All VectorsVector nameUser Created Type Likes 4 4Characters allowed before the JavaScript protocol colonRemakingEden3/3/2025XSS0 5Chars allowed between src and = in img tagrootd4ddy3/2/2025XSS0 30Characters Allowed Between Protocol // and localhost Where Host Still Equals localhostrootd4ddy3/2/2025JS0Url parsing diff b/w window.open and new URLSudistark2/21/2025JS0Characters ending XML Processing Instructions (WIP)ola4562/4/2025XSS0 5 5 5Tags that DO NOT support HTML commentshackvertor1/26/2025XSS0 106 106Tags that support HTML commentshackvertor1/26/2025XSS0 14 14 14Tags that get moved out of parenthackvertor1/22/2025XSS0 3 3Characters that can be inside the javascript protocolhipotermia1/22/2025XSS0 108 108 108Tags that get reordered in the DOMhackvertor1/21/2025XSS0 2 2 2Malformed HTML commentshackvertor1/17/2025XSS0 32 32 32Characters allowed before the JavaScript protocolhackvertor1/16/2025XSS0 4 4 4Entities allowed before slashes which result in an external URLhackvertor1/16/2025XSS0 34 34 34Characters allowed before slashes which result in an external URLhackvertor1/16/2025XSS1 32 32 32Characters allowed after slashes which result in an external URL hackvertor1/16/2025XSS0 2 2 2Characters allowed after colon which result in an external URLhackvertor1/16/2025XSS0 4 4 4Entities allowed between slashes using XSS typehackvertor1/16/2025XSS0 5 5 5Characters allowed between slashes using XSS typehackvertor1/16/2025XSS0Characters prepended to URL host. check if difference between URL and a tagInsertScript1/10/2025JS0 30 30Characters prepended to URL, which yield in the same host propertyInsertScript1/10/2025JS0Found 238 recordsPage 3 of 12«12345678910»
