All Vectors

Instrumenting...

	Vector name	User	Created	Type	Likes
⚠ Browser differences 5 5 5 1	Characters allowed in between // in absolute URL	bribes	11/29/2025	JS	0
1 1 1	Characters allowed instead of equal sign	c3l3si4n	4/28/2024	XSS	0
26 26 26 26	Characters allowed between an object and the dot operator	cold-try	4/15/2024	JS	0
39 39 39 39	Characters allowed between an object and bracket notation	cold-try	4/15/2024	JS	0
3 3 3 3	Characters that can be inserted in the middle of the JS protocol name	cold-try	4/15/2024	XSS	0
2 2 2 2	Characters not urlencoded when using the shema part of the URL	d0ge	9/24/2024	JS	0
⚠ Browser differences 312 312 312 314	Characters allowed at hostname	d0ge	6/11/2024	JS	1
⚠ Browser differences 3 1 3 1	Characters allowed at IPv6 but don't change the hostname	d0ge	6/10/2024	JS	1
1 1 1	Quotes	dogspyagent	7/13/2024	XSS	0
⚠ Browser differences 50.7k 50.7k 50.7k 50.7k	Find WAF bypass for eval context	elieehel	11/22/2024	JS	0
1 1 1	Valid characters between function and dot-parenthesis .()	felipecaon	5/6/2024	JS	0
25 25 25	Valid characters between function and parenthesis	felipecaon	5/6/2024	JS	0
1 1 1	Characters allowed between < and element	felipecaon	5/6/2024	HTML	0
82 82 82 82	encodeURI() not encoded with %	forglockenspielexact	7/11/2025	JS	1
⚠ Browser differences 123 126 125 79	All properties on navigator (two levels of nesting deep)	freddyb	6/6/2024	JS	0
2 2 2 2	Characters that act as attribute quotes copy	freddyb	5/31/2024	XSS	0
7 7 7 7	Characters Supported in </script> Tags	ghannu0x01	2/10/2026	XSS	0
⚠ Browser differences 49k 49k 49k 136.3k	Characters that are valid JS variables	hackvertor	4/29/2024	JS	0
⚠ Browser differences 20 9 20 10	Attributes that are also DOM properties	hackvertor	4/30/2024	XSS	0
6 6 6	Characters allowed before onerror events	hackvertor	3/30/2024	XSS	0

Found 255 records

Page 5 of 13

1 2 3 4 5 6 7 8 9 10

All Vectors

Distributed Fuzzing

All Vectors