All VectorsVector nameUser Created Type Likes 50 50 50 50HTML entities that create ASCII characters inside a JavaScript URLhackvertor6/25/2024JS4 1 1 1 1Characters in-between square brackets that close cdatahackvertor10/8/2024XSS0 13 13 13 13Properties are accessible in a sandboxed iframehackvertor6/7/2024JS0⚠Browser differences 16 16 16 6Entities allowed between function callshackvertor6/29/2024XSS0 6 6 6Characters allowed before onerror eventshackvertor3/30/2024XSS0 16 16 16 16Characters after stringshackvertor4/3/2024JS0 1 1 1 1XSS vectors that execute automatically inside mathhackvertor4/17/2024XSS0 31 31 31 31Characters allowed after malformed entitieshackvertor7/1/2024XSS1 25 25 25 25Characters ignored in strings when doing a non strict comparisonhackvertor6/18/2024JS0⚠Browser differences 34 35 34 34HTML elements that parse differently when renderedhackvertor4/19/2024XSS1 19 19 19 19Entities allowed before function callshackvertor7/2/2024XSS0 1 1 1Entities allowed inside function namehackvertor7/2/2024XSS0 108 108 108 108Tags that get reordered in the DOMhackvertor1/21/2025XSS0 4 4 4 4Entities allowed before slashes which result in an external URLhackvertor1/16/2025XSS0 2 2 2 2ISO-2022-JP ASCII escape sequencehackvertor12/11/2024XSS1 26 26 26 26Characters allowed after parentheseshackvertor4/1/2024JS0 15 15 15 15HTML elements that are self closing or different text contenthackvertor4/19/2024XSS2 18 18 18 18Entities allowed between function call and numberhackvertor7/2/2024XSS0 35 35 35 35Entities still parsed in uppercasehackvertor7/2/2024JS0 577 577 577 577Entities allowed as JS variableshackvertor7/2/2024XSS1Found 255 recordsPage 8 of 13«3456789101112»
