSS0 32 32 48Characters allowed before host name that are ignoredhackvertor6/11/2025XSS0 25 25 25Characters allowed in-between operatorshackvertor4/14/2024JS2 119 118 115All events on windowhackvertor5/31/2024JS1 1 1XSS vectors that execute automatically inside svghackvertor4/17/2024XSS0 25 25 25Characters ignored in strings when doing a non strict comparisonhackvertor6/18/2024JS0 2 2 2Characters that act as attribute quoteshackvertor5/28/2024XSS0 1 1XSS vectors that execute automatically inside mathhackvertor4/17/2024XSS0 18 18 18Entities allowed between function call and numberhackvertor7/2/2024XSS0 275Characters appended at the end of TLD within URL, which yield in the same Originhansmach1ne1/5/2025JS2 6 6 6Allowed characters right after tag name & before tag closure, no other characters in betweenhansmach1ne1/9/2025XSS0 20Difference between browser-supported handlers and Shazzer 'events' listhansmach1ne1/5/2025JS0 16Difference between browser-supported handlers and Shazzer 'all_browser_events' listhansmach1ne1/5/2025JS0 25Loose comparison, characters appended which still result in type coercionhansmach1ne1/6/2025JS1 1 1CSS inline property definitionhipotermia3/12/2025HTML0Found 243 recordsPage 10 of 13«45678910111213»
