All VectorsVector nameUser Created Type Likes 47 47 47Characters appended at the end of TLD within URL, which yield in the same Originhansmach1ne1/5/2025JS2⚠ Browser differences 24 16 24Difference between browser-supported handlers and Shazzer 'events' listhansmach1ne1/5/2025JS0 1 1 1Difference between browser-supported handlers and Shazzer 'all_browser_events' listhansmach1ne1/5/2025JS0 25 25 25Loose comparison, characters appended which still result in type coercionhansmach1ne1/6/2025JS1 6 6 6Allowed characters right after tag name & before tag closure, no other characters in betweenhansmach1ne1/9/2025XSS0 3 3 3 3Characters that can be inside the javascript protocolhipotermia1/22/2025XSS0 1 1 1CSS inline property definitionhipotermia3/12/2025HTML0⚠ Browser differences 2.1k 1 2.1kChars in href that will not default to full URLjoaxcar11/16/2024XSS0 8 8 8 8DOM element relationshipsjoaxcar4/10/2024XSS0 2 2 2 2List of HTML elements that convert to arbitrary stringjoaxcar4/10/2024XSS0 5 5 5 5Characters allowed in path traversaljoaxcar8/26/2024JS0 1 1 1Escape inline double quotelUcgryy3/7/2025XSS0 1 1 1Characters that starts element namelUcgryy3/10/2025HTML0 1 1 1 1Characters to break out from eval stringm-boll5/12/2024JS0 24 24 24Characters that can be used in eval to write code in betweenm-boll5/12/2024JS0 1 1 1Characters that can be between < and script>m10x11/12/2024HTML0 1 1 1Chars that can be used as opening bracket in innerHTMLnollium4/19/2025JS0 2 2 2char not urlencoded (data)nu11secur1ty9/29/2024JS0 1 1 1domain valuesnu11secur1ty9/29/2024JS0 157 157 157char not urlencoded (data+)nu11secur1ty9/29/2024JS0Found 249 recordsPage 11 of 13«45678910111213»
