All VectorsVector nameUser Created Type Likes 2 2 2 2Malformed HTML commentshackvertor1/17/2025XSS0 32 32 32 32Characters allowed before the JavaScript protocolhackvertor1/16/2025XSS0 2 2 2 2HTML entities before JavaScript URLhackvertor6/25/2024JS0 25 25 25 25Characters allowed between in operatorhackvertor4/3/2024JS0 2 2 2 2Characters allowed after colon which result in an external URLhackvertor1/16/2025XSS0 1 1 1Characters allowed between slasheshackvertor4/8/2024JS0⚠ Browser differences 6 5 6 5Tags that DO NOT support HTML commentshackvertor1/26/2025XSS0 25 25 25 25Characters allowed before optional chaininghackvertor5/4/2024JS0 8 8 8 8Consuming tagshackvertor4/8/2024HTML1 6 6 6Characters allowed before onerror eventshackvertor3/30/2024XSS0 26 26 26 26Characters allowed after parentheseshackvertor4/1/2024JS0 31 31 31 31Characters allowed either side of a variable assignmenthackvertor7/18/2025JS0⚠ Browser differences 16 16 16 6Entities allowed between function callshackvertor6/29/2024XSS0 1 1 1 1Characters that separate CSS propertieshackvertor4/2/2024HTML0 16 16 16 16Characters after stringshackvertor4/3/2024JS0 31 31 31 31Characters allowed after malformed entitieshackvertor7/1/2024XSS1 13 13 13 13Characters that act like new line or single line commenthackvertor4/13/2024JS0⚠ Browser differences 7 7 7 5XSS vectors that execute automatically hackvertor4/17/2024XSS0⚠ Browser differences 34 35 34 34HTML elements that parse differently when renderedhackvertor4/19/2024XSS1 14 14 14 14Tags that get moved out of parenthackvertor1/22/2025XSS0Found 245 recordsPage 9 of 13«45678910111213»
