All VectorsVector nameUser Created Type Likes 4 4 4Characters that act as new lines in multi line stringshackvertor6/20/2024JS1 5 5 5Characters allowed between slashes using XSS typehackvertor1/16/2025XSS0 32 32 32Characters allowed before the JavaScript protocolhackvertor1/16/2025XSS0 1 1XSS vectors that execute automatically inside svghackvertor4/17/2024XSS0 35 35 35Entities still parsed in uppercasehackvertor7/2/2024JS0 2 2 2Characters ignored following slash in self closing taghackvertor7/23/2025XSS1 3 3 3Characters that act as array literalshackvertor6/24/2024JS0 2 2 2Characters that act as attribute quoteshackvertor5/28/2024XSS0 25 25 25Characters ignored in strings when doing a non strict comparisonhackvertor6/18/2024JS0 12 12 12Entities allowed after slashes on a protocol relative URLhackvertor7/6/2024JS0 1 1XSS vectors that execute automatically inside mathhackvertor4/17/2024XSS0 18 18 18Entities allowed between function call and numberhackvertor7/2/2024XSS0 116 79 123All properties on navigator (two levels of nesting deep)freddyb6/6/2024JS0 2 2 2Characters that act as attribute quotes copyfreddyb5/31/2024XSS0 82encodeURI() not encoded with %forglockenspielexact7/11/2025JS1 1 1Valid characters between function and dot-parenthesis .()felipecaon5/6/2024JS0 25Valid characters between function and parenthesisfelipecaon5/6/2024JS0Characters allowed between < and element felipecaon5/6/2024HTML0Find WAF bypass for eval contextelieehel11/22/2024JS0Quotesdogspyagent7/13/2024XSS0Found 240 recordsPage 8 of 12«3456789101112»
