Merge pull request #10354 from Ahsraeisi/patch-4

Update reflected-xss.yaml
2024-08-09 19:57:18 +04:00 · 2024-08-09 19:57:18 +04:00 · 1f99af6c35
parent 6b679a107f 4599b04ec4
commit 1f99af6c35
1 changed files with 8 additions and 2 deletions
--- a/dast/vulnerabilities/xss/reflected-xss.yaml
+++ b/dast/vulnerabilities/xss/reflected-xss.yaml
@ -2,7 +2,7 @@ id: reflected-xss

 info:
  name: Reflected Cross-Site Scripting
-  author: pdteam,0xKayala
+  author: pdteam,0xKayala,AmirHossein Raeisi
  severity: medium
  metadata:
    max-request: 1
@ -30,6 +30,12 @@ http:
        fuzz:
          - "{{reflection}}"

+      - part: path
+        type: postfix
+        mode: single
+        fuzz:
+          - "{{reflection}}"
+
    stop-at-first-match: true
    matchers-condition: and
    matchers:
@ -42,4 +48,4 @@ http:
        part: header
        words:
          - "text/html"
-# digest: 4b0a00483046022100fe9d1b6a33bc101017c0dabac57b282164ad7a316747fb641b1be7dd534178b2022100b1b90ca968e766279c306212b849ce875ae2beaced34248794387b56192c1878:922c64590222798bb761d5b6d8e72950
+# digest: 4b0a00483046022100fe9d1b6a33bc101017c0dabac57b282164ad7a316747fb641b1be7dd534178b2022100b1b90ca968e766279c306212b849ce875ae2beaced34248794387b56192c1878:922c64590222798bb761d5b6d8e72950