All VectorsVector nameUser Created Type Likes⚠ Browser differences 1 10 10 10Entities that are normalized for ehackvertor7/12/2024JS0⚠ Browser differences 49k 49k 49k 136.3kCharacters that are valid JS variableshackvertor4/29/2024JS0⚠ Browser differences 65.5k 75 74 75Characters not urlencoded when using the credentials part of the URLhackvertor5/28/2024JS1 63.3k 63.3k 63.3k 63.3kDifferences between escape vs encodeURIComponenthackvertor10/15/2024JS1 1 1 1 1Characters allowed before event in attribute name using setAttributehackvertor8/21/2024JS0 3 3 3 3Characters that act as array literalshackvertor6/24/2024JS0⚠ Browser differences 7 8 7 5XSS vectors that execute automatically hackvertor4/17/2024XSS0⚠ Browser differences 1 4 4 4Entities allowed before slashes on a protocol relative URLhackvertor7/6/2024JS0⚠ Browser differences 34 35 34 34HTML elements that parse differently when renderedhackvertor4/19/2024XSS1⚠ Browser differences 1.2k 974 1.2k 965Window propertieshackvertor5/31/2024JS0⚠ Browser differences 49k 49k 49k 49kCharacters that can be used as valid labels in JavaScripthackvertor4/30/2024JS2 1 1 1 1Characters ignored after backslash with multiline stringhackvertor6/18/2024JS0⚠ Browser differences 8 9 8 9Tags that stop stylehackvertor4/9/2024HTML0 13 13 13 13Properties are accessible in a sandboxed iframehackvertor6/7/2024JS0 108 108 108 108Tags that get reordered in the DOMhackvertor1/21/2025XSS0 8 8 8 8Characters that act as quotes or whitespacehackvertor4/13/2024HTML0⚠ Browser differences 125 122 125 128All events on windowhackvertor5/31/2024JS1⚠ Browser differences 6 5 6 5Tags that DO NOT support HTML commentshackvertor1/26/2025XSS0 6 6 6Characters allowed before onerror eventshackvertor3/30/2024XSS0 25 25 25 25Characters allowed in-between operatorshackvertor4/14/2024JS2Found 253 recordsPage 7 of 13«234567891011»
