| Characters that act as attribute quotes | hackvertor | 5/28/2024 | XSS | 0 |
| Tags that stop style | hackvertor | 4/9/2024 | HTML | 0 |
| Characters ignored after backslash with multiline string | hackvertor | 6/18/2024 | JS | 0 |
| Entities allowed between slashes on a protocol relative URL | hackvertor | 7/6/2024 | JS | 0 |
| document properties | hackvertor | 5/31/2024 | JS | 0 |
| Tags that HTML encode it's contents | hackvertor | 7/16/2024 | XSS | 0 |
| All events on window | hackvertor | 5/31/2024 | JS | 1 |
| Entities allowed between function call and number | hackvertor | 7/2/2024 | XSS | 0 |
| Entities that are normalized for e | hackvertor | 7/12/2024 | JS | 0 |
| Properties that are accessible on location | hackvertor | 6/7/2024 | JS | 0 |
| Entities still parsed in uppercase | hackvertor | 7/2/2024 | JS | 0 |
| Characters that separate CSS properties | hackvertor | 4/2/2024 | HTML | 0 |
 7  7 | Fuzzing weird script behaviour after script text | hackvertor | 7/18/2024 | XSS | 0 |
 29 | Characters allowed after the void operator | hackvertor | 4/30/2024 | JS | 0 |
| Break out of CSS strings | hackvertor | 4/4/2024 | HTML | 0 |
| Attributes that are also DOM properties | hackvertor | 4/30/2024 | XSS | 0 |
| Characters that act as array literals | hackvertor | 6/24/2024 | JS | 0 |
| Characters allowed after parentheses | hackvertor | 4/1/2024 | JS | 0 |
| HTML comment before greater than | hackvertor | 3/30/2024 | HTML | 0 |
3 | Characters allowed between slashes | hackvertor | 4/8/2024 | JS | 0 |
